Benvenuto Ospite

Aiutamici Forum » FORUM - Istruzioni e Guide » Sicurezza VIRUS » Trojan difficile da debellare: ecco i LOG

Trojan difficile da debellare: ecco i LOG

Opzioni

Topic Precedente · Topic Sucessivo

abreda

Inviato: Wednesday, June 18, 2014 8:22:33 PM

Rank: Newbie

Iscritto dal : 5/27/2014
Posts: 9

Buona sera a tutti.
E' tutta oggi che cerco di eliminare un trojan preso aprendo sbadatamente un allegato di una email telecomitalia (per assurdo stavo proprio attendendo una email con allegato dalla telecom per un intevento fatto ieri) e, oramai stanco e demoralizzato, ho capito che da solo non riesco e vi chiedo cortesemente un aiuto.

Vi do qualche informazione che forse può essere utile:

- le infezioni (1, 2 o 3 al massimo per scansione) sono sempre collegate a Mozilla Thunderbird con i seguenti nomi: Thunderbird.exe(3356) - una variante di Win32/Spy.Zbot.AAO trojan horse. ; Winword.exe(4448) - una variante di Win32/Spy.Zbot.AAO trojan horse.; e, nell'ultima scansione, l'infezione ha il nome dell'allegato che avevo aperto "Dettaglio dei costi.pdf.zip";

- non riuscendo più ad entrare in Thunderbird sono riuscito a disinstallarlo (a fatica perché risultava un processo in esecuzione anche se io non lo vedevo) e a reinstallarlo (ora funziona);

- continuo a disinfettare il computer con scansioni approfondite con antivirus eset nod, Malwarebytes Anti-Malware e cancellazioni con Ccleaner, e l'infezione sempra scomparire quando sono disconnesso alla rete ma ricompare non appena mi ricconnetto.

Vi ringrazio

Torna in alto

Sponsor

Inviato: Wednesday, June 18, 2014 8:22:33 PM

Torna in alto

abreda

Inviato: Wednesday, June 18, 2014 8:48:45 PM

Rank: Newbie

Iscritto dal : 5/27/2014
Posts: 9

Sto seguendo la procedura consigliata dal sito e posto il primo log fatto con ADWCLEANER:

# AdwCleaner v3.212 - Rapporto creato 18/06/2014 in 20:43:25
# Aggiornato 05/06/2014 di Xplode
# Sistema operativo : Windows 7 Professional Service Pack 1 (64 bits)
# Nome utente : Alessandro - PC-ALESSANDRO
# In esecuzione da : C:\Users\Alessandro\Desktop\adwcleaner_3.212.exe
# Opzione : Pulisci

***** [ Servizi ] *****

***** [ File / Cartelle ] *****

File Eliminato : C:\Users\Alessandro\AppData\Roaming\Mozilla\Firefox\Profiles\dd6pgw4v.default\user.js

***** [ Collegamenti ] *****

***** [ Registro ] *****

Chiave Eliminati : HKLM\SOFTWARE\Google\Chrome\Extensions\bopakagnckmlgajfccecajhnimjiiedh
Chiave Eliminati : HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}

***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.17126

-\\ Mozilla Firefox v29.0.1 (it)

[ File : C:\Users\Alessandro\AppData\Roaming\Mozilla\Firefox\Profiles\dd6pgw4v.default\prefs.js ]

-\\ Google Chrome v35.0.1916.153

[ File : C:\Users\Alessandro\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Eliminati [Startup_urls] : hxxps://mail.google.com/mail/u/0/#inbox
Eliminati [Extension] : bopakagnckmlgajfccecajhnimjiiedh

*************************

AdwCleaner[R0].txt - [4531 octets] - [27/05/2014 19:43:31]
AdwCleaner[R1].txt - [4591 octets] - [27/05/2014 19:51:05]
AdwCleaner[R2].txt - [1617 octets] - [18/06/2014 20:39:32]
AdwCleaner[S0].txt - [4390 octets] - [27/05/2014 19:51:54]
AdwCleaner[S1].txt - [1543 octets] - [18/06/2014 20:43:25]

Torna in alto

abreda

Inviato: Wednesday, June 18, 2014 8:57:02 PM

Rank: Newbie

Iscritto dal : 5/27/2014
Posts: 9

Ecco il secondo log da Junkware Removal Tool:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Professional x64
Ran by Alessandro on 18/06/2014 at 20:51:23,18
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

~~~ Registry Keys

~~~ Files

~~~ Folders

~~~ Event Viewer Logs were cleared

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 18/06/2014 at 20:54:44,66
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Torna in alto

abreda

Inviato: Wednesday, June 18, 2014 9:05:30 PM

Rank: Newbie

Iscritto dal : 5/27/2014
Posts: 9

Ed infine l'ultimo log da OTL. Attendo fiducioso. Grazie

OTL logfile created on: 18/06/2014 20:59:18 - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Alessandro\Desktop
64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17126)
Locale: 00000410 | Country: Italia | Language: ITA | Date Format: dd/MM/yyyy

3,93 Gb Total Physical Memory | 2,63 Gb Available Physical Memory | 66,98% Memory free
7,86 Gb Paging File | 6,49 Gb Available in Paging File | 82,60% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 453,74 Gb Total Space | 373,31 Gb Free Space | 82,28% Space Free | Partition Type: NTFS
Drive D: | 10,92 Gb Total Space | 1,22 Gb Free Space | 11,15% Space Free | Partition Type: NTFS
Drive E: | 96,00 Mb Total Space | 72,16 Mb Free Space | 75,17% Space Free | Partition Type: FAT32
Drive H: | 231,90 Gb Total Space | 108,41 Gb Free Space | 46,75% Space Free | Partition Type: NTFS

Computer Name: PC-ALESSANDRO | User Name: Alessandro | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days

========== Processes (SafeList) ==========

PRC - C:\Users\Alessandro\Desktop\OTL(1).exe (OldTimer Tools)
PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
PRC - C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Program Files (x86)\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)
PRC - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe (ESET)
PRC - c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe (CyberLink)
PRC - c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe (CyberLink)
PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation)
PRC - C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe (CyberLink)
PRC - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe (Logitech Inc.)
PRC - C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe ()

========== Modules (No Company Name) ==========

MOD - C:\Program Files (x86)\Mozilla Firefox\mozjs.dll ()
MOD - c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll ()
MOD - C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll ()
MOD - C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\DevManagerCore.dll ()
MOD - C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtGui4.dll ()
MOD - C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtXml4.dll ()
MOD - C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QJpeg4.dll ()
MOD - C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QGif4.dll ()
MOD - C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtCore4.dll ()
MOD - C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe ()

========== Services (SafeList) ==========

SRV:64bit: - (IEEtwCollectorService) -- C:\windows\SysNative\IEEtwCollector.exe (Microsoft Corporation)
SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
SRV:64bit: - (ekrn) -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe (ESET)
SRV:64bit: - (iked) -- C:\Program Files\ShrewSoft\VPN Client\iked.exe ()
SRV:64bit: - (ipsecd) -- C:\Program Files\ShrewSoft\VPN Client\ipsecd.exe ()
SRV:64bit: - (RtkAudioService) -- C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (Realtek Semiconductor)
SRV:64bit: - (Intel(R) -- c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe (Intel(R) Corporation)
SRV:64bit: - (Intel(R) -- c:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel(R) Corporation)
SRV:64bit: - (AERTFilters) -- C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE (Andrea Electronics Corporation)
SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (McComponentHostService) -- C:\Program Files (x86)\McAfee Security Scan\3.8.150\McCHSvc.exe (McAfee, Inc.)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (CyberLink PowerDVD 12 Media Server Service) -- c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe (CyberLink)
SRV - (CyberLink PowerDVD 12 Media Server Monitor Service) -- c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe (CyberLink)
SRV - (LMS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
SRV - (Intel(R) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation)
SRV - (jhi_service) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation)
SRV - (cphs) -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe (Intel Corporation)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)

========== Driver Services (SafeList) ==========

DRV:64bit: - (esgiguard) -- C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys File not found
DRV:64bit: - (MBAMSwissArmy) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys (Malwarebytes Corporation)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (Fs_Rec) -- C:\windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - ({c486bc7a-4f2c-4a8b-ac38-4952f70809b9}Gw64) -- C:\Windows\SysNative\drivers\{c486bc7a-4f2c-4a8b-ac38-4952f70809b9}Gw64.sys (StdLib)
DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (iaStorA) -- C:\Windows\SysNative\drivers\iaStorA.sys (Intel Corporation)
DRV:64bit: - (iaStorF) -- C:\Windows\SysNative\drivers\iaStorF.sys (Intel Corporation)
DRV:64bit: - (eamonm) -- C:\Windows\SysNative\drivers\eamonm.sys (ESET)
DRV:64bit: - (epfw) -- C:\Windows\SysNative\drivers\epfw.sys (ESET)
DRV:64bit: - (ehdrv) -- C:\Windows\SysNative\drivers\ehdrv.sys (ESET)
DRV:64bit: - (epfwwfp) -- C:\Windows\SysNative\drivers\epfwwfp.sys (ESET)
DRV:64bit: - (EpfwLWF) -- C:\Windows\SysNative\drivers\EpfwLWF.sys (ESET)
DRV:64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek )
DRV:64bit: - (MEIx64) -- C:\Windows\SysNative\drivers\TeeDriverx64.sys (Intel Corporation)
DRV:64bit: - (vflt) -- C:\Windows\SysNative\drivers\vfilter.sys (Shrew Soft Inc)
DRV:64bit: - (vnet) -- C:\Windows\SysNative\drivers\virtualnet.sys (Shrew Soft Inc)
DRV:64bit: - (igfx) -- C:\Windows\SysNative\drivers\igdkmd64.sys (Intel Corporation)
DRV:64bit: - (iusb3hcs) -- C:\Windows\SysNative\drivers\iusb3hcs.sys (Intel Corporation)
DRV:64bit: - (iusb3xhc) -- C:\Windows\SysNative\drivers\iusb3xhc.sys (Intel Corporation)
DRV:64bit: - (iusb3hub) -- C:\Windows\SysNative\drivers\iusb3hub.sys (Intel Corporation)
DRV:64bit: - (LVUVC64) -- C:\Windows\SysNative\drivers\lvuvc64.sys (Logitech Inc.)
DRV:64bit: - (LVRS64) -- C:\Windows\SysNative\drivers\lvrs64.sys (Logitech Inc.)
DRV:64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation)
DRV:64bit: - (TsUsbGD) -- C:\Windows\SysNative\drivers\TsUsbGD.sys (Microsoft Corporation)
DRV:64bit: - (CLVirtualDrive) -- C:\Windows\SysNative\drivers\CLVirtualDrive.sys (CyberLink)
DRV:64bit: - (dmvsc) -- C:\Windows\SysNative\drivers\dmvsc.sys (Microsoft Corporation)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV:64bit: - (EZUSB) -- C:\Windows\SysNative\drivers\ezusb64.sys (Castles Technology Co.,Ltd)
DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CMDTDFJS
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-21-2932146919-1869997242-3180716461-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
IE - HKU\S-1-5-21-2932146919-1869997242-3180716461-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-2932146919-1869997242-3180716461-1002\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-2932146919-1869997242-3180716461-1002\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CMDTDFJS
IE - HKU\S-1-5-21-2932146919-1869997242-3180716461-1002\..\SearchScopes\{6236E8CA-5DEF-4196-BFA1-E659CA82AA84}: "URL" = https://www.google.com/search?q={searchTerms}
IE - HKU\S-1-5-21-2932146919-1869997242-3180716461-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "www.google.it"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:29.0.1
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF64_14_0_0_125.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll ()
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.55.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.55.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\PROGRAM FILES\ESET\ESET SMART SECURITY\MOZILLA THUNDERBIRD [2014/05/21 09:32:11 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 29.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 29.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 24.5.0\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 24.5.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2014/05/21 09:32:11 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{FF76B0FA-B825-A4AB-2FCC-2B2CAD781266}: C:\Program Files (x86)\BlockAndSurf-soft\170.xpi

[2014/05/23 13:16:21 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Alessandro\AppData\Roaming\mozilla\Extensions
[2014/05/28 15:16:09 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Alessandro\AppData\Roaming\mozilla\Firefox\Profiles\dd6pgw4v.default\extensions
[2014/05/23 13:15:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
[2014/05/23 13:15:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\browser\extensions
[2014/05/23 13:15:24 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\mozilla firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - plugin: Error reading preferences file
CHR - Extension: Google Wallet = C:\Users\Alessandro\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_2\

O1 HOSTS File: ([2009/06/10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4:64bit: - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [CLMLServer_For_P2G8] c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe (CyberLink)
O4 - HKLM..\Run: [CLVirtualDrive] c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe (CyberLink Corp.)
O4 - HKLM..\Run: [LWS] C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe (Logitech Inc.)
O4 - HKLM..\Run: [USB3MON] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel Corporation)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 28
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\S-1-5-21-2932146919-1869997242-3180716461-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8:64bit: - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL (Microsoft Corporation)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/products/plugin/autodl/jinstall-1_3_1_13-windows-i586.cab (Java Plug-in 10.55.2)
O16 - DPF: {CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA} http://java.sun.com/products/plugin/autodl/jinstall-1_3_1_13-windows-i586.cab (Java Plug-in 1.3.1_13)
O16 - DPF: {CAFEEFAC-0015-0000-0016-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_16-windows-i586.cab (Java Plug-in 1.5.0_16)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_55-windows-i586.cab (Java Plug-in 10.55.2)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{99B7EC4A-FD7A-4D27-8F90-57AFA2FEEF4B}: NameServer = 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2014/05/21 15:03:04 | 000,000,000 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (sh4native Sh4Removal)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 60 Days ==========

[2014/06/18 20:35:15 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Alessandro\Desktop\OTL(1).exe
[2014/06/18 20:34:22 | 001,016,261 | ---- | C] (Thisisu) -- C:\Users\Alessandro\Desktop\JRT(1).exe
[2014/06/18 18:38:17 | 000,000,000 | ---D | C] -- C:\FRST
[2014/06/18 18:37:48 | 002,081,280 | ---- | C] (Farbar) -- C:\Users\Alessandro\Desktop\FRST64.exe
[2014/06/18 17:07:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Thunderbird
[2014/06/18 09:26:16 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\AppData\Roaming\Qeav
[2014/06/18 09:26:16 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\AppData\Roaming\Otwu
[2014/06/18 09:26:16 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\AppData\Roaming\Koupak
[2014/06/17 18:39:43 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\AppData\Local\Macromedia
[2014/06/17 18:38:44 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee Security Scan
[2014/06/17 18:38:44 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee
[2014/06/17 18:38:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
[2014/06/17 18:38:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\McAfee Security Scan
[2014/06/11 08:52:44 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\AppData\Local\VirtualStore
[2014/06/11 08:47:13 | 000,801,280 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\usp10.dll
[2014/06/11 08:47:12 | 000,288,192 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\FWPKCLNT.SYS
[2014/06/11 08:47:12 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\msxml6r.dll
[2014/06/11 08:47:12 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msxml6r.dll
[2014/06/11 08:47:12 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\msxml3r.dll
[2014/06/11 08:47:12 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msxml3r.dll
[2014/06/11 08:47:11 | 003,178,496 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\rdpcorets.dll
[2014/06/11 08:47:11 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\RdpGroupPolicyExtension.dll
[2014/06/11 08:47:10 | 000,592,896 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\jscript9diag.dll
[2014/06/11 08:47:10 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mshtmled.dll
[2014/06/11 08:47:10 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ieetwproxystub.dll
[2014/06/11 08:47:10 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ieetwproxystub.dll
[2014/06/11 08:47:10 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\JavaScriptCollectionAgent.dll
[2014/06/11 08:47:10 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\JavaScriptCollectionAgent.dll
[2014/06/11 08:47:09 | 001,964,544 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\inetcpl.cpl
[2014/06/11 08:47:09 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iesetup.dll
[2014/06/11 08:47:09 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iernonce.dll
[2014/06/11 08:47:09 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ieetwcollectorres.dll
[2014/06/11 08:47:08 | 002,040,832 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\inetcpl.cpl
[2014/06/11 08:47:08 | 000,631,808 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msfeeds.dll
[2014/06/11 08:47:08 | 000,608,768 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ie4uinit.exe
[2014/06/11 08:47:08 | 000,452,096 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dxtmsft.dll
[2014/06/11 08:47:08 | 000,440,832 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ieui.dll
[2014/06/11 08:47:08 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ieetwcollector.exe
[2014/06/11 08:47:08 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iesetup.dll
[2014/06/11 08:47:07 | 001,068,032 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mshtmlmedia.dll
[2014/06/11 08:47:07 | 000,704,512 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ieapfltr.dll
[2014/06/11 08:47:07 | 000,574,976 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ieui.dll
[2014/06/11 08:47:07 | 000,295,424 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dxtrans.dll
[2014/06/11 08:47:07 | 000,164,864 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\msrating.dll
[2014/06/11 08:47:07 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ieUnatt.exe
[2014/06/11 08:47:07 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iernonce.dll
[2014/06/11 08:47:06 | 005,782,528 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\jscript9.dll
[2014/06/11 08:47:06 | 001,249,280 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mshtmlmedia.dll
[2014/06/11 08:47:06 | 000,846,336 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ieapfltr.dll
[2014/06/11 08:47:06 | 000,752,640 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\jscript9diag.dll
[2014/06/11 08:47:06 | 000,548,352 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\vbscript.dll
[2014/06/11 08:47:06 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ieUnatt.exe
[2014/06/11 08:47:06 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mshtmled.dll
[2014/06/11 08:47:05 | 000,940,032 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\MsSpellCheckingFacility.exe
[2014/06/11 08:47:05 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msrating.dll
[2014/06/11 08:45:56 | 000,506,368 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\aepdu.dll
[2014/06/11 08:45:56 | 000,424,448 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\aeinv.dll
[2014/06/10 16:47:26 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\dikeDownload
[2014/06/10 16:36:34 | 000,000,000 | ---D | C] -- C:\windows\Downloaded Installations
[2014/06/10 16:29:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\InfoCert S.p.A
[2014/06/10 16:29:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\InfoCert
[2014/06/10 16:29:08 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\AppData\Local\Downloaded Installations
[2014/06/10 15:28:21 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\prenti
[2014/06/10 15:28:21 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\InpsInail
[2014/06/10 15:28:05 | 000,000,000 | ---D | C] -- C:\comunica_inps_inail
[2014/06/10 14:54:55 | 000,000,000 | ---D | C] -- C:\prtele
[2014/06/10 14:54:55 | 000,000,000 | ---D | C] -- C:\prova
[2014/06/10 14:53:25 | 000,000,000 | ---D | C] -- C:\windows\Sun
[2014/06/05 12:34:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ShrewSoft VPN Client
[2014/06/05 12:34:23 | 000,000,000 | ---D | C] -- C:\Program Files\ShrewSoft
[2014/06/05 12:34:23 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\AppData\Local\Shrew Soft VPN
[2014/06/05 12:34:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Shrew Soft VPN
[2014/05/29 19:35:45 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\AppData\Roaming\WinRAR
[2014/05/29 18:35:27 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\AppData\Roaming\CyberLink
[2014/05/27 22:52:13 | 000,000,000 | ---D | C] -- C:\windows\Minidump
[2014/05/27 22:50:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
[2014/05/27 22:45:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DVDVideoSoft
[2014/05/27 22:45:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DVDVideoSoft
[2014/05/27 22:44:20 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\AppData\Roaming\DVDVideoSoft
[2014/05/27 20:37:39 | 000,000,000 | ---D | C] -- C:\windows\ERUNT
[2014/05/27 19:43:42 | 000,536,576 | ---- | C] (SQLite Development Team) -- C:\windows\SysWow64\sqlite3.dll
[2014/05/27 19:43:15 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2014/05/27 17:32:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2014/05/27 17:32:37 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2014/05/23 13:15:45 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\AppData\Roaming\Mozilla
[2014/05/23 10:24:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab
[2014/05/21 18:56:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
[2014/05/21 15:58:04 | 000,122,584 | ---- | C] (Malwarebytes Corporation) -- C:\windows\SysNative\drivers\MBAMSwissArmy.sys
[2014/05/21 15:57:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
[2014/05/21 15:57:44 | 000,091,352 | ---- | C] (Malwarebytes Corporation) -- C:\windows\SysNative\drivers\mbamchameleon.sys
[2014/05/21 15:57:44 | 000,063,704 | ---- | C] (Malwarebytes Corporation) -- C:\windows\SysNative\drivers\mwac.sys
[2014/05/21 15:57:44 | 000,025,816 | ---- | C] (Malwarebytes Corporation) -- C:\windows\SysNative\drivers\mbam.sys
[2014/05/21 15:57:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes Anti-Malware
[2014/05/21 15:57:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2014/05/21 15:07:06 | 001,643,520 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\DWrite.dll
[2014/05/21 15:02:22 | 000,000,000 | ---D | C] -- C:\Program Files\Enigma Software Group
[2014/05/21 15:02:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Wise Installation Wizard
[2014/05/21 14:53:36 | 000,061,120 | ---- | C] (StdLib) -- C:\windows\SysNative\drivers\{c486bc7a-4f2c-4a8b-ac38-4952f70809b9}Gw64.sys
[2014/05/21 13:28:13 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\AppData\Local\com
[2014/05/21 13:21:34 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\AppData\Local\Programs
[2014/05/21 13:10:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VideoLAN
[2014/05/21 12:54:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2014/05/21 12:53:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Works
[2014/05/21 12:53:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio
[2014/05/21 12:53:22 | 000,000,000 | ---D | C] -- C:\windows\PCHEALTH
[2014/05/21 12:51:50 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2014/05/21 12:51:14 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\AppData\Local\Microsoft Help
[2014/05/21 12:51:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office
[2014/05/21 12:51:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2014/05/21 12:50:40 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2014/05/21 10:48:32 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Zero G Registry
[2014/05/21 10:48:22 | 000,000,000 | -H-D | C] -- C:\Users\Alessandro\InstallAnywhere
[2014/05/21 10:27:30 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\AppData\Roaming\Thunderbird
[2014/05/21 10:27:30 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\AppData\Local\Thunderbird
[2014/05/21 10:23:09 | 000,000,000 | ---D | C] -- C:\OLD
[2014/05/21 10:15:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\SWF Studio
[2014/05/21 10:15:16 | 000,045,175 | ---- | C] (Sun Microsystems) -- C:\windows\SysWow64\plugincpl131_13.cpl
[2014/05/21 10:15:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2 Runtime Environment
[2014/05/21 10:15:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\JavaSoft
[2014/05/21 09:52:02 | 005,694,464 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mstscax.dll
[2014/05/21 09:52:01 | 006,574,592 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mstscax.dll
[2014/05/21 09:50:12 | 000,264,616 | ---- | C] (Oracle Corporation) -- C:\windows\SysWow64\javaws.exe
[2014/05/21 09:50:12 | 000,175,528 | ---- | C] (Oracle Corporation) -- C:\windows\SysWow64\javaw.exe
[2014/05/21 09:50:12 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\windows\SysWow64\java.exe
[2014/05/21 09:48:24 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\AppData\Local\Sun
[2014/05/21 09:41:49 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\AppData\Local\Software della webcam Logitech®
[2014/05/21 09:41:44 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\AppData\Local\Mozilla
[2014/05/21 09:41:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2014/05/21 09:41:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service
[2014/05/21 09:41:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2014/05/21 09:38:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Oracle
[2014/05/21 09:38:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2014/05/21 09:38:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2014/05/21 09:38:22 | 000,096,168 | ---- | C] (Oracle Corporation) -- C:\windows\SysWow64\WindowsAccessBridge-32.dll
[2014/05/21 09:38:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
[2014/05/21 09:38:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2014/05/21 09:38:06 | 000,000,000 | ---D | C] -- C:\ProgramData\LogiShrd
[2014/05/21 09:37:42 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\AppData\Roaming\Leadertech
[2014/05/21 09:37:13 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\logishrd
[2014/05/21 09:37:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
[2014/05/21 09:37:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Logitech
[2014/05/21 09:37:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\LogiShrd
[2014/05/21 09:33:38 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\AppData\Roaming\ESET
[2014/05/21 09:33:38 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\AppData\Local\ESET
[2014/05/21 09:32:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
[2014/05/21 09:32:02 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET
[2014/05/21 09:32:02 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2014/05/21 09:25:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2014/05/21 09:23:55 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\AppData\Local\Google
[2014/05/21 09:23:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google
[2014/05/21 09:23:39 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\AppData\Local\Apps
[2014/05/21 09:23:38 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\AppData\Local\Deployment
[2014/05/21 09:21:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UTAX TA
[2014/05/21 09:21:06 | 006,544,384 | ---- | C] (Amyuni Technologies
http://www.amyuni.com) -- C:\windows\SysNative\cdintf450_64.dll
[2014/05/21 09:21:06 | 004,840,960 | ---- | C] (Amyuni Technologies
http://www.amyuni.com) -- C:\windows\SysWow64\cdintf450.dll
[2014/05/21 09:21:06 | 000,000,000 | ---D | C] -- C:\usr
[2014/05/21 09:21:02 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\AppData\Roaming\Sistemi
[2014/05/21 09:21:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Sistemi
[2014/05/21 09:20:02 | 000,000,000 | ---D | C] -- C:\Program Files\UTAX TA
[2014/05/21 09:16:14 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\AppData\Roaming\Macromedia
[2014/05/21 09:16:05 | 000,000,000 | -HSD | C] -- C:\Users\Alessandro\AppData\Local\EmieUserList
[2014/05/21 09:16:05 | 000,000,000 | -HSD | C] -- C:\Users\Alessandro\AppData\Local\EmieSiteList
[2014/05/21 09:15:21 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\AppData\Local\Power2Go8
[2014/05/21 09:15:11 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\AppData\Roaming\Adobe
[2014/05/21 09:15:10 | 000,000,000 | R--D | C] -- C:\Users\Alessandro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2014/05/21 09:15:10 | 000,000,000 | R--D | C] -- C:\Users\Alessandro\Searches
[2014/05/21 09:15:10 | 000,000,000 | R--D | C] -- C:\Users\Alessandro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2014/05/21 09:15:03 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\AppData\Roaming\Identities
[2014/05/21 09:15:01 | 000,000,000 | R--D | C] -- C:\Users\Alessandro\Contacts
[2014/05/21 09:14:56 | 000,000,000 | --SD | C] -- C:\Users\Alessandro\AppData\Roaming\Microsoft
[2014/05/21 09:14:56 | 000,000,000 | R--D | C] -- C:\Users\Alessandro\Videos
[2014/05/21 09:14:56 | 000,000,000 | R--D | C] -- C:\Users\Alessandro\Saved Games
[2014/05/21 09:14:56 | 000,000,000 | R--D | C] -- C:\Users\Alessandro\Pictures
[2014/05/21 09:14:56 | 000,000,000 | R--D | C] -- C:\Users\Alessandro\Music
[2014/05/21 09:14:56 | 000,000,000 | R--D | C] -- C:\Users\Alessandro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2014/05/21 09:14:56 | 000,000,000 | R--D | C] -- C:\Users\Alessandro\Links
[2014/05/21 09:14:56 | 000,000,000 | R--D | C] -- C:\Users\Alessandro\Favorites
[2014/05/21 09:14:56 | 000,000,000 | R--D | C] -- C:\Users\Alessandro\Downloads
[2014/05/21 09:14:56 | 000,000,000 | R--D | C] -- C:\Users\Alessandro\Documents
[2014/05/21 09:14:56 | 000,000,000 | R--D | C] -- C:\Users\Alessandro\Desktop
[2014/05/21 09:14:56 | 000,000,000 | R--D | C] -- C:\Users\Alessandro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2014/05/21 09:14:56 | 000,000,000 | -HSD | C] -- C:\Users\Alessandro\Documents\Video
[2014/05/21 09:14:56 | 000,000,000 | -HSD | C] -- C:\Users\Alessandro\AppData\Local\Temporary Internet Files
[2014/05/21 09:14:56 | 000,000,000 | -HSD | C] -- C:\Users\Alessandro\SendTo
[2014/05/21 09:14:56 | 000,000,000 | -HSD | C] -- C:\Users\Alessandro\Risorse di stampa
[2014/05/21 09:14:56 | 000,000,000 | -HSD | C] -- C:\Users\Alessandro\Risorse di rete
[2014/05/21 09:14:56 | 000,000,000 | -HSD | C] -- C:\Users\Alessandro\Recenti
[2014/05/21 09:14:56 | 000,000,000 | -HSD | C] -- C:\Users\Alessandro\Documents\Musica
[2014/05/21 09:14:56 | 000,000,000 | -HSD | C] -- C:\Users\Alessandro\Modelli
[2014/05/21 09:14:56 | 000,000,000 | -HSD | C] -- C:\Users\Alessandro\Menu Avvio
[2014/05/21 09:14:56 | 000,000,000 | -HSD | C] -- C:\Users\Alessandro\Impostazioni locali
[2014/05/21 09:14:56 | 000,000,000 | -HSD | C] -- C:\Users\Alessandro\Documents\Immagini
[2014/05/21 09:14:56 | 000,000,000 | -HSD | C] -- C:\Users\Alessandro\Documenti
[2014/05/21 09:14:56 | 000,000,000 | -HSD | C] -- C:\Users\Alessandro\Dati applicazioni
[2014/05/21 09:14:56 | 000,000,000 | -HSD | C] -- C:\Users\Alessandro\AppData\Local\Dati applicazioni
[2014/05/21 09:14:56 | 000,000,000 | -HSD | C] -- C:\Users\Alessandro\AppData\Local\Cronologia
[2014/05/21 09:14:56 | 000,000,000 | -HSD | C] -- C:\Users\Alessandro\Cookies
[2014/05/21 09:14:56 | 000,000,000 | -H-D | C] -- C:\Users\Alessandro\Documents\hp.system.package.metadata
[2014/05/21 09:14:56 | 000,000,000 | -H-D | C] -- C:\Users\Alessandro\Documents\hp.applications.package.appdata
[2014/05/21 09:14:56 | 000,000,000 | -H-D | C] -- C:\Users\Alessandro\AppData
[2014/05/21 09:14:56 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\AppData\Local\Temp
[2014/05/21 09:14:56 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\AppData\Local\Microsoft
[2014/05/21 09:14:56 | 000,000,000 | ---D | C] -- C:\Users\Alessandro\AppData\Roaming\Media Center Programs
[2014/05/20 16:00:50 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\TsUsbGDCoInstaller.dll
[2014/05/20 16:00:50 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\tsusbflt.sys.mui
[2014/05/20 16:00:49 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\TsUsbFlt.sys
[2014/05/20 16:00:49 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\TsUsbRedirectionGroupPolicyControl.exe
[2014/05/20 16:00:49 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\TsUsbRedirectionGroupPolicyExtension.dll
[2014/05/20 16:00:48 | 001,147,392 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mstsc.exe
[2014/05/20 16:00:48 | 001,068,544 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mstsc.exe
[2014/05/20 16:00:48 | 001,057,280 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\rdvidcrl.dll
[2014/05/20 16:00:48 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\rdvidcrl.dll
[2014/05/20 16:00:48 | 000,420,864 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wksprt.exe
[2014/05/20 16:00:48 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\TSWbPrxy.exe
[2014/05/20 16:00:48 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\tsgqec.dll
[2014/05/20 16:00:48 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\MsRdpWebAccess.dll
[2014/05/20 16:00:48 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\tsgqec.dll
[2014/05/20 16:00:48 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\MsRdpWebAccess.dll
[2014/05/20 16:00:48 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wksprtPS.dll
[2014/05/20 16:00:48 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wksprtPS.dll
[2014/05/20 15:59:59 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\TsUsbGD.sys
[2014/05/20 15:59:59 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\rdpvideominiport.sys
[2014/05/20 15:59:58 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\rdpudd.dll
[2014/05/20 15:59:58 | 000,228,864 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\rdpendp_winip.dll
[2014/05/20 15:59:58 | 000,192,000 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\rdpendp_winip.dll
[2014/05/20 15:59:40 | 000,000,000 | ---D | C] -- C:\windows\SysWow64\Wat
[2014/05/20 15:59:40 | 000,000,000 | ---D | C] -- C:\windows\SysNative\Wat
[2014/05/20 15:57:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe
[2014/05/20 15:57:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe
[2014/05/20 15:57:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2014/05/20 15:56:10 | 000,699,056 | ---- | C] (Adobe Systems Incorporated) -- C:\windows\SysWow64\FlashPlayerApp.exe
[2014/05/20 15:56:10 | 000,071,344 | ---- | C] (Adobe Systems Incorporated) -- C:\windows\SysWow64\FlashPlayerCPLApp.cpl
[2014/05/20 15:56:09 | 000,000,000 | ---D | C] -- C:\windows\SysWow64\Macromed
[2014/05/20 15:56:08 | 000,000,000 | ---D | C] -- C:\windows\SysNative\Macromed
[2014/05/20 15:55:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2014/05/20 15:55:10 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2014/05/20 15:54:33 | 001,030,144 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\TSWorkspace.dll
[2014/05/20 15:54:33 | 000,792,576 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\TSWorkspace.dll
[2014/05/20 15:54:32 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\qdvd.dll
[2014/05/20 15:54:32 | 000,366,592 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\qdvd.dll
[2014/05/20 15:10:07 | 000,000,000 | --SD | C] -- C:\windows\SysNative\CompatTel
[2014/05/20 15:04:26 | 012,625,920 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wmploc.DLL
[2014/05/20 15:04:26 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wmploc.DLL
[2014/05/20 15:04:26 | 011,410,432 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wmp.dll
[2014/05/20 15:04:25 | 014,631,424 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wmp.dll
[2014/05/20 14:58:02 | 000,000,000 | ---D | C] -- C:\windows\Migration
[2014/05/20 14:54:07 | 000,028,368 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\IEUDINIT.EXE
[2014/05/20 14:49:27 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\elshyph.dll
[2014/05/20 14:49:24 | 000,645,120 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\jsIntl.dll
[2014/05/20 14:49:24 | 000,616,104 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ieapfltr.dat
[2014/05/20 14:49:24 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\html.iec
[2014/05/20 14:49:24 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\elshyph.dll
[2014/05/20 14:49:24 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\url.dll
[2014/05/20 14:49:24 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iexpress.exe
[2014/05/20 14:49:24 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wextract.exe
[2014/05/20 14:49:24 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\occache.dll
[2014/05/20 14:49:24 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\inseng.dll
[2014/05/20 14:49:24 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\RegisterIEPKEYs.exe
[2014/05/20 14:49:24 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\icardie.dll
[2014/05/20 14:49:24 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\tdc.ocx
[2014/05/20 14:49:24 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\MshtmlDac.dll
[2014/05/20 14:49:24 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\pngfilt.dll
[2014/05/20 14:49:24 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\licmgr10.dll
[2014/05/20 14:49:23 | 000,942,592 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\jsIntl.dll
[2014/05/20 14:49:23 | 000,610,304 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\jscript.dll
[2014/05/20 14:49:23 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iepeers.dll
[2014/05/20 14:49:23 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\IEAdvpack.dll
[2014/05/20 14:49:23 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\RegisterIEPKEYs.exe
[2014/05/20 14:49:23 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iesysprep.dll
[2014/05/20 14:49:23 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\SetIEInstalledDate.exe
[2014/05/20 14:49:23 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mshtmler.dll
[2014/05/20 14:49:23 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\msfeedssync.exe
[2014/05/20 14:49:22 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\jscript.dll
[2014/05/20 14:49:22 | 000,616,104 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ieapfltr.dat
[2014/05/20 14:49:22 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\html.iec
[2014/05/20 14:49:22 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msls31.dll
[2014/05/20 14:49:22 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\url.dll
[2014/05/20 14:49:22 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iexpress.exe
[2014/05/20 14:49:22 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\occache.dll
[2014/05/20 14:49:22 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wextract.exe
[2014/05/20 14:49:22 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iepeers.dll
[2014/05/20 14:49:22 | 000,131,072 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\IEAdvpack.dll
[2014/05/20 14:49:22 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iesysprep.dll
[2014/05/20 14:49:22 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\inseng.dll
[2014/05/20 14:49:22 | 000,090,112 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\SetIEInstalledDate.exe
[2014/05/20 14:49:22 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\MshtmlDac.dll
[2014/05/20 14:49:22 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\icardie.dll
[2014/05/20 14:49:22 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\tdc.ocx
[2014/05/20 14:49:22 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\pngfilt.dll
[2014/05/20 14:49:22 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mshtmler.dll
[2014/05/20 14:49:22 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\imgutil.dll
[2014/05/20 14:49:22 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\licmgr10.dll
[2014/05/20 14:49:22 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mshta.exe
[2014/05/20 14:49:22 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msfeedssync.exe
[2014/05/20 14:34:59 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\wdf01000.sys.mui
[2014/05/20 14:31:17 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\browserchoice.exe
[2014/05/20 14:25:14 | 000,000,000 | ---D | C] -- C:\windows\SysNative\MRT
[2014/05/20 14:24:01 | 000,000,000 | ---D | C] -- C:\ProgramData\PDFC
[2014/05/20 14:21:24 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WUDFx.dll
[2014/05/20 14:21:24 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WUDFHost.exe
[2014/05/20 14:21:24 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WUDFPlatform.dll
[2014/05/20 14:21:24 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WUDFCoinstaller.dll
[2014/05/20 13:41:09 | 000,335,360 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msieftp.dll
[2014/05/20 13:41:09 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\msieftp.dll
[2014/05/20 13:40:56 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\poqexec.exe
[2014/05/20 13:40:56 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\poqexec.exe
[2014/05/20 13:40:27 | 000,395,776 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\webio.dll
[2014/05/20 13:40:27 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\webio.dll
[2014/05/20 13:40:04 | 000,465,920 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WMPhoto.dll
[2014/05/20 13:40:04 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\WMPhoto.dll
[2014/05/20 13:40:02 | 001,474,048 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\crypt32.dll
[2014/05/20 13:39:54 | 000,484,864 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wer.dll
[2014/05/20 13:39:54 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wer.dll
[2014/05/20 13:39:53 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\imagehlp.dll
[2014/05/20 13:37:18 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\portcls.sys
[2014/05/20 13:37:18 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\drmk.sys
[2014/05/20 13:37:17 | 001,930,752 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\authui.dll
[2014/05/20 13:37:17 | 001,796,096 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\authui.dll
[2014/05/20 13:37:17 | 000,190,464 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\SmartcardCredentialProvider.dll
[2014/05/20 13:37:16 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\credui.dll
[2014/05/20 13:37:16 | 000,152,576 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\SmartcardCredentialProvider.dll
[2014/05/20 13:37:10 | 000,658,432 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\RMActivate_isv.exe
[2014/05/20 13:37:10 | 000,626,176 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\RMActivate.exe
[2014/05/20 13:37:10 | 000,594,944 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\RMActivate_isv.exe
[2014/05/20 13:37:10 | 000,572,416 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\RMActivate.exe
[2014/05/20 13:37:10 | 000,553,984 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\RMActivate_ssp.exe
[2014/05/20 13:37:10 | 000,552,960 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\RMActivate_ssp_isv.exe
[2014/05/20 13:37:10 | 000,510,976 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\RMActivate_ssp.exe
[2014/05/20 13:37:10 | 000,508,928 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\RMActivate_ssp_isv.exe
[2014/05/20 13:37:09 | 000,528,384 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msdrm.dll
[2014/05/20 13:37:09 | 000,488,448 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\secproc.dll
[2014/05/20 13:37:09 | 000,485,888 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\secproc_isv.dll
[2014/05/20 13:37:09 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\secproc.dll
[2014/05/20 13:37:09 | 000,423,936 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\secproc_isv.dll
[2014/05/20 13:37:09 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\secproc_ssp_isv.dll
[2014/05/20 13:37:09 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\secproc_ssp.dll
[2014/05/20 13:37:08 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\secproc_ssp_isv.dll
[2014/05/20 13:37:08 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\secproc_ssp.dll
[2014/05/20 13:36:56 | 000,325,120 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\usbport.sys
[2014/05/20 13:36:56 | 000,007,808 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\usbd.sys
[2014/05/20 13:36:33 | 001,460,736 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\lsasrv.dll
[2014/05/20 13:36:32 | 003,969,984 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ntkrnlpa.exe
[2014/05/20 13:36:31 | 005,550,016 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ntoskrnl.exe
[2014/05/20 13:36:31 | 003,914,176 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ntoskrnl.exe
[2014/05/20 13:36:31 | 000,722,944 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\objsel.dll
[2014/05/20 13:36:31 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\winlogon.exe
[2014/05/20 13:36:30 | 000,538,112 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\objsel.dll
[2014/05/20 13:36:29 | 000,424,960 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KernelBase.dll
[2014/05/20 13:36:29 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\cngprovider.dll
[2014/05/20 13:36:29 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\adprovider.dll
[2014/05/20 13:36:29 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\capiprovider.dll
[2014/05/20 13:36:29 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dpapiprovider.dll
[2014/05/20 13:36:29 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\cngprovider.dll
[2014/05/20 13:36:29 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\adprovider.dll
[2014/05/20 13:36:29 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dimsroam.dll
[2014/05/20 13:36:29 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\dimsroam.dll
[2014/05/20 13:36:28 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\sspicli.dll
[2014/05/20 13:36:28 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\capiprovider.dll
[2014/05/20 13:36:28 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\dpapiprovider.dll
[2014/05/20 13:36:28 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wincredprovider.dll
[2014/05/20 13:36:28 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wincredprovider.dll
[2014/05/20 13:36:28 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\sspisrv.dll
[2014/05/20 13:36:28 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\secur32.dll
[2014/05/20 13:36:27 | 000,307,200 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ncrypt.dll
[2014/05/20 13:35:46 | 003,928,064 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d2d1.dll
[2014/05/20 13:35:46 | 002,565,120 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3d10warp.dll
[2014/05/20 13:34:56 | 000,376,768 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\netio.sys
[2014/05/20 13:34:33 | 000,190,912 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\storport.sys
[2014/05/20 13:34:33 | 000,027,584 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\Diskdump.sys
[2014/05/20 13:34:32 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iologmsg.dll
[2014/05/20 13:34:32 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iologmsg.dll
[2014/05/20 13:34:12 | 000,404,480 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\gdi32.dll
[2014/05/20 13:34:11 | 000,624,128 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\qedit.dll
[2014/05/20 13:34:11 | 000,509,440 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\qedit.dll
[2014/05/20 13:34:02 | 000,124,112 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\PresentationCFFRasterizerNative_v0300.dll
[2014/05/20 13:34:02 | 000,102,608 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
[2014/05/20 13:33:53 | 001,163,264 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\kernel32.dll
[2014/05/20 13:33:53 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wow64win.dll
[2014/05/20 13:33:53 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wow64.dll
[2014/05/20 13:33:53 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\setup16.exe
[2014/05/20 13:33:52 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ntvdm64.dll
[2014/05/20 13:33:52 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ntvdm64.dll
[2014/05/20 13:33:52 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wow64cpu.dll
[2014/05/20 13:33:52 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\instnm.exe
[2014/05/20 13:33:52 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wow32.dll
[2014/05/20 13:33:52 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\user.exe
[2014/05/20 13:33:39 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\scrrun.dll
[2014/05/20 13:33:39 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\scrrun.dll
[2014/05/20 13:33:39 | 000,156,160 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\cscript.exe
[2014/05/20 13:33:39 | 000,150,016 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wshom.ocx
[2014/05/20 13:33:39 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\cscript.exe
[2014/05/20 13:33:39 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wshom.ocx
[2014/05/20 13:32:49 | 001,424,384 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WindowsCodecs.dll
[2014/05/20 13:32:47 | 000,830,464 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\nshwfp.dll
[2014/05/20 13:32:47 | 000,656,896 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\nshwfp.dll
[2014/05/20 13:32:47 | 000,324,096 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\FWPUCLNT.DLL
[2014/05/20 13:32:47 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\FWPUCLNT.DLL
[2014/05/20 13:02:55 | 001,031,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\rdpcore.dll
[2014/05/20 13:02:55 | 000,826,880 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\rdpcore.dll
[2014/05/20 12:58:43 | 002,622,464 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wucltux.dll
[2014/05/20 12:58:43 | 000,057,880 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wuauclt.exe
[2014/05/20 12:58:43 | 000,044,056 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wups2.dll
[2014/05/20 12:58:40 | 000,701,976 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wuapi.dll
[2014/05/20 12:58:40 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wudriver.dll
[2014/05/20 12:58:40 | 000,038,424 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wups.dll
[2014/05/20 12:58:37 | 000,186,752 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wuwebv.dll
[2014/05/20 12:58:37 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wuapp.exe
[2014/05/20 12:54:57 | 000,000,000 | ---D | C] -- C:\windows\SysNative\appmgmt
[2014/05/20 12:47:53 | 000,000,000 | ---D | C] -- C:\windows\SoftwareDistribution
[2014/05/12 22:59:51 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2014/05/12 22:54:03 | 000,000,000 | ---D | C] -- C:\ProgramData\CryptoMill
[2014/05/12 22:52:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2014/05/12 22:52:41 | 000,424,960 | ---- | C] (Hewlett-Packard) -- C:\windows\SysNative\hpbrprtmon.dll
[2014/05/12 22:52:41 | 000,404,992 | ---- | C] (Hewlett-Packard) -- C:\windows\SysNative\hpbprtmon.dll
[2014/05/12 22:52:41 | 000,226,816 | ---- | C] (Hewlett-Packard) -- C:\windows\SysNative\hpbprtmonui.dll
[2014/05/12 22:52:25 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Communication and Chat
[2014/05/12 22:52:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2014/05/12 22:52:20 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Online Services
[2014/05/12 22:52:05 | 000,090,608 | ---- | C] (CyberLink) -- C:\windows\SysNative\drivers\CLVirtualDrive.sys
[2014/05/12 22:52:05 | 000,000,000 | ---D | C] -- C:\windows\SysNative\DRVSTORE
[2014/05/12 22:52:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\CyberLink
[2014/05/12 22:51:43 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\CyberLink
[2014/05/12 22:51:43 | 000,000,000 | ---D | C] -- C:\ProgramData\CyberLink
[2014/05/12 22:51:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CyberLink
[2014/05/12 22:50:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Temp
[2014/05/12 22:50:54 | 000,000,000 | ---D | C] -- C:\ProgramData\install_clap
[2014/05/12 22:49:59 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools
[2014/05/12 22:49:32 | 000,881,880 | ---- | C] (Realtek ) -- C:\windows\SysNative\drivers\Rt64win7.sys
[2014/05/12 22:49:32 | 000,108,760 | ---- | C] (Realtek Semiconductor Corporation) -- C:\windows\SysNative\RTNUninst64.dll
[2014/05/12 22:49:32 | 000,074,456 | ---- | C] (Realtek Semiconductor Corporation) -- C:\windows\SysNative\RtNicProp64.dll
[2014/05/12 22:49:16 | 000,041,984 | ---- | C] (Intel Corporation) -- C:\windows\SysNative\drivers\USB3Ver.dll
[2014/05/12 22:49:14 | 000,053,248 | ---- | C] (Windows XP Bundled build C-Centric Single User) -- C:\windows\SysWow64\CSVer.dll
[2014/05/12 22:49:09 | 000,016,344 | ---- | C] (Intel Corporation) -- C:\windows\SysNative\drivers\IntelMEFWVer.dll
[2014/05/12 22:48:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\postureAgent
[2014/05/12 22:48:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Intel
[2014/05/12 22:48:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intel
[2014/05/12 22:48:48 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Music, Photos and Videos
[2014/05/12 22:47:31 | 002,080,472 | ---- | C] (Realtek Semiconductor Corp.) -- C:\windows\RtlExUpd.dll
[2014/05/12 22:47:31 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Temp
[2014/05/12 22:47:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Realtek
[2014/05/12 22:47:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield
[2014/05/12 22:46:49 | 000,000,000 | ---D | C] -- C:\ProgramData\HPQLOG
[2014/05/12 22:46:32 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection
[2014/05/12 22:46:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Package Cache
[2014/05/12 22:46:01 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
[2014/05/12 22:44:51 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
[2014/05/12 22:44:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Hewlett-Packard
[2014/05/12 22:44:10 | 000,117,248 | ---- | C] (Hewlett-Packard) -- C:\windows\SysNative\HPMUIDir.exe
[2014/05/12 22:44:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Hewlett-Packard
[2014/05/12 22:41:27 | 000,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard
[2014/05/12 22:37:45 | 000,000,000 | ---D | C] -- C:\windows\SysNative\SRSLabs
[2014/05/12 22:37:44 | 000,000,000 | ---D | C] -- C:\windows\SysWow64\RTCOM
[2014/05/12 22:37:44 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2014/05/12 22:37:37 | 000,064,000 | ---- | C] (Khronos Group) -- C:\windows\SysNative\OpenCL.DLL
[2014/05/12 22:37:37 | 000,060,416 | ---- | C] (Khronos Group) -- C:\windows\SysWow64\OpenCL.DLL
[2014/05/12 22:37:37 | 000,000,000 | ---D | C] -- C:\Intel
[2014/05/12 22:37:31 | 000,000,000 | ---D | C] -- C:\Program Files\Intel
[2014/05/12 22:35:50 | 000,000,000 | ---D | C] -- C:\windows\CSC
[2014/05/12 22:35:18 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2014/05/12 22:32:58 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDINTAM.DLL
[2014/05/12 22:32:58 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDINMAL.DLL
[2014/05/12 22:32:58 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDINDEV.DLL
[2014/05/12 22:32:58 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDINBEN.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDINTEL.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDINTAM.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDINPUN.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDINORI.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDINORI.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDINMAR.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDINMAR.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDINMAL.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDINKAN.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDINKAN.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDINHIN.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDINHIN.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDINGUJ.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDINEN.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDINDEV.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDINBEN.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDINBE2.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDINBE1.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDINASA.DLL
[2014/05/12 22:32:58 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDINTEL.DLL
[2014/05/12 22:32:58 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDINPUN.DLL
[2014/05/12 22:32:58 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDINGUJ.DLL
[2014/05/12 22:32:58 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDINBE2.DLL
[2014/05/12 22:32:58 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDINBE1.DLL
[2014/05/12 22:32:58 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDINASA.DLL
[2014/05/12 22:28:50 | 002,776,576 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msmpeg2vdec.dll
[2014/05/12 22:28:50 | 002,284,544 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\msmpeg2vdec.dll
[2014/05/12 22:28:50 | 001,682,432 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\XpsPrint.dll
[2014/05/12 22:28:50 | 001,238,528 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3d10.dll
[2014/05/12 22:28:50 | 001,158,144 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\XpsPrint.dll
[2014/05/12 22:28:50 | 000,648,192 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3d10level9.dll
[2014/05/12 22:28:50 | 000,522,752 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\XpsGdiConverter.dll
[2014/05/12 22:28:50 | 000,364,544 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\XpsGdiConverter.dll
[2014/05/12 22:28:50 | 000,363,008 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dxgi.dll
[2014/05/12 22:28:50 | 000,333,312 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3d10_1core.dll
[2014/05/12 22:28:50 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3d10core.dll
[2014/05/12 22:28:50 | 000,245,248 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WindowsCodecsExt.dll
[2014/05/12 22:28:50 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\UIAnimation.dll
[2014/05/12 22:28:50 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3d10_1.dll
[2014/05/12 22:28:50 | 000,187,392 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\UIAnimation.dll
[2014/05/12 22:28:50 | 000,010,752 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2014/05/12 22:28:50 | 000,010,752 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2014/05/12 22:28:50 | 000,009,728 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2014/05/12 22:28:50 | 000,009,728 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2014/05/12 22:28:50 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2014/05/12 22:28:50 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2014/05/12 22:28:50 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
[2014/05/12 22:28:50 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-ole32-l1-1-0.dll
[2014/05/12 22:28:50 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
[2014/05/12 22:28:50 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-user32-l1-1-0.dll
[2014/05/12 22:28:50 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2014/05/12 22:28:50 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2014/05/12 22:28:50 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
[2014/05/12 22:28:50 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-version-l1-1-0.dll
[2014/05/12 22:28:50 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
[2014/05/12 22:28:50 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-shell32-l1-1-0.dll
[2014/05/12 22:28:50 | 000,002,560 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2014/05/12 22:28:50 | 000,002,560 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2014/05/12 22:26:56 | 000,000,000 | ---D | C] -- C:\windows\Hewlett-Packard
[2014/05/12 22:15:22 | 000,000,000 | ---D | C] -- C:\windows\SysWow64\XPSViewer
[2014/05/12 22:15:22 | 000,000,000 | ---D | C] -- C:\windows\SysWow64\drivers\it-IT
[2014/05/12 22:15:22 | 000,000,000 | ---D | C] -- C:\windows\SysNative\drivers\it-IT
[2014/05/12 22:15:22 | 000,000,000 | ---D | C] -- C:\windows\it-IT
[2014/05/12 22:15:22 | 000,000,000 | ---D | C] -- C:\windows\SysWow64\it
[2014/05/12 22:15:22 | 000,000,000 | ---D | C] -- C:\windows\SysNative\it
[2014/05/12 22:15:22 | 000,000,000 | ---D | C] -- C:\windows\SysWow64\0410
[2014/05/12 22:15:22 | 000,000,000 | ---D | C] -- C:\windows\SysNative\0410
[2014/05/12 22:15:03 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\usbrpm.sys.mui
[2014/05/12 22:15:01 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\fvevol.sys.mui
[2014/05/12 22:14:58 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\nwifi.sys.mui
[2014/05/12 22:14:58 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\qwavedrv.sys.mui
[2014/05/12 22:14:55 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\drivers\it-IT\qwavedrv.sys.mui
[2014/05/12 22:14:52 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\volsnap.sys.mui
[2014/05/12 22:14:52 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\usbport.sys.mui
[2014/05/12 22:14:52 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\processr.sys.mui
[2014/05/12 22:14:52 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\intelppm.sys.mui
[2014/05/12 22:14:52 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\amdppm.sys.mui
[2014/05/12 22:14:52 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\amdk8.sys.mui
[2014/05/12 22:14:52 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\usbhub.sys.mui
[2014/05/12 22:14:52 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\ohci1394.sys.mui
[2014/05/12 22:14:52 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\1394ohci.sys.mui
[2014/05/12 22:14:52 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\serial.sys.mui
[2014/05/12 22:14:52 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\i8042prt.sys.mui
[2014/05/12 22:14:52 | 000,011,264 | ---- | C] (Brother Industries Ltd.) -- C:\windows\SysNative\drivers\it-IT\BrSerId.sys.mui
[2014/05/12 22:14:52 | 000,011,264 | ---- | C] (Brother Industries Ltd.) -- C:\windows\SysNative\drivers\it-IT\BrSerIb.sys.mui
[2014/05/12 22:14:52 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\acpi.sys.mui
[2014/05/12 22:14:52 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\battc.sys.mui
[2014/05/12 22:14:52 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\pci.sys.mui
[2014/05/12 22:14:52 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\IPMIDrv.sys.mui
[2014/05/12 22:14:52 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\sermouse.sys.mui
[2014/05/12 22:14:52 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\mouclass.sys.mui
[2014/05/12 22:14:52 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\kbdclass.sys.mui
[2014/05/12 22:14:52 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\wacompen.sys.mui
[2014/05/12 22:14:52 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\vhdmp.sys.mui
[2014/05/12 22:14:52 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\vdrvroot.sys.mui
[2014/05/12 22:14:52 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\tpm.sys.mui
[2014/05/12 22:14:52 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\isapnp.sys.mui
[2014/05/12 22:14:52 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\hdaudbus.sys.mui
[2014/05/12 22:14:52 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\parport.sys.mui
[2014/05/12 22:14:52 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\ataport.sys.mui
[2014/05/12 22:14:52 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\umbus.sys.mui
[2014/05/12 22:14:52 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\mssmbios.sys.mui
[2014/05/12 22:14:52 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\vwifibus.sys.mui
[2014/05/12 22:14:52 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\ULIAGPKX.SYS.mui
[2014/05/12 22:14:52 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\UAGP35.SYS.mui
[2014/05/12 22:14:52 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\NV_AGP.SYS.mui
[2014/05/12 22:14:52 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\MTConfig.sys.mui
[2014/05/12 22:14:52 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\mouhid.sys.mui
[2014/05/12 22:14:52 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\kbdhid.sys.mui
[2014/05/12 22:14:52 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\GAGP30KX.SYS.mui
[2014/05/12 22:14:52 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\disk.sys.mui
[2014/05/12 22:14:52 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\AGP440.sys.mui
[2014/05/12 22:14:52 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\wd.sys.mui
[2014/05/12 22:14:52 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\cdrom.sys.mui
[2014/05/12 22:14:52 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\amdide.sys.mui
[2014/05/12 22:14:51 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\drivers\it-IT\tcpip.sys.mui
[2014/05/12 22:14:51 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\mpio.sys.mui
[2014/05/12 22:14:51 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\bthport.sys.mui
[2014/05/12 22:14:51 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\msdsm.sys.mui
[2014/05/12 22:14:51 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\bthpan.sys.mui
[2014/05/12 22:14:51 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\pcmcia.sys.mui
[2014/05/12 22:14:51 | 000,003,584 | ---- | C] (SCM Microsystems, Inc.) -- C:\windows\SysNative\drivers\it-IT\pscr.sys.mui
[2014/05/12 22:14:51 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\portcls.sys.mui
[2014/05/12 22:14:51 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\HdAudio.sys.mui
[2014/05/12 22:14:51 | 000,003,584 | ---- | C] (ATI Technologies Inc.) -- C:\windows\SysNative\drivers\it-IT\atikmdag.sys.mui
[2014/05/12 22:14:51 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\rndismpx.sys.mui
[2014/05/12 22:14:51 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\rndismp6.sys.mui
[2014/05/12 22:14:51 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\hidbth.sys.mui
[2014/05/12 22:14:51 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\serscan.sys.mui
[2014/05/12 22:14:51 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\pnpmem.sys.mui
[2014/05/12 22:14:51 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\Dot4usb.sys.mui
[2014/05/12 22:14:51 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\BTHUSB.SYS.mui
[2014/05/12 22:14:51 | 000,002,560 | ---- | C] (Brother Industries Ltd.) -- C:\windows\SysNative\drivers\it-IT\BrParwdm.sys.mui
[2014/05/12 22:14:51 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\bthenum.sys.mui
[2014/05/12 22:14:48 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\fltmgr.sys.mui
[2014/05/12 22:14:47 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\ndis.sys.mui
[2014/05/12 22:14:47 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\drivers\it-IT\bfe.dll.mui
[2014/05/12 22:14:47 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\drivers\it-IT\pacer.sys.mui
[2014/05/12 22:14:47 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\scsiport.sys.mui
[2014/05/12 22:14:46 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\tcpip.sys.mui
[2014/05/12 22:14:46 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\http.sys.mui
[2014/05/12 22:14:46 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\ws2ifsl.sys.mui
[2014/05/12 22:14:45 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\bfe.dll.mui
[2014/05/12 22:14:45 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\pacer.sys.mui
[2014/05/12 22:14:45 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\rdpwd.sys.mui
[2014/05/12 22:14:44 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\ntfs.sys.mui
[2014/05/12 22:14:44 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\afd.sys.mui
[2014/05/12 22:14:44 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\tunnel.sys.mui
[2014/05/12 22:14:44 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\luafv.sys.mui
[2014/05/12 22:14:44 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\rdbss.sys.mui
[2014/05/12 22:14:44 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\modem.sys.mui
[2014/05/12 22:14:44 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\ipnat.sys.mui
[2014/05/12 22:14:44 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\volmgrx.sys.mui
[2014/05/12 22:14:44 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\srv.sys.mui
[2014/05/12 22:14:44 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\drivers\it-IT\scfilter.sys.mui
[2014/05/12 22:14:43 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\drivers\it-IT\ndiscap.sys.mui
[2014/05/12 22:14:43 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\ndiscap.sys.mui
[2014/05/12 22:14:43 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\RNDISMP.sys.mui
[2014/05/12 22:14:43 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\ndisuio.sys.mui
[2014/05/12 22:14:43 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\scfilter.sys.mui
[2014/05/12 22:14:43 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\partmgr.sys.mui
[2014/05/12 22:14:43 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\mountmgr.sys.mui
[2014/05/12 22:11:40 | 002,565,632 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\esent.dll
[2014/05/12 22:11:40 | 001,699,328 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\esent.dll
[2014/05/12 22:11:40 | 000,107,904 | ---- | C] (Advanced Micro Devices) -- C:\windows\SysNative\drivers\amdsata.sys
[2014/05/12 22:11:40 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\fsutil.exe
[2014/05/12 22:11:40 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\fsutil.exe
[2014/05/12 22:11:40 | 000,027,008 | ---- | C] (Advanced Micro Devices) -- C:\windows\SysNative\drivers\amdxata.sys
[2014/05/12 22:10:45 | 001,732,032 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ntdll.dll
[2014/05/12 22:10:45 | 000,878,080 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\advapi32.dll
[2014/05/12 22:10:45 | 000,859,648 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\tdh.dll
[2014/05/12 22:10:45 | 000,619,520 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\tdh.dll
[2014/05/12 22:09:24 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\conhost.exe
[2014/05/12 22:09:24 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\winsrv.dll
[2014/05/12 22:09:24 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\smss.exe
[2014/05/12 22:09:24 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\csrsrv.dll
[2014/05/12 22:09:24 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\apisetschema.dll
[2014/05/12 22:09:24 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\apisetschema.dll
[2014/05/12 22:09:24 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2014/05/12 22:09:24 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2014/05/12 22:09:24 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2014/05/12 22:09:24 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2014/05/12 22:09:24 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2014/05/12 22:09:24 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2014/05/12 22:09:24 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2014/05/12 22:09:24 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2014/05/12 22:09:24 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2014/05/12 22:09:24 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2014/05/12 22:09:24 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2014/05/12 22:09:24 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2014/05/12 22:09:24 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2014/05/12 22:09:24 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2014/05/12 22:09:24 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2014/05/12 22:09:24 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2014/05/12 22:09:24 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2014/05/12 22:08:50 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\shdocvw.dll
[2014/05/12 22:08:03 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\comctl32.dll
[2014/05/12 22:07:29 | 000,224,256 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wintrust.dll
[2014/05/12 22:07:29 | 000,139,776 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\cryptnet.dll
[2014/05/12 22:07:09 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\hidclass.sys
[2014/05/12 22:07:09 | 000,032,896 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\hidparse.sys
[2014/05/12 22:06:09 | 000,155,584 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\ataport.sys
[2014/05/12 22:05:45 | 000,461,312 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\scavengeui.dll
[2014/05/12 22:05:31 | 001,217,024 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\rpcrt4.dll
[2014/05/12 22:05:03 | 000,368,128 | ---- | C] (Adobe Systems Incorporated) -- C:\windows\SysNative\atmfd.dll
[2014/05/12 22:05:03 | 000,295,424 | ---- | C] (Adobe Systems Incorporated) -- C:\windows\SysWow64\atmfd.dll
[2014/05/12 22:05:03 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\fontsub.dll
[2014/05/12 22:05:03 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\fontsub.dll
[2014/05/12 22:05:03 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\windows\SysNative\atmlib.dll
[2014/05/12 22:05:03 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\lpk.dll
[2014/05/12 22:05:03 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\windows\SysWow64\atmlib.dll
[2014/05/12 22:05:03 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dciman32.dll
[2014/05/12 22:04:48 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\davclnt.dll
[2014/05/12 22:04:09 | 000,751,104 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\win32spl.dll
[2014/05/12 22:04:09 | 000,492,544 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\win32spl.dll
[2014/05/12 22:02:57 | 001,887,232 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3d11.dll
[2014/05/12 22:02:57 | 001,505,280 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3d11.dll
[2014/05/12 22:02:43 | 000,265,064 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\dxgmms1.sys
[2014/05/12 22:02:43 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\cdd.dll
[2014/05/12 22:02:03 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wwanprotdim.dll
[2014/05/12 22:01:45 | 001,192,448 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\certutil.exe
[2014/05/12 22:01:45 | 000,903,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\certutil.exe
[2014/05/12 22:01:45 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\certenc.dll
[2014/05/12 22:01:45 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\certenc.dll
[2014/05/12 22:01:04 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\cryptdlg.dll
[2014/05/12 22:01:04 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\cryptdlg.dll
[2014/05/12 22:00:48 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\usb8023.sys
[2014/05/12 22:00:36 | 001,888,768 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WMVDECOD.DLL
[2014/05/12 22:00:36 | 001,620,992 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\WMVDECOD.DLL
[2014/05/12 22:00:03 | 000,111,448 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\consent.exe
[2014/05/12 21:59:29 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\taskhost.exe
[2014/05/12 21:58:58 | 002,746,368 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\gameux.dll
[2014/05/12 21:58:58 | 002,576,384 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\gameux.dll
[2014/05/12 21:58:58 | 000,441,856 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\Wpc.dll
[2014/05/12 21:58:58 | 000,308,736 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\Wpc.dll
[2014/05/12 21:58:58 | 000,055,296 | ---- | C] (Microsoft) -- C:\windows\SysWow64\cero.rs
[2014/05/12 21:58:58 | 000,055,296 | ---- | C] (Microsoft) -- C:\windows\SysNative\cero.rs
[2014/05/12 21:58:58 | 000,051,712 | ---- | C] (Microsoft) -- C:\windows\SysWow64\esrb.rs
[2014/05/12 21:58:58 | 000,051,712 | ---- | C] (Microsoft) -- C:\windows\SysNative\esrb.rs
[2014/05/12 21:58:58 | 000,046,592 | ---- | C] (Microsoft) -- C:\windows\SysWow64\fpb.rs
[2014/05/12 21:58:58 | 000,046,592 | ---- | C] (Microsoft) -- C:\windows\SysNative\fpb.rs
[2014/05/12 21:58:58 | 000,045,568 | ---- | C] (Microsoft) -- C:\windows\SysWow64\oflc-nz.rs
[2014/05/12 21:58:58 | 000,045,568 | ---- | C] (Microsoft) -- C:\windows\SysNative\oflc-nz.rs
[2014/05/12 21:58:58 | 000,044,544 | ---- | C] (Microsoft) -- C:\windows\SysWow64\pegibbfc.rs
[2014/05/12 21:58:58 | 000,044,544 | ---- | C] (Microsoft) -- C:\windows\SysNative\pegibbfc.rs
[2014/05/12 21:58:58 | 000,043,520 | ---- | C] (Microsoft) -- C:\windows\SysWow64\csrr.rs
[2014/05/12 21:58:58 | 000,043,520 | ---- | C] (Microsoft) -- C:\windows\SysNative\csrr.rs
[2014/05/12 21:58:58 | 000,040,960 | ---- | C] (Microsoft) -- C:\windows\SysWow64\cob-au.rs
[2014/05/12 21:58:58 | 000,040,960 | ---- | C] (Microsoft) -- C:\windows\SysNative\cob-au.rs
[2014/05/12 21:58:58 | 000,030,720 | ---- | C] (Microsoft) -- C:\windows\SysWow64\usk.rs
[2014/05/12 21:58:58 | 000,030,720 | ---- | C] (Microsoft) -- C:\windows\SysNative\usk.rs
[2014/05/12 21:58:58 | 000,023,552 | ---- | C] (Microsoft) -- C:\windows\SysWow64\oflc.rs
[2014/05/12 21:58:58 | 000,023,552 | ---- | C] (Microsoft) -- C:\windows\SysNative\oflc.rs
[2014/05/12 21:58:58 | 000,021,504 | ---- | C] (Microsoft) -- C:\windows\SysWow64\grb.rs
[2014/05/12 21:58:58 | 000,021,504 | ---- | C] (Microsoft) -- C:\windows\SysNative\grb.rs
[2014/05/12 21:58:58 | 000,020,480 | ---- | C] (Microsoft) -- C:\windows\SysWow64\pegi-pt.rs
[2014/05/12 21:58:58 | 000,020,480 | ---- | C] (Microsoft) -- C:\windows\SysNative\pegi-pt.rs
[2014/05/12 21:58:58 | 000,020,480 | ---- | C] (Microsoft) -- C:\windows\SysWow64\pegi-fi.rs
[2014/05/12 21:58:58 | 000,020,480 | ---- | C] (Microsoft) -- C:\windows\SysNative\pegi-fi.rs
[2014/05/12 21:58:58 | 000,020,480 | ---- | C] (Microsoft) -- C:\windows\SysWow64\pegi.rs
[2014/05/12 21:58:58 | 000,020,480 | ---- | C] (Microsoft) -- C:\windows\SysNative\pegi.rs
[2014/05/12 21:58:58 | 000,015,360 | ---- | C] (Microsoft) -- C:\windows\SysWow64\djctq.rs
[2014/05/12 21:58:58 | 000,015,360 | ---- | C] (Microsoft) -- C:\windows\SysNative\djctq.rs
[2014/05/12 21:58:33 | 000,478,208 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dpnet.dll
[2014/05/12 21:58:33 | 000,376,832 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\dpnet.dll
[2014/05/12 21:58:17 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dhcpcore6.dll
[2014/05/12 21:58:17 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\dhcpcore6.dll
[2014/05/12 21:58:17 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dhcpcsvc6.dll
[2014/05/12 21:56:46 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\netcorehc.dll
[2014/05/12 21:56:46 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ncsi.dll
[2014/05/12 21:56:46 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\netcorehc.dll
[2014/05/12 21:56:46 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ncsi.dll
[2014/05/12 21:56:46 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\netevent.dll
[2014/05/12 21:56:46 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\netevent.dll
[2014/05/12 21:55:54 | 000,503,808 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\srcore.dll
[2014/05/12 21:55:28 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\OxpsConverter.exe
[2014/05/12 21:55:14 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\synceng.dll
[2014/05/12 21:55:14 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\synceng.dll
[2014/05/12 21:54:24 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\RNDISMP.sys
[2014/05/12 21:54:11 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\localspl.dll
[2014/05/12 21:53:44 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\netapi32.dll
[2014/05/12 21:53:44 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\browcli.dll
[2014/05/12 21:53:44 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\browcli.dll
[2014/05/12 21:53:29 | 003,216,384 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msi.dll
[2014/05/12 21:53:12 | 001,133,568 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\cdosys.dll
[2014/05/12 21:53:12 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\cdosys.dll
[2014/05/12 21:52:25 | 000,054,376 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\WdfLdr.sys
[2014/05/12 21:52:25 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\Wdfres.dll
[2014/05/12 21:51:52 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\rdpcorekmts.dll
[2014/05/12 21:51:52 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\rdpwsx.dll
[2014/05/12 21:51:52 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\rdrmemptylst.exe
[2014/05/12 21:51:39 | 000,515,584 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\timedate.cpl
[2014/05/12 21:51:39 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\timedate.cpl
[2014/05/12 21:51:09 | 000,634,880 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msvcrt.dll
[2014/05/12 21:50:55 | 000,023,408 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\fs_rec.sys
[2014/05/12 21:50:41 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\windows\splwow64.exe
[2014/05/12 21:50:08 | 000,509,952 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ntshrui.dll
[2014/05/12 21:49:49 | 001,572,864 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\quartz.dll
[2014/05/12 21:49:49 | 001,328,128 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\quartz.dll
[2014/05/12 21:49:36 | 000,723,456 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\EncDec.dll
[2014/05/12 21:49:36 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\EncDec.dll
[2014/05/12 21:49:12 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\packager.dll
[2014/05/12 21:49:12 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\packager.dll
[2014/05/12 21:48:59 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\psisdecd.dll
[2014/05/12 21:48:59 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\psisdecd.dll
[2014/05/12 21:48:59 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\psisrndr.ax
[2014/05/12 21:48:59 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\psisrndr.ax
[2014/05/12 21:48:32 | 000,861,696 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\oleaut32.dll
[2014/05/12 21:48:32 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\oleacc.dll
[2014/05/12 21:48:18 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\xmllite.dll
[2014/05/12 21:48:04 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\odbcjt32.dll
[2014/05/12 21:48:04 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\odbctrac.dll
[2014/05/12 21:48:04 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\odbctrac.dll
[2014/05/12 21:48:04 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\odbccp32.dll
[2014/05/12 21:48:04 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\odbccp32.dll
[2014/05/12 21:48:04 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\odbccu32.dll
[2014/05/12 21:48:04 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\odbccr32.dll
[2014/05/12 21:48:04 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\odbccu32.dll
[2014/05/12 21:48:04 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\odbccr32.dll
[2014/05/12 21:47:49 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\drvinst.exe
[2014/05/12 21:47:49 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\devrtl.dll
[2014/05/12 21:47:35 | 002,315,776 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\tquery.dll
[2014/05/12 21:47:35 | 002,223,616 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mssrch.dll
[2014/05/12 21:47:35 | 001,549,312 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\tquery.dll
[2014/05/12 21:47:35 | 001,401,344 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mssrch.dll
[2014/05/12 21:47:35 | 000,778,752 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mssvp.dll
[2014/05/12 21:47:35 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mssvp.dll
[2014/05/12 21:47:35 | 000,491,520 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mssph.dll
[2014/05/12 21:47:35 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mssph.dll
[2014/05/12 21:47:35 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mssphtb.dll
[2014/05/12 21:47:35 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\SearchProtocolHost.exe
[2014/05/12 21:47:35 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\SearchFilterHost.exe
[2014/05/12 21:47:35 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msscntrs.dll
[2014/05/12 21:47:35 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\msscntrs.dll
[2014/05/12 21:45:43 | 002,871,808 | ---- | C] (Microsoft Corporation) -- C:\windows\explorer.exe
[2014/05/12 21:45:43 | 002,616,320 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\explorer.exe
[2014/05/12 21:45:17 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dnsapi.dll
[2014/05/12 21:45:17 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dnscacheugc.exe
[2014/05/12 21:45:17 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\dnscacheugc.exe
[2014/05/12 21:45:05 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\prevhost.exe
[2014/05/12 21:45:05 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\prevhost.exe
[2014/05/12 21:44:52 | 001,395,712 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mfc42.dll
[2014/05/12 21:44:52 | 001,359,872 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mfc42u.dll
[2014/05/12 21:44:52 | 001,164,288 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mfc42u.dll
[2014/05/12 21:44:52 | 001,137,664 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mfc42.dll
[2014/05/12 21:44:38 | 000,642,944 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\winload.efi
[2014/05/12 21:44:38 | 000,605,552 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\winload.exe
[2014/05/12 21:44:38 | 000,566,208 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\winresume.efi
[2014/05/12 21:44:38 | 000,518,672 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\winresume.exe
[2014/05/12 21:44:38 | 000,020,352 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\kdusb.dll
[2014/05/12 21:44:38 | 000,019,328 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\kd1394.dll
[2014/05/12 21:44:38 | 000,017,792 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\kdcom.dll
[2014/05/12 21:44:10 | 000,267,776 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\FXSCOVER.exe
[2014/05/12 21:43:29 | 001,118,720 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\sbe.dll
[2014/05/12 21:43:29 | 000,961,024 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\CPFilters.dll
[2014/05/12 21:43:29 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\sbe.dll
[2014/05/12 21:43:29 | 000,642,048 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\CPFilters.dll
[2014/05/12 21:43:29 | 000,259,072 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mpg2splt.ax
[2014/05/12 21:43:29 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mpg2splt.ax
[2014/05/12 21:43:11 | 000,000,000 | RHSD | C] -- C:\SYSTEM.SAV
[2 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]

========== Files - Modified Within 60 Days ==========

[2014/06/18 20:51:57 | 000,016,768 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014/06/18 20:51:57 | 000,016,768 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014/06/18 20:48:58 | 001,666,800 | ---- | M] () -- C:\windows\SysNative\PerfStringBackup.INI
[2014/06/18 20:48:58 | 000,743,514 | ---- | M] () -- C:\windows\SysNative\perfh010.dat
[2014/06/18 20:48:58 | 000,656,430 | ---- | M] () -- C:\windows\SysNative\perfh009.dat
[2014/06/18 20:48:58 | 000,147,688 | ---- | M] () -- C:\windows\SysNative\perfc010.dat
[2014/06/18 20:48:58 | 000,122,242 | ---- | M] () -- C:\windows\SysNative\perfc009.dat
[2014/06/18 20:44:52 | 000,001,154 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore.job
[2014/06/18 20:44:42 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2014/06/18 20:44:41 | 3164,753,920 | -HS- | M] () -- C:\hiberfil.sys
[2014/06/18 20:36:02 | 000,000,978 | ---- | M] () -- C:\windows\tasks\Adobe Flash Player Updater.job
[2014/06/18 20:35:01 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Alessandro\Desktop\OTL(1).exe
[2014/06/18 20:33:47 | 001,016,261 | ---- | M] (Thisisu) -- C:\Users\Alessandro\Desktop\JRT(1).exe
[2014/06/18 20:32:08 | 001,333,465 | ---- | M] () -- C:\Users\Alessandro\Desktop\adwcleaner_3.212.exe
[2014/06/18 20:29:59 | 000,122,584 | ---- | M] (Malwarebytes Corporation) -- C:\windows\SysNative\drivers\MBAMSwissArmy.sys
[2014/06/18 20:28:06 | 000,001,158 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job
[2014/06/18 18:36:46 | 002,081,280 | ---- | M] (Farbar) -- C:\Users\Alessandro\Desktop\FRST64.exe
[2014/06/18 18:08:38 | 004,161,050 | ---- | M] () -- C:\Users\Alessandro\Desktop\tdsskiller.zip
[2014/06/18 17:07:33 | 000,002,098 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
[2014/06/17 18:38:44 | 000,002,178 | ---- | M] () -- C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
[2014/06/17 18:38:44 | 000,002,178 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
[2014/06/17 18:38:40 | 000,699,056 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\SysWow64\FlashPlayerApp.exe
[2014/06/17 18:38:40 | 000,071,344 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\SysWow64\FlashPlayerCPLApp.cpl
[2014/06/17 18:15:37 | 000,000,826 | ---- | M] () -- C:\Users\Alessandro\Desktop\Archivio Alessandro.lnk
[2014/06/16 13:25:23 | 000,223,668 | ---- | M] () -- C:\Users\Alessandro\Desktop\F24 IMU ZATTI CESARE scad 16_06_2014.pdf
[2014/06/13 18:24:24 | 000,223,381 | ---- | M] () -- C:\Users\Alessandro\Desktop\F24 IMU scad 16_06_2014 Comina Valter.pdf
[2014/06/13 18:23:10 | 000,223,084 | ---- | M] () -- C:\Users\Alessandro\Desktop\F24 IMU scad 16_06_2014 Comina Elena.pdf
[2014/06/13 09:12:28 | 000,549,712 | ---- | M] () -- C:\windows\SysNative\FNTCACHE.DAT
[2014/06/12 22:08:37 | 000,223,626 | ---- | M] () -- C:\Users\Alessandro\Desktop\F24 TASIeIMU scad 16_06_2014 Breda Moira.pdf
[2014/06/12 20:58:12 | 000,171,976 | ---- | M] () -- C:\Users\Alessandro\Desktop\F24 TASIeIMU scad 16_06_2014 Casagrande.pdf
[2014/06/12 20:33:19 | 000,223,618 | ---- | M] () -- C:\Users\Alessandro\Desktop\F24 TASI scad. 16_06_2014 Facchini Claudia.pdf
[2014/06/12 19:31:28 | 000,002,189 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2014/06/11 10:24:55 | 000,000,450 | ---- | M] () -- C:\Users\Alessandro\dike.ini
[2014/06/10 21:19:23 | 000,000,162 | ---- | M] () -- C:\Users\Alessandro\dikePDF.ini
[2014/06/10 16:47:31 | 000,242,223 | ---- | M] () -- C:\Users\Alessandro\caCertsList
[2014/06/10 16:37:46 | 000,002,709 | ---- | M] () -- C:\Users\Public\Desktop\DiKePDF.lnk
[2014/06/10 16:36:53 | 000,002,709 | ---- | M] () -- C:\Users\Public\Desktop\Dike.lnk
[2014/06/10 16:31:43 | 000,000,316 | ---- | M] () -- C:\Users\Alessandro\dikeutil.ini
[2014/06/10 16:31:05 | 000,000,239 | ---- | M] () -- C:\windows\SysWow64\incryptoki2.conf
[2014/06/10 16:29:47 | 000,002,741 | ---- | M] () -- C:\Users\Public\Desktop\Dike Util.lnk
[2014/06/10 15:27:02 | 000,002,259 | ---- | M] () -- C:\Users\Alessandro\Desktop\Gestore ComUnica Inps-Inail 1.5.34.lnk
[2014/06/08 11:13:05 | 000,506,368 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\aepdu.dll
[2014/06/08 11:08:04 | 000,424,448 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\aeinv.dll
[2014/06/06 12:29:00 | 000,000,729 | ---- | M] () -- C:\STUDIO BREDA - collegamento.lnk
[2014/06/05 12:36:20 | 000,002,322 | ---- | M] () -- C:\Users\Alessandro\Desktop\Studio Pilisi.RDP
[2014/06/05 12:35:26 | 000,000,000 | -H-- | M] () -- C:\Users\Alessandro\Documents\Default.rdp
[2014/06/05 12:34:29 | 000,001,846 | ---- | M] () -- C:\Users\Public\Desktop\VPN Access Manager.lnk
[2014/06/04 14:40:50 | 000,001,597 | ---- | M] () -- C:\Users\Alessandro\Desktop\STUDIO BREDA.lnk
[2014/05/30 12:02:09 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\ieetwcollectorres.dll
[2014/05/30 11:39:43 | 000,548,352 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\vbscript.dll
[2014/05/30 11:39:23 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\iesetup.dll
[2014/05/30 11:38:29 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\ieetwproxystub.dll
[2014/05/30 11:27:57 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\iernonce.dll
[2014/05/30 11:24:28 | 000,574,976 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\ieui.dll
[2014/05/30 11:21:23 | 000,139,264 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\ieUnatt.exe
[2014/05/30 11:21:05 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\ieetwcollector.exe
[2014/05/30 11:20:36 | 000,752,640 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\jscript9diag.dll
[2014/05/30 11:11:24 | 000,940,032 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\MsSpellCheckingFacility.exe
[2014/05/30 11:08:22 | 005,782,528 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\jscript9.dll
[2014/05/30 11:06:42 | 000,452,096 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\dxtmsft.dll
[2014/05/30 10:55:36 | 000,038,400 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\JavaScriptCollectionAgent.dll
[2014/05/30 10:49:21 | 000,195,584 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\msrating.dll
[2014/05/30 10:46:48 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\mshtmled.dll
[2014/05/30 10:44:23 | 000,295,424 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\dxtrans.dll
[2014/05/30 10:43:06 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\iesetup.dll
[2014/05/30 10:42:16 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\ieetwproxystub.dll
[2014/05/30 10:35:44 | 000,608,768 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\ie4uinit.exe
[2014/05/30 10:33:48 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\iernonce.dll
[2014/05/30 10:30:43 | 000,440,832 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\ieui.dll
[2014/05/30 10:29:31 | 000,631,808 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\msfeeds.dll
[2014/05/30 10:28:33 | 000,112,128 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\ieUnatt.exe
[2014/05/30 10:27:56 | 000,592,896 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\jscript9diag.dll
[2014/05/30 10:24:19 | 001,249,280 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\mshtmlmedia.dll
[2014/05/30 10:23:22 | 002,040,832 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\inetcpl.cpl
[2014/05/30 10:10:46 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\JavaScriptCollectionAgent.dll
[2014/05/30 10:06:06 | 000,164,864 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\msrating.dll
[2014/05/30 10:04:20 | 000,069,632 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\mshtmled.dll
[2014/05/30 09:50:09 | 001,068,032 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\mshtmlmedia.dll
[2014/05/30 09:49:38 | 001,964,544 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\inetcpl.cpl
[2014/05/30 09:13:47 | 000,704,512 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\ieapfltr.dll
[2014/05/30 09:13:09 | 000,846,336 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\ieapfltr.dll
[2014/05/27 22:50:02 | 000,001,251 | ---- | M] () -- C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
[2014/05/27 17:32:39 | 000,000,830 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2014/05/27 17:24:15 | 000,008,892 | ---- | M] () -- C:\spyhunter.fix
[2014/05/23 13:15:41 | 000,001,159 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2014/05/23 12:34:37 | 000,000,785 | ---- | M] () -- C:\windows\wininit.ini
[2014/05/21 17:18:03 | 000,001,375 | ---- | M] () -- C:\Users\Alessandro\Desktop\Internet Explorer.lnk
[2014/05/21 15:57:47 | 000,001,114 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2014/05/21 15:03:04 | 000,000,000 | ---- | M] () -- C:\autoexec.bat
[2014/05/21 13:33:48 | 000,000,476 | RHS- | M] () -- C:\ProgramData\ntuser.pol
[2014/05/21 13:01:31 | 001,685,728 | ---- | M] () -- C:\windows\SysWow64\PerfStringBackup.INI
[2014/05/21 10:49:05 | 000,000,000 | -H-- | M] () -- C:\windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2014/05/21 10:48:34 | 000,001,563 | ---- | M] () -- C:\Users\Public\Desktop\Entratel.lnk
[2014/05/21 10:40:04 | 000,001,965 | ---- | M] () -- C:\Users\Alessandro\Desktop\Mail - collegamento.lnk
[2014/05/21 09:38:18 | 000,096,168 | ---- | M] (Oracle Corporation) -- C:\windows\SysWow64\WindowsAccessBridge-32.dll
[2014/05/21 09:38:13 | 000,264,616 | ---- | M] (Oracle Corporation) -- C:\windows\SysWow64\javaws.exe
[2014/05/21 09:38:13 | 000,175,528 | ---- | M] (Oracle Corporation) -- C:\windows\SysWow64\javaw.exe
[2014/05/21 09:38:12 | 000,175,016 | ---- | M] (Oracle Corporation) -- C:\windows\SysWow64\java.exe
[2014/05/20 15:48:59 | 000,001,945 | ---- | M] () -- C:\windows\epplauncher.mif
[2014/05/20 14:49:27 | 000,194,048 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\elshyph.dll
[2014/05/20 14:49:24 | 000,645,120 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\jsIntl.dll
[2014/05/20 14:49:24 | 000,616,104 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\ieapfltr.dat
[2014/05/20 14:49:24 | 000,337,408 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\html.iec
[2014/05/20 14:49:24 | 000,235,008 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\elshyph.dll
[2014/05/20 14:49:24 | 000,233,472 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\url.dll
[2014/05/20 14:49:24 | 000,151,552 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\iexpress.exe
[2014/05/20 14:49:24 | 000,139,264 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\wextract.exe
[2014/05/20 14:49:24 | 000,127,488 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\occache.dll
[2014/05/20 14:49:24 | 000,083,456 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\inseng.dll
[2014/05/20 14:49:24 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\RegisterIEPKEYs.exe
[2014/05/20 14:49:24 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\icardie.dll
[2014/05/20 14:49:24 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\tdc.ocx
[2014/05/20 14:49:24 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\MshtmlDac.dll
[2014/05/20 14:49:24 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\pngfilt.dll
[2014/05/20 14:49:24 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\licmgr10.dll
[2014/05/20 14:49:24 | 000,016,284 | ---- | M] () -- C:\windows\SysWow64\ieuinit.inf
[2014/05/20 14:49:23 | 000,942,592 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\jsIntl.dll
[2014/05/20 14:49:23 | 000,610,304 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\jscript.dll
[2014/05/20 14:49:23 | 000,247,808 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\msls31.dll
[2014/05/20 14:49:23 | 000,116,736 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\iepeers.dll
[2014/05/20 14:49:23 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\IEAdvpack.dll
[2014/05/20 14:49:23 | 000,086,016 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\RegisterIEPKEYs.exe
[2014/05/20 14:49:23 | 000,086,016 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\iesysprep.dll
[2014/05/20 14:49:23 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\SetIEInstalledDate.exe
[2014/05/20 14:49:23 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\mshtmler.dll
[2014/05/20 14:49:23 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\msfeedssync.exe
[2014/05/20 14:49:22 | 000,774,144 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\jscript.dll
[2014/05/20 14:49:22 | 000,616,104 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\ieapfltr.dat
[2014/05/20 14:49:22 | 000,413,696 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\html.iec
[2014/05/20 14:49:22 | 000,235,520 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\url.dll
[2014/05/20 14:49:22 | 000,167,424 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\iexpress.exe
[2014/05/20 14:49:22 | 000,147,968 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\occache.dll
[2014/05/20 14:49:22 | 000,143,872 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\wextract.exe
[2014/05/20 14:49:22 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\iepeers.dll
[2014/05/20 14:49:22 | 000,131,072 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\IEAdvpack.dll
[2014/05/20 14:49:22 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\iesysprep.dll
[2014/05/20 14:49:22 | 000,101,376 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\inseng.dll
[2014/05/20 14:49:22 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\SetIEInstalledDate.exe
[2014/05/20 14:49:22 | 000,083,968 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\MshtmlDac.dll
[2014/05/20 14:49:22 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\icardie.dll
[2014/05/20 14:49:22 | 000,077,312 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\tdc.ocx
[2014/05/20 14:49:22 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\pngfilt.dll
[2014/05/20 14:49:22 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\mshtmler.dll
[2014/05/20 14:49:22 | 000,048,128 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\imgutil.dll
[2014/05/20 14:49:22 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\licmgr10.dll
[2014/05/20 14:49:22 | 000,016,284 | ---- | M] () -- C:\windows\SysNative\ieuinit.inf
[2014/05/20 14:49:22 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\mshta.exe
[2014/05/20 14:49:22 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\msfeedssync.exe
[2014/05/20 12:50:31 | 000,000,000 | RHS- | M] () -- C:\windows\SysWow64\drivers\103C_HP_bPC_ProDesk 400 G1 MT_Y53307F_0U_QCZC4195RTK_E13WWHCCW601_4A_I198E_SHP_V_BL02 v02.11_T140103_W748-1_L410_M4025_J500_7Intel_86C3_93.20_#140512_N10EC8168_(D5T98EA#ABZ)_X_CD6_Z_2_G80860412.MRK
[2014/05/20 12:50:31 | 000,000,000 | RHS- | M] () -- C:\windows\SysNative\drivers\103C_HP_bPC_ProDesk 400 G1 MT_Y53307F_0U_QCZC4195RTK_E13WWHCCW601_4A_I198E_SHP_V_BL02 v02.11_T140103_W748-1_L410_M4025_J500_7Intel_86C3_93.20_#140512_N10EC8168_(D5T98EA#ABZ)_X_CD6_Z_2_G80860412.MRK
[2014/05/20 11:47:55 | 000,000,225 | ---- | M] () -- C:\windows\CryptoMill_CreoService.001
[2014/05/20 11:47:44 | 000,052,640 | ---- | M] () -- C:\windows\SysWow64\license.rtf
[2014/05/20 11:47:44 | 000,052,640 | ---- | M] () -- C:\windows\SysNative\license.rtf
[2014/05/12 23:34:25 | 000,000,225 | ---- | M] () -- C:\windows\CryptoMill_CreoService.003
[2014/05/12 23:32:45 | 000,000,225 | ---- | M] () -- C:\windows\CryptoMill_CreoService.004
[2014/05/12 22:57:46 | 000,000,225 | ---- | M] () -- C:\windows\CryptoMill_CreoService.005
[2014/05/12 22:49:25 | 000,000,000 | -H-- | M] () -- C:\windows\SysNative\drivers\Msft_Kernel_iusb3hcs_01009.Wdf
[2014/05/12 22:41:26 | 000,000,225 | ---- | M] () -- C:\windows\CryptoMill_CreoService.002
[2014/05/12 22:37:40 | 000,000,000 | -H-- | M] () -- C:\windows\SysNative\drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
[2014/05/12 22:32:58 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\KBDINTAM.DLL
[2014/05/12 22:32:58 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\KBDINMAL.DLL
[2014/05/12 22:32:58 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\KBDINDEV.DLL
[2014/05/12 22:32:58 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\KBDINBEN.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\KBDINTEL.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\KBDINTAM.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\KBDINPUN.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\KBDINORI.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\KBDINORI.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\KBDINMAR.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\KBDINMAR.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\KBDINMAL.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\KBDINKAN.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\KBDINKAN.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\KBDINHIN.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\KBDINHIN.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\KBDINGUJ.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\KBDINEN.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\KBDINDEV.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\KBDINBEN.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\KBDINBE2.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\KBDINBE1.DLL
[2014/05/12 22:32:58 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\KBDINASA.DLL
[2014/05/12 22:32:58 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\KBDINTEL.DLL
[2014/05/12 22:32:58 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\KBDINPUN.DLL
[2014/05/12 22:32:58 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\KBDINGUJ.DLL
[2014/05/12 22:32:58 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\KBDINBE2.DLL
[2014/05/12 22:32:58 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\KBDINBE1.DLL
[2014/05/12 22:32:58 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\KBDINASA.DLL
[2014/05/12 22:28:50 | 002,776,576 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\msmpeg2vdec.dll
[2014/05/12 22:28:50 | 002,284,544 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\msmpeg2vdec.dll
[2014/05/12 22:28:50 | 001,682,432 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\XpsPrint.dll
[2014/05/12 22:28:50 | 001,238,528 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\d3d10.dll
[2014/05/12 22:28:50 | 001,158,144 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\XpsPrint.dll
[2014/05/12 22:28:50 | 000,648,192 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\d3d10level9.dll
[2014/05/12 22:28:50 | 000,522,752 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\XpsGdiConverter.dll
[2014/05/12 22:28:50 | 000,364,544 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\XpsGdiConverter.dll
[2014/05/12 22:28:50 | 000,363,008 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\dxgi.dll
[2014/05/12 22:28:50 | 000,333,312 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\d3d10_1core.dll
[2014/05/12 22:28:50 | 000,296,960 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\d3d10core.dll
[2014/05/12 22:28:50 | 000,245,248 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\WindowsCodecsExt.dll
[2014/05/12 22:28:50 | 000,221,184 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\UIAnimation.dll
[2014/05/12 22:28:50 | 000,194,560 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\d3d10_1.dll
[2014/05/12 22:28:50 | 000,187,392 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\UIAnimation.dll
[2014/05/12 22:28:50 | 000,010,752 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2014/05/12 22:28:50 | 000,010,752 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2014/05/12 22:28:50 | 000,009,728 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2014/05/12 22:28:50 | 000,009,728 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2014/05/12 22:28:50 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2014/05/12 22:28:50 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2014/05/12 22:28:50 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
[2014/05/12 22:28:50 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-ole32-l1-1-0.dll
[2014/05/12 22:28:50 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
[2014/05/12 22:28:50 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-user32-l1-1-0.dll
[2014/05/12 22:28:50 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2014/05/12 22:28:50 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2014/05/12 22:28:50 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
[2014/05/12 22:28:50 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-version-l1-1-0.dll
[2014/05/12 22:28:50 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
[2014/05/12 22:28:50 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-shell32-l1-1-0.dll
[2014/05/12 22:28:50 | 000,002,560 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2014/05/12 22:28:50 | 000,002,560 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2014/05/12 22:15:18 | 000,335,478 | ---- | M] () -- C:\windows\SysNative\perfi010.dat
[2014/05/12 22:15:18 | 000,037,534 | ---- | M] () -- C:\windows\SysNative\perfd010.dat
[2014/05/12 22:15:03 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\usbrpm.sys.mui
[2014/05/12 22:15:01 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\fvevol.sys.mui
[2014/05/12 22:14:58 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\nwifi.sys.mui
[2014/05/12 22:14:58 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\UMDF\it-IT\WpdMtpDr.dll.mui
[2014/05/12 22:14:58 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\qwavedrv.sys.mui
[2014/05/12 22:14:55 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\drivers\it-IT\qwavedrv.sys.mui
[2014/05/12 22:14:52 | 000,027,136 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\volsnap.sys.mui
[2014/05/12 22:14:52 | 000,025,088 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\usbport.sys.mui
[2014/05/12 22:14:52 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\processr.sys.mui
[2014/05/12 22:14:52 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\intelppm.sys.mui
[2014/05/12 22:14:52 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\amdppm.sys.mui
[2014/05/12 22:14:52 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\amdk8.sys.mui
[2014/05/12 22:14:52 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\usbhub.sys.mui
[2014/05/12 22:14:52 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\ohci1394.sys.mui
[2014/05/12 22:14:52 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\1394ohci.sys.mui
[2014/05/12 22:14:52 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\serial.sys.mui
[2014/05/12 22:14:52 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\i8042prt.sys.mui
[2014/05/12 22:14:52 | 000,011,264 | ---- | M] (Brother Industries Ltd.) -- C:\windows\SysNative\drivers\it-IT\BrSerId.sys.mui
[2014/05/12 22:14:52 | 000,011,264 | ---- | M] (Brother Industries Ltd.) -- C:\windows\SysNative\drivers\it-IT\BrSerIb.sys.mui
[2014/05/12 22:14:52 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\acpi.sys.mui
[2014/05/12 22:14:52 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\battc.sys.mui
[2014/05/12 22:14:52 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\pci.sys.mui
[2014/05/12 22:14:52 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\IPMIDrv.sys.mui
[2014/05/12 22:14:52 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\sermouse.sys.mui
[2014/05/12 22:14:52 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\mouclass.sys.mui
[2014/05/12 22:14:52 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\kbdclass.sys.mui
[2014/05/12 22:14:52 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\wacompen.sys.mui
[2014/05/12 22:14:52 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\vhdmp.sys.mui
[2014/05/12 22:14:52 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\vdrvroot.sys.mui
[2014/05/12 22:14:52 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\tpm.sys.mui
[2014/05/12 22:14:52 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\isapnp.sys.mui
[2014/05/12 22:14:52 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\hdaudbus.sys.mui
[2014/05/12 22:14:52 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\parport.sys.mui
[2014/05/12 22:14:52 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\ataport.sys.mui
[2014/05/12 22:14:52 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\umbus.sys.mui
[2014/05/12 22:14:52 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\mssmbios.sys.mui
[2014/05/12 22:14:52 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\vwifibus.sys.mui
[2014/05/12 22:14:52 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\ULIAGPKX.SYS.mui
[2014/05/12 22:14:52 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\UAGP35.SYS.mui
[2014/05/12 22:14:52 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\NV_AGP.SYS.mui
[2014/05/12 22:14:52 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\MTConfig.sys.mui
[2014/05/12 22:14:52 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\mouhid.sys.mui
[2014/05/12 22:14:52 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\kbdhid.sys.mui
[2014/05/12 22:14:52 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\GAGP30KX.SYS.mui
[2014/05/12 22:14:52 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\disk.sys.mui
[2014/05/12 22:14:52 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\AGP440.sys.mui
[2014/05/12 22:14:52 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\wd.sys.mui
[2014/05/12 22:14:52 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\cdrom.sys.mui
[2014/05/12 22:14:52 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\amdide.sys.mui
[2014/05/12 22:14:51 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\drivers\it-IT\tcpip.sys.mui
[2014/05/12 22:14:51 | 000,037,888 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\mpio.sys.mui
[2014/05/12 22:14:51 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\bthport.sys.mui
[2014/05/12 22:14:51 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\msdsm.sys.mui
[2014/05/12 22:14:51 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\UMDF\it-IT\WUDFUsbccidDriver.dll.mui
[2014/05/12 22:14:51 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\bthpan.sys.mui
[2014/05/12 22:14:51 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\pcmcia.sys.mui
[2014/05/12 22:14:51 | 000,003,584 | ---- | M] (SCM Microsystems, Inc.) -- C:\windows\SysNative\drivers\it-IT\pscr.sys.mui
[2014/05/12 22:14:51 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\portcls.sys.mui
[2014/05/12 22:14:51 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\HdAudio.sys.mui
[2014/05/12 22:14:51 | 000,003,584 | ---- | M] (ATI Technologies Inc.) -- C:\windows\SysNative\drivers\it-IT\atikmdag.sys.mui
[2014/05/12 22:14:51 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\rndismpx.sys.mui
[2014/05/12 22:14:51 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\rndismp6.sys.mui
[2014/05/12 22:14:51 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\hidbth.sys.mui
[2014/05/12 22:14:51 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\serscan.sys.mui
[2014/05/12 22:14:51 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\pnpmem.sys.mui
[2014/05/12 22:14:51 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\Dot4usb.sys.mui
[2014/05/12 22:14:51 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\BTHUSB.SYS.mui
[2014/05/12 22:14:51 | 000,002,560 | ---- | M] (Brother Industries Ltd.) -- C:\windows\SysNative\drivers\it-IT\BrParwdm.sys.mui
[2014/05/12 22:14:51 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\bthenum.sys.mui
[2014/05/12 22:14:48 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\fltmgr.sys.mui
[2014/05/12 22:14:47 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\ndis.sys.mui
[2014/05/12 22:14:47 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\drivers\it-IT\bfe.dll.mui
[2014/05/12 22:14:47 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\drivers\it-IT\pacer.sys.mui
[2014/05/12 22:14:47 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\scsiport.sys.mui
[2014/05/12 22:14:46 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\tcpip.sys.mui
[2014/05/12 22:14:46 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\http.sys.mui
[2014/05/12 22:14:46 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\ws2ifsl.sys.mui
[2014/05/12 22:14:45 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\bfe.dll.mui
[2014/05/12 22:14:45 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\pacer.sys.mui
[2014/05/12 22:14:45 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\rdpwd.sys.mui
[2014/05/12 22:14:44 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\ntfs.sys.mui
[2014/05/12 22:14:44 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\afd.sys.mui
[2014/05/12 22:14:44 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\tunnel.sys.mui
[2014/05/12 22:14:44 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\luafv.sys.mui
[2014/05/12 22:14:44 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\rdbss.sys.mui
[2014/05/12 22:14:44 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\modem.sys.mui
[2014/05/12 22:14:44 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\ipnat.sys.mui
[2014/05/12 22:14:44 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\volmgrx.sys.mui
[2014/05/12 22:14:44 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\srv.sys.mui
[2014/05/12 22:14:44 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\drivers\it-IT\scfilter.sys.mui
[2014/05/12 22:14:43 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\drivers\it-IT\ndiscap.sys.mui
[2014/05/12 22:14:43 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\ndiscap.sys.mui
[2014/05/12 22:14:43 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\RNDISMP.sys.mui
[2014/05/12 22:14:43 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\ndisuio.sys.mui
[2014/05/12 22:14:43 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\scfilter.sys.mui
[2014/05/12 22:14:43 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\partmgr.sys.mui
[2014/05/12 22:14:43 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\it-IT\mountmgr.sys.mui
[2014/05/12 22:11:40 | 002,565,632 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\esent.dll
[2014/05/12 22:11:40 | 001,699,328 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\esent.dll
[2014/05/12 22:11:40 | 000,107,904 | ---- | M] (Advanced Micro Devices) -- C:\windows\SysNative\drivers\amdsata.sys
[2014/05/12 22:11:40 | 000,096,768 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\fsutil.exe
[2014/05/12 22:11:40 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\fsutil.exe
[2014/05/12 22:11:40 | 000,027,008 | ---- | M] (Advanced Micro Devices) -- C:\windows\SysNative\drivers\amdxata.sys
[2014/05/12 22:10:45 | 001,732,032 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\ntdll.dll
[2014/05/12 22:10:45 | 000,878,080 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\advapi32.dll
[2014/05/12 22:10:45 | 000,859,648 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\tdh.dll
[2014/05/12 22:10:45 | 000,619,520 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\tdh.dll
[2014/05/12 22:09:24 | 000,338,432 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\conhost.exe
[2014/05/12 22:09:24 | 000,215,040 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\winsrv.dll
[2014/05/12 22:09:24 | 000,112,640 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\smss.exe
[2014/05/12 22:09:24 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\csrsrv.dll
[2014/05/12 22:09:24 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\apisetschema.dll
[2014/05/12 22:09:24 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\apisetschema.dll
[2014/05/12 22:09:24 | 000,006,144 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2014/05/12 22:09:24 | 000,006,144 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2014/05/12 22:09:24 | 000,005,120 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2014/05/12 22:09:24 | 000,005,120 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2014/05/12 22:09:24 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2014/05/12 22:09:24 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2014/05/12 22:09:24 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2014/05/12 22:09:24 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2014/05/12 22:09:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2014/05/12 22:09:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2014/05/12 22:09:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2014/05/12 22:09:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2014/05/12 22:09:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2014/05/12 22:09:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2014/05/12 22:09:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2014/05/12 22:09:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2014/05/12 22:09:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2014/05/12 22:09:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2014/05/12 22:08:50 | 000,197,120 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\shdocvw.dll
[2014/05/12 22:08:03 | 000,633,856 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\comctl32.dll
[2014/05/12 22:07:29 | 000,224,256 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\wintrust.dll
[2014/05/12 22:07:29 | 000,139,776 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\cryptnet.dll
[2014/05/12 22:07:09 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\hidclass.sys
[2014/05/12 22:07:09 | 000,032,896 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\hidparse.sys
[2014/05/12 22:06:09 | 000,155,584 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\ataport.sys
[2014/05/12 22:05:45 | 000,461,312 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\scavengeui.dll
[2014/05/12 22:05:31 | 001,217,024 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\rpcrt4.dll
[2014/05/12 22:05:03 | 000,368,128 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\SysNative\atmfd.dll
[2014/05/12 22:05:03 | 000,295,424 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\SysWow64\atmfd.dll
[2014/05/12 22:05:03 | 000,100,864 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\fontsub.dll
[2014/05/12 22:05:03 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\fontsub.dll
[2014/05/12 22:05:03 | 000,046,080 | ---- | M] (Adobe Systems) -- C:\windows\SysNative\atmlib.dll
[2014/05/12 22:05:03 | 000,041,472 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\lpk.dll
[2014/05/12 22:05:03 | 000,034,304 | ---- | M] (Adobe Systems) -- C:\windows\SysWow64\atmlib.dll
[2014/05/12 22:05:03 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\dciman32.dll
[2014/05/12 22:04:48 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\davclnt.dll
[2014/05/12 22:04:09 | 000,751,104 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\win32spl.dll
[2014/05/12 22:04:09 | 000,492,544 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\win32spl.dll
[2014/05/12 22:02:57 | 001,887,232 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\d3d11.dll
[2014/05/12 22:02:57 | 001,505,280 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\d3d11.dll
[2014/05/12 22:02:43 | 000,265,064 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\dxgmms1.sys
[2014/05/12 22:02:43 | 000,144,384 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\cdd.dll
[2014/05/12 22:02:03 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\wwanprotdim.dll
[2014/05/12 22:01:45 | 001,192,448 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\certutil.exe
[2014/05/12 22:01:45 | 000,903,168 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\certutil.exe
[2014/05/12 22:01:45 | 000,052,224 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\certenc.dll
[2014/05/12 22:01:45 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\certenc.dll
[2014/05/12 22:01:04 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\cryptdlg.dll
[2014/05/12 22:01:04 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\cryptdlg.dll
[2014/05/12 22:00:48 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\usb8023.sys
[2014/05/12 22:00:36 | 001,888,768 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\WMVDECOD.DLL
[2014/05/12 22:00:36 | 001,620,992 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\WMVDECOD.DLL
[2014/05/12 22:00:03 | 000,111,448 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\consent.exe
[2014/05/12 21:59:29 | 000,068,608 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\taskhost.exe
[2014/05/12 21:58:58 | 002,746,368 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\gameux.dll
[2014/05/12 21:58:58 | 002,576,384 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\gameux.dll
[2014/05/12 21:58:58 | 000,441,856 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\Wpc.dll
[2014/05/12 21:58:58 | 000,308,736 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\Wpc.dll
[2014/05/12 21:58:58 | 000,055,296 | ---- | M] (Microsoft) -- C:\windows\SysWow64\cero.rs
[2014/05/12 21:58:58 | 000,055,296 | ---- | M] (Microsoft) -- C:\windows\SysNative\cero.rs
[2014/05/12 21:58:58 | 000,051,712 | ---- | M] (Microsoft) -- C:\windows\SysWow64\esrb.rs
[2014/05/12 21:58:58 | 000,051,712 | ---- | M] (Microsoft) -- C:\windows\SysNative\esrb.rs
[2014/05/12 21:58:58 | 000,046,592 | ---- | M] (Microsoft) -- C:\windows\SysWow64\fpb.rs
[2014/05/12 21:58:58 | 000,046,592 | ---- | M] (Microsoft) -- C:\windows\SysNative\fpb.rs
[2014/05/12 21:58:58 | 000,045,568 | ---- | M] (Microsoft) -- C:\windows\SysWow64\oflc-nz.rs
[2014/05/12 21:58:58 | 000,045,568 | ---- | M] (Microsoft) -- C:\windows\SysNative\oflc-nz.rs
[2014/05/12 21:58:58 | 000,044,544 | ---- | M] (Microsoft) -- C:\windows\SysWow64\pegibbfc.rs
[2014/05/12 21:58:58 | 000,044,544 | ---- | M] (Microsoft) -- C:\windows\SysNative\pegibbfc.rs
[2014/05/12 21:58:58 | 000,043,520 | ---- | M] (Microsoft) -- C:\windows\SysWow64\csrr.rs
[2014/05/12 21:58:58 | 000,043,520 | ---- | M] (Microsoft) -- C:\windows\SysNative\csrr.rs
[2014/05/12 21:58:58 | 000,040,960 | ---- | M] (Microsoft) -- C:\windows\SysWow64\cob-au.rs
[2014/05/12 21:58:58 | 000,040,960 | ---- | M] (Microsoft) -- C:\windows\SysNative\cob-au.rs
[2014/05/12 21:58:58 | 000,030,720 | ---- | M] (Microsoft) -- C:\windows\SysWow64\usk.rs
[2014/05/12 21:58:58 | 000,030,720 | ---- | M] (Microsoft) -- C:\windows\SysNative\usk.rs
[2014/05/12 21:58:58 | 000,023,552 | ---- | M] (Microsoft) -- C:\windows\SysWow64\oflc.rs
[2014/05/12 21:58:58 | 000,023,552 | ---- | M] (Microsoft) -- C:\windows\SysNative\oflc.rs
[2014/05/12 21:58:58 | 000,021,504 | ---- | M] (Microsoft) -- C:\windows\SysWow64\grb.rs
[2014/05/12 21:58:58 | 000,021,504 | ---- | M] (Microsoft) -- C:\windows\SysNative\grb.rs
[2014/05/12 21:58:58 | 000,020,480 | ---- | M] (Microsoft) -- C:\windows\SysWow64\pegi-pt.rs
[2014/05/12 21:58:58 | 000,020,480 | ---- | M] (Microsoft) -- C:\windows\SysNative\pegi-pt.rs
[2014/05/12 21:58:58 | 000,020,480 | ---- | M] (Microsoft) -- C:\windows\SysWow64\pegi-fi.rs
[2014/05/12 21:58:58 | 000,020,480 | ---- | M] (Microsoft) -- C:\windows\SysNative\pegi-fi.rs
[2014/05/12 21:58:58 | 000,020,480 | ---- | M] (Microsoft) -- C:\windows\SysWow64\pegi.rs
[2014/05/12 21:58:58 | 000,020,480 | ---- | M] (Microsoft) -- C:\windows\SysNative\pegi.rs
[2014/05/12 21:58:58 | 000,015,360 | ---- | M] (Microsoft) -- C:\windows\SysWow64\djctq.rs
[2014/05/12 21:58:58 | 000,015,360 | ---- | M] (Microsoft) -- C:\windows\SysNative\djctq.rs
[2014/05/12 21:58:33 | 000,478,208 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\dpnet.dll
[2014/05/12 21:58:33 | 000,376,832 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\dpnet.dll
[2014/05/12 21:58:17 | 000,226,816 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\dhcpcore6.dll
[2014/05/12 21:58:17 | 000,193,536 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\dhcpcore6.dll
[2014/05/12 21:58:17 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\dhcpcsvc6.dll
[2014/05/12 21:56:46 | 000,246,272 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\netcorehc.dll
[2014/05/12 21:56:46 | 000,216,576 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\ncsi.dll
[2014/05/12 21:56:46 | 000,175,104 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\netcorehc.dll
[2014/05/12 21:56:46 | 000,156,672 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\ncsi.dll
[2014/05/12 21:56:46 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\netevent.dll
[2014/05/12 21:56:46 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\netevent.dll
[2014/05/12 21:55:54 | 000,503,808 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\srcore.dll
[2014/05/12 21:55:28 | 000,245,760 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\OxpsConverter.exe
[2014/05/12 21:55:14 | 000,095,744 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\synceng.dll
[2014/05/12 21:55:14 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\synceng.dll
[2014/05/12 21:54:24 | 000,041,472 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\RNDISMP.sys
[2014/05/12 21:54:11 | 000,956,928 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\localspl.dll
[2014/05/12 21:53:44 | 000,073,216 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\netapi32.dll
[2014/05/12 21:53:44 | 000,059,392 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\browcli.dll
[2014/05/12 21:53:44 | 000,041,984 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\browcli.dll
[2014/05/12 21:53:29 | 003,216,384 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\msi.dll
[2014/05/12 21:53:12 | 001,133,568 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\cdosys.dll
[2014/05/12 21:53:12 | 000,805,376 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\cdosys.dll
[2014/05/12 21:52:25 | 000,054,376 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\WdfLdr.sys
[2014/05/12 21:52:25 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\Wdfres.dll
[2014/05/12 21:52:25 | 000,000,003 | ---- | M] () -- C:\windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2014/05/12 21:51:52 | 000,149,504 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\rdpcorekmts.dll
[2014/05/12 21:51:52 | 000,077,312 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\rdpwsx.dll
[2014/05/12 21:51:52 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\rdrmemptylst.exe
[2014/05/12 21:51:39 | 000,515,584 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\timedate.cpl
[2014/05/12 21:51:39 | 000,478,720 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\timedate.cpl
[2014/05/12 21:51:09 | 000,634,880 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\msvcrt.dll
[2014/05/12 21:50:55 | 000,023,408 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\fs_rec.sys
[2014/05/12 21:50:41 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\windows\splwow64.exe
[2014/05/12 21:50:08 | 000,509,952 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\ntshrui.dll
[2014/05/12 21:49:49 | 001,572,864 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\quartz.dll
[2014/05/12 21:49:49 | 001,328,128 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\quartz.dll
[2014/05/12 21:49:36 | 000,723,456 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\EncDec.dll
[2014/05/12 21:49:36 | 000,534,528 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\EncDec.dll
[2014/05/12 21:49:12 | 000,077,312 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\packager.dll
[2014/05/12 21:49:12 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\packager.dll
[2014/05/12 21:48:59 | 000,613,888 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\psisdecd.dll
[2014/05/12 21:48:59 | 000,465,408 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\psisdecd.dll
[2014/05/12 21:48:59 | 000,108,032 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\psisrndr.ax
[2014/05/12 21:48:59 | 000,075,776 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\psisrndr.ax
[2014/05/12 21:48:32 | 000,861,696 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\oleaut32.dll
[2014/05/12 21:48:32 | 000,331,776 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\oleacc.dll
[2014/05/12 21:48:18 | 000,199,680 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\xmllite.dll
[2014/05/12 21:48:04 | 000,319,488 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\odbcjt32.dll
[2014/05/12 21:48:04 | 000,212,992 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\odbctrac.dll
[2014/05/12 21:48:04 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\odbctrac.dll
[2014/05/12 21:48:04 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\odbccp32.dll
[2014/05/12 21:48:04 | 000,122,880 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\odbccp32.dll
[2014/05/12 21:48:04 | 000,106,496 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\odbccu32.dll
[2014/05/12 21:48:04 | 000,106,496 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\odbccr32.dll
[2014/05/12 21:48:04 | 000,086,016 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\odbccu32.dll
[2014/05/12 21:48:04 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\odbccr32.dll
[2014/05/12 21:47:49 | 000,252,928 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\drvinst.exe
[2014/05/12 21:47:49 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\devrtl.dll
[2014/05/12 21:47:35 | 002,315,776 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\tquery.dll
[2014/05/12 21:47:35 | 002,223,616 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\mssrch.dll
[2014/05/12 21:47:35 | 001,549,312 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\tquery.dll
[2014/05/12 21:47:35 | 001,401,344 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\mssrch.dll
[2014/05/12 21:47:35 | 000,778,752 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\mssvp.dll
[2014/05/12 21:47:35 | 000,666,624 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\mssvp.dll
[2014/05/12 21:47:35 | 000,491,520 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\mssph.dll
[2014/05/12 21:47:35 | 000,337,408 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\mssph.dll
[2014/05/12 21:47:35 | 000,288,256 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\mssphtb.dll
[2014/05/12 21:47:35 | 000,249,856 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\SearchProtocolHost.exe
[2014/05/12 21:47:35 | 000,113,664 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\SearchFilterHost.exe
[2014/05/12 21:47:35 | 000,075,264 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\msscntrs.dll
[2014/05/12 21:47:35 | 000,059,392 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\msscntrs.dll
[2014/05/12 21:45:43 | 002,871,808 | ---- | M] (Microsoft Corporation) -- C:\windows\explorer.exe
[2014/05/12 21:45:43 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\explorer.exe
[2014/05/12 21:45:17 | 000,357,888 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\dnsapi.dll
[2014/05/12 21:45:17 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\dnscacheugc.exe
[2014/05/12 21:45:17 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\dnscacheugc.exe
[2014/05/12 21:45:05 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\prevhost.exe
[2014/05/12 21:45:05 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\prevhost.exe
[2014/05/12 21:44:52 | 001,395,712 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\mfc42.dll
[2014/05/12 21:44:52 | 001,359,872 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\mfc42u.dll
[2014/05/12 21:44:52 | 001,164,288 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\mfc42u.dll
[2014/05/12 21:44:52 | 001,137,664 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\mfc42.dll
[2014/05/12 21:44:38 | 000,642,944 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\winload.efi
[2014/05/12 21:44:38 | 000,605,552 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\winload.exe
[2014/05/12 21:44:38 | 000,566,208 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\winresume.efi
[2014/05/12 21:44:38 | 000,518,672 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\winresume.exe
[2014/05/12 21:44:38 | 000,020,352 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\kdusb.dll
[2014/05/12 21:44:38 | 000,019,328 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\kd1394.dll
[2014/05/12 21:44:38 | 000,017,792 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\kdcom.dll
[2014/05/12 21:44:10 | 000,267,776 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\FXSCOVER.exe
[2014/05/12 21:43:29 | 001,118,720 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\sbe.dll
[2014/05/12 21:43:29 | 000,961,024 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\CPFilters.dll
[2014/05/12 21:43:29 | 000,850,944 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\sbe.dll
[2014/05/12 21:43:29 | 000,642,048 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\CPFilters.dll
[2014/05/12 21:43:29 | 000,259,072 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\mpg2splt.ax
[2014/05/12 21:43:29 | 000,199,680 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\mpg2splt.ax
[2014/05/12 21:37:17 | 000,000,000 | RHS- | M] () -- C:\OS
[2014/05/12 07:26:10 | 000,063,704 | ---- | M] (Malwarebytes Corporation) -- C:\windows\SysNative\drivers\mwac.sys
[2014/05/12 07:26:00 | 000,091,352 | ---- | M] (Malwarebytes Corporation) -- C:\windows\SysNative\drivers\mbamchameleon.sys
[2014/05/12 07:25:56 | 000,025,816 | ---- | M] (Malwarebytes Corporation) -- C:\windows\SysNative\drivers\mbam.sys
[2014/05/08 11:32:11 | 003,178,496 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\rdpcorets.dll
[2014/05/08 11:32:11 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\RdpGroupPolicyExtension.dll
[2014/04/25 04:34:59 | 000,801,280 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\usp10.dll
[2014/04/24 12:33:02 | 000,061,120 | ---- | M] (StdLib) -- C:\windows\SysNative\drivers\{c486bc7a-4f2c-4a8b-ac38-4952f70809b9}Gw64.sys
[2 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2014/06/18 20:34:22 | 001,333,465 | ---- | C] () -- C:\Users\Alessandro\Desktop\adwcleaner_3.212.exe
[2014/06/18 18:27:11 | 004,161,050 | ---- | C] () -- C:\Users\Alessandro\Desktop\tdsskiller.zip
[2014/06/18 17:07:33 | 000,002,110 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
[2014/06/18 17:07:33 | 000,002,098 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
[2014/06/17 18:38:44 | 000,002,178 | ---- | C] () -- C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
[2014/06/17 18:38:44 | 000,002,178 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
[2014/06/17 18:14:42 | 000,000,826 | ---- | C] () -- C:\Users\Alessandro\Desktop\Archivio Alessandro.lnk
[2014/06/16 13:25:23 | 000,223,668 | ---- | C] () -- C:\Users\Alessandro\Desktop\F24 IMU ZATTI CESARE scad 16_06_2014.pdf
[2014/06/13 18:24:23 | 000,223,381 | ---- | C] () -- C:\Users\Alessandro\Desktop\F24 IMU scad 16_06_2014 Comina Valter.pdf
[2014/06/13 18:23:09 | 000,223,084 | ---- | C] () -- C:\Users\Alessandro\Desktop\F24 IMU scad 16_06_2014 Comina Elena.pdf
[2014/06/12 21:49:25 | 000,223,626 | ---- | C] () -- C:\Users\Alessandro\Desktop\F24 TASIeIMU scad 16_06_2014 Breda Moira.pdf
[2014/06/12 20:53:46 | 000,171,976 | ---- | C] () -- C:\Users\Alessandro\Desktop\F24 TASIeIMU scad 16_06_2014 Casagrande.pdf
[2014/06/12 20:33:19 | 000,223,618 | ---- | C] () -- C:\Users\Alessandro\Desktop\F24 TASI scad. 16_06_2014 Facchini Claudia.pdf
[2014/06/10 21:19:22 | 000,000,162 | ---- | C] () -- C:\Users\Alessandro\dikePDF.ini
[2014/06/10 16:47:26 | 000,242,223 | ---- | C] () -- C:\Users\Alessandro\caCertsList
[2014/06/10 16:47:26 | 000,000,450 | ---- | C] () -- C:\Users\Alessandro\dike.ini
[2014/06/10 16:37:46 | 000,002,709 | ---- | C] () -- C:\Users\Public\Desktop\DiKePDF.lnk
[2014/06/10 16:36:53 | 000,002,709 | ---- | C] () -- C:\Users\Public\Desktop\Dike.lnk
[2014/06/10 16:31:05 | 000,000,239 | ---- | C] () -- C:\windows\SysWow64\incryptoki2.conf
[2014/06/10 16:30:35 | 000,000,316 | ---- | C] () -- C:\Users\Alessandro\dikeutil.ini
[2014/06/10 16:29:47 | 000,002,741 | ---- | C] () -- C:\Users\Public\Desktop\Dike Util.lnk
[2014/06/10 15:27:02 | 000,002,259 | ---- | C] () -- C:\Users\Alessandro\Desktop\Gestore ComUnica Inps-Inail 1.5.34.lnk
[2014/06/06 12:29:00 | 000,000,729 | ---- | C] () -- C:\STUDIO BREDA - collegamento.lnk
[2014/06/05 12:36:20 | 000,002,322 | ---- | C] () -- C:\Users\Alessandro\Desktop\Studio Pilisi.RDP
[2014/06/05 12:35:26 | 000,000,000 | -H-- | C] () -- C:\Users\Alessandro\Documents\Default.rdp
[2014/06/05 12:34:29 | 000,001,846 | ---- | C] () -- C:\Users\Public\Desktop\VPN Access Manager.lnk
[2014/06/04 14:40:35 | 000,001,597 | ---- | C] () -- C:\Users\Alessandro\Desktop\STUDIO BREDA.lnk
[2014/05/27 22:50:02 | 000,001,251 | ---- | C] () -- C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
[2014/05/27 21:51:11 | 000,002,189 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2014/05/27 17:32:39 | 000,000,830 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2014/05/27 17:24:57 | 3164,753,920 | -HS- | C] () -- C:\hiberfil.sys
[2014/05/27 13:33:05 | 000,008,892 | ---- | C] () -- C:\spyhunter.fix
[2014/05/23 13:15:41 | 000,001,171 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2014/05/23 13:15:41 | 000,001,159 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2014/05/23 12:34:35 | 000,000,785 | ---- | C] () -- C:\windows\wininit.ini
[2014/05/21 16:41:04 | 000,014,680 | ---- | C] () -- C:\windows\SysNative\sh4native.exe
[2014/05/21 15:57:47 | 000,001,114 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2014/05/21 15:03:04 | 000,000,000 | ---- | C] () -- C:\autoexec.bat
[2014/05/21 13:33:48 | 000,000,476 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2014/05/21 10:49:05 | 000,000,000 | -H-- | C] () -- C:\windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2014/05/21 10:48:34 | 000,001,575 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Entratel.lnk
[2014/05/21 10:48:34 | 000,001,563 | ---- | C] () -- C:\Users\Public\Desktop\Entratel.lnk
[2014/05/21 10:40:04 | 000,001,965 | ---- | C] () -- C:\Users\Alessandro\Desktop\Mail - collegamento.lnk
[2014/05/21 10:15:13 | 000,036,972 | ---- | C] () -- C:\windows\SysWow64\ActPanel.dll
[2014/05/21 09:26:35 | 000,001,375 | ---- | C] () -- C:\Users\Alessandro\Desktop\Internet Explorer.lnk
[2014/05/21 09:23:59 | 000,001,158 | ---- | C] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job
[2014/05/21 09:23:57 | 000,001,154 | ---- | C] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore.job
[2014/05/21 09:15:11 | 000,001,405 | ---- | C] () -- C:\Users\Alessandro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2014/05/20 15:57:19 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
[2014/05/20 15:56:10 | 000,000,978 | ---- | C] () -- C:\windows\tasks\Adobe Flash Player Updater.job
[2014/05/20 14:49:24 | 000,016,284 | ---- | C] () -- C:\windows\SysWow64\ieuinit.inf
[2014/05/20 14:49:22 | 000,016,284 | ---- | C] () -- C:\windows\SysNative\ieuinit.inf
[2014/05/20 14:21:24 | 000,000,003 | ---- | C] () -- C:\windows\SysNative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2014/05/20 12:50:31 | 000,000,000 | RHS- | C] () -- C:\windows\SysWow64\drivers\103C_HP_bPC_ProDesk 400 G1 MT_Y53307F_0U_QCZC4195RTK_E13WWHCCW601_4A_I198E_SHP_V_BL02 v02.11_T140103_W748-1_L410_M4025_J500_7Intel_86C3_93.20_#140512_N10EC8168_(D5T98EA#ABZ)_X_CD6_Z_2_G80860412.MRK
[2014/05/20 12:50:31 | 000,000,000 | RHS- | C] () -- C:\windows\SysNative\drivers\103C_HP_bPC_ProDesk 400 G1 MT_Y53307F_0U_QCZC4195RTK_E13WWHCCW601_4A_I198E_SHP_V_BL02 v02.11_T140103_W748-1_L410_M4025_J500_7Intel_86C3_93.20_#140512_N10EC8168_(D5T98EA#ABZ)_X_CD6_Z_2_G80860412.MRK
[2014/05/12 22:55:34 | 000,001,945 | ---- | C] () -- C:\windows\epplauncher.mif
[2014/05/12 22:54:04 | 000,000,225 | ---- | C] () -- C:\windows\CryptoMill_CreoService.005
[2014/05/12 22:54:04 | 000,000,225 | ---- | C] () -- C:\windows\CryptoMill_CreoService.004
[2014/05/12 22:54:04 | 000,000,225 | ---- | C] () -- C:\windows\CryptoMill_CreoService.003
[2014/05/12 22:54:04 | 000,000,225 | ---- | C] () -- C:\windows\CryptoMill_CreoService.002
[2014/05/12 22:54:04 | 000,000,225 | ---- | C] () -- C:\windows\CryptoMill_CreoService.001
[2014/05/12 22:49:25 | 000,000,000 | -H-- | C] () -- C:\windows\SysNative\drivers\Msft_Kernel_iusb3hcs_01009.Wdf
[2014/05/12 22:37:40 | 000,000,000 | -H-- | C] () -- C:\windows\SysNative\drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
[2014/05/12 22:15:40 | 000,335,478 | ---- | C] () -- C:\windows\SysNative\perfi010.dat
[2014/05/12 22:15:38 | 000,743,514 | ---- | C] () -- C:\windows\SysNative\perfh010.dat
[2014/05/12 22:15:38 | 000,147,688 | ---- | C] () -- C:\windows\SysNative\perfc010.dat
[2014/05/12 22:15:38 | 000,037,534 | ---- | C] () -- C:\windows\SysNative\perfd010.dat
[2014/05/12 21:52:25 | 000,000,003 | ---- | C] () -- C:\windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2014/05/12 21:37:17 | 000,000,000 | RHS- | C] () -- C:\OS
[2013/06/03 21:08:18 | 000,241,152 | ---- | C] () -- C:\windows\SysWow64\igdde32.dll
[2013/06/03 21:08:16 | 000,103,936 | ---- | C] () -- C:\windows\SysWow64\igdail32.dll
[2013/06/03 21:04:53 | 019,587,072 | ---- | C] () -- C:\windows\SysWow64\igdfcl32.dll
[2013/05/12 02:17:52 | 000,001,536 | ---- | C] () -- C:\windows\SysWow64\IusEventLog.dll
[2012/09/21 21:08:36 | 010,919,784 | ---- | C] () -- C:\windows\SysWow64\LogiDPP.dll
[2012/09/21 21:08:36 | 000,338,136 | ---- | C] () -- C:\windows\SysWow64\DevManagerCore.dll
[2012/09/21 21:08:36 | 000,103,272 | ---- | C] () -- C:\windows\SysWow64\LogiDPPApp.exe

========== ZeroAccess Check ==========

[2009/07/14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2014/03/25 04:43:12 | 014,175,744 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014/03/25 04:09:54 | 012,874,240 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/21 05:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2014/05/28 17:59:29 | 000,000,000 | ---D | M] -- C:\Users\Alessandro\AppData\Roaming\DVDVideoSoft
[2014/05/21 09:33:38 | 000,000,000 | ---D | M] -- C:\Users\Alessandro\AppData\Roaming\ESET
[2014/06/18 09:26:16 | 000,000,000 | ---D | M] -- C:\Users\Alessandro\AppData\Roaming\Koupak
[2014/05/21 09:37:42 | 000,000,000 | ---D | M] -- C:\Users\Alessandro\AppData\Roaming\Leadertech
[2014/06/18 17:52:25 | 000,000,000 | ---D | M] -- C:\Users\Alessandro\AppData\Roaming\Otwu
[2014/06/18 09:26:32 | 000,000,000 | ---D | M] -- C:\Users\Alessandro\AppData\Roaming\Qeav
[2014/05/21 09:21:02 | 000,000,000 | ---D | M] -- C:\Users\Alessandro\AppData\Roaming\Sistemi
[2014/05/21 10:27:30 | 000,000,000 | ---D | M] -- C:\Users\Alessandro\AppData\Roaming\Thunderbird

========== Purity Check ==========

< End of report >

Torna in alto

abreda

Inviato: Thursday, June 19, 2014 10:37:41 AM

Rank: Newbie

Iscritto dal : 5/27/2014
Posts: 9

Ultimo aggiornamento: la storia si ripete.
Con il pc disconnesso dalla rete internet elimino il virus rilevato da eset nod e la successiva scansione non segnala più infezioni.
Dopo aver ricconnesso il pc alla rete e avviato thunderbird, la scansione approfondita con l'eset nod fa riemergere su una cartella nascosta di thunderbird le solite due infezioni del tipo: "Thunderbird.exe(3356) - una variante di Win32/Spy.Zbot.AAO trojan horse".

Qualcuno ha qualche indicazione?
Grazie

Torna in alto

Utenti presenti in questo topic

Guest

Aiutamici Forum » FORUM - Istruzioni e Guide » Sicurezza VIRUS » Trojan difficile da debellare: ecco i LOG

Salta al Forum

Aggiunta nuovi Topic disabilitata in questo forum.
Risposte disabilitate in questo forum.
Eliminazione tuoi Post disabilitata in questo forum.
Modifica dei tuoi post disabilitata in questo forum.
Creazione Sondaggi disabilitata in questo forum.
Voto ai sondaggi disabilitato in questo forum.

Invia topic via Email

RSS Feed

Watch this topic

Stampa topic

Normale

Threaded