shapiro ha scritto:fai queste scansioni
scarica
adwcleaner clicca su
scan e poi su ''
clean'' conferma con OK le varie finestre che ti compariranno.
alla fine clicca su Report e allega il contenuto
Scarica OTL sul desktop:
http://oldtimer.geekstogo.com/OTL.exeEsegui il file OTL.exe
Clicca su
Run ScanLascia che il programma, venga eseguito, senza interruzioni.
Finita la scansione, OTL produrrà due file di log (OTL.txt ed Extras.txt), sul desktop.
Postali qui.
********************************************************************************************************
# AdwCleaner v3.012 - Report created 11/11/2013 at 22:16:43
# Updated 11/11/2013 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (32 bits)
# Username : pcone - pcone-PC
# Running from : C:\Users\pcone\Downloads\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\apn
File Deleted : C:\Users\pcone\AppData\Roaming\Mozilla\Firefox\Profiles\97dmpqmb.default\Extensions\trtv3@trtv.com.xpi
File Deleted : C:\Program Files\Mozilla Firefox\searchplugins\dosearches.xml
File Deleted : C:\Users\pcone\AppData\Roaming\Mozilla\Firefox\Profiles\97dmpqmb.default\user.js
File Deleted : C:\Users\pcone\AppData\Roaming\Mozilla\Firefox\Profiles\Solo_745043\user.js
***** [ Shortcuts ] *****
Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
Shortcut Disinfected : C:\Users\pcone\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Shortcut Disinfected : C:\Users\pcone\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
Shortcut Disinfected : C:\Users\pcone\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
Shortcut Disinfected : C:\Users\pcone\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\bicnnkjibmphdeigoodpjlcklcnaobdj
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command
Key Deleted : HKCU\Software\InstalledThirdPartyPrograms
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKLM\Software\InstalledThirdPartyPrograms
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\43C098337DB065A49B665D4EA7F16D1C
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A71991503412AEB42838B02C5ED9F9CD
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F2E0D3DD9E5E4B74CA43BCE77815E287
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F7652513C62FF63448CFF05163719DB7
***** [ Browsers ] *****
-\\ Internet Explorer v10.0.9200.16720
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
-\\ Mozilla Firefox v25.0 (it)
[ File : C:\Users\pcone\AppData\Roaming\Mozilla\Firefox\Profiles\97dmpqmb.default\prefs.js ]
Line Deleted : user_pref("browser.search.defaultenginename", "dosearches");
Line Deleted : user_pref("extensions.crossrider.bic", "1423f2d1ba2d2b8daac13d608a99df3c");
Line Deleted : user_pref("extensions.iminent.admin", false);
Line Deleted : user_pref("extensions.iminent.aflt", "orgnl");
Line Deleted : user_pref("extensions.iminent.appId", "{0E4B2CAB-B859-4C57-B96E-63DDEC692BC4}");
Line Deleted : user_pref("extensions.iminent.autoRvrt", "false");
Line Deleted : user_pref("extensions.iminent.dfltLng", "");
Line Deleted : user_pref("extensions.iminent.excTlbr", false);
Line Deleted : user_pref("extensions.iminent.ffxUnstlRst", false);
Line Deleted : user_pref("extensions.iminent.id", "a4f1bf02000000000000001de05ae6c7");
Line Deleted : user_pref("extensions.iminent.instlDay", "16011");
Line Deleted : user_pref("extensions.iminent.instlRef", "");
Line Deleted : user_pref("extensions.iminent.newTab", false);
Line Deleted : user_pref("extensions.iminent.prdct", "iminent");
Line Deleted : user_pref("extensions.iminent.prtnrId", "iminent");
Line Deleted : user_pref("extensions.iminent.rvrt", "false");
Line Deleted : user_pref("extensions.iminent.smplGrp", "none");
Line Deleted : user_pref("extensions.iminent.tlbrId", "base");
Line Deleted : user_pref("extensions.iminent.tlbrSrchUrl", "hxxp://start.iminent.com/?ref=toolbarm#q=");
Line Deleted : user_pref("extensions.iminent.vrsn", "1.8.26.8");
Line Deleted : user_pref("extensions.iminent.vrsnTs", "1.8.26.814:35:33");
Line Deleted : user_pref("extensions.iminent.vrsni", "1.8.26.8");
Line Deleted : user_pref("iminent.LayoutId", "1");
Line Deleted : user_pref("iminent.registerToolbarEvent102", "1383399412185");
Line Deleted : user_pref("iminent.version", "7.43.4.1");
Line Deleted : user_pref("iminent.versioning", "{\"CurrentVersion\":\"7.43.4.1\",\"InstallEventCTime\":1383399384948,\"InstallEvent\":\"True\"}");
[ File : C:\Users\pcone\AppData\Roaming\Mozilla\Firefox\Profiles\Solo_745043\prefs.js ]
*************************
AdwCleaner[R0].txt - [12637 octets] - [16/10/2013 22:34:17]
AdwCleaner[R1].txt - [994 octets] - [16/10/2013 22:44:16]
AdwCleaner[R2].txt - [10679 octets] - [11/11/2013 22:15:41]
AdwCleaner[S0].txt - [9316 octets] - [16/10/2013 22:41:48]
AdwCleaner[S1].txt - [1054 octets] - [16/10/2013 22:46:09]
AdwCleaner[S2].txt - [9282 octets] - [11/11/2013 22:16:43]
########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [9342 octets] ##########
********************************************************************************************************
OTL logfile created on: 11/11/2013 22:21:20 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\pcone\Downloads
Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16721)
Locale: 00000410 | Country: Italia | Language: ITA | Date Format: dd/MM/yyyy
3,00 Gb Total Physical Memory | 1,66 Gb Available Physical Memory | 55,26% Memory free
6,00 Gb Paging File | 4,50 Gb Available in Paging File | 75,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 60,01 Gb Total Space | 27,68 Gb Free Space | 46,12% Space Free | Partition Type: NTFS
Drive D: | 172,86 Gb Total Space | 145,54 Gb Free Space | 84,19% Space Free | Partition Type: NTFS
Computer Name: CAROTTA-PC | User Name: pcone | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ========== PRC - [2013/11/10 23:46:07 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\pcone\Downloads\OTL.exe
PRC - [2013/10/10 23:54:44 | 000,120,088 | ---- | M] (SUPERAntiSpyware.com) -- C:\Programmi\SUPERAntiSpyware\SASCore.exe
PRC - [2013/08/19 11:52:17 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2013/08/12 09:12:38 | 000,295,376 | ---- | M] (Microsoft Corporation) -- C:\Programmi\Microsoft Security Client\NisSrv.exe
PRC - [2013/08/12 09:12:38 | 000,022,208 | ---- | M] (Microsoft Corporation) -- C:\Programmi\Microsoft Security Client\MsMpEng.exe
PRC - [2013/08/12 09:11:20 | 000,995,176 | ---- | M] (Microsoft Corporation) -- C:\Programmi\Microsoft Security Client\msseces.exe
PRC - [2013/08/07 10:42:30 | 004,308,320 | ---- | M] (TeamViewer GmbH) -- C:\Programmi\TeamViewer\Version8\TeamViewer_Service.exe
PRC - [2013/05/11 11:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Programmi\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013/04/22 09:05:32 | 000,720,064 | ---- | M] (Microsoft Corporation) -- C:\Programmi\Microsoft Office\Office14\MSOSYNC.EXE
PRC - [2012/04/03 12:33:00 | 000,940,168 | ---- | M] (CANON INC.) -- C:\Programmi\Canon\Quick Menu\CNQMSWCS.EXE
PRC - [2012/04/03 12:27:16 | 001,087,608 | ---- | M] (CANON INC.) -- C:\Programmi\Canon\Quick Menu\CNQMUPDT.EXE
PRC - [2012/04/03 12:26:14 | 001,273,448 | ---- | M] (CANON INC.) -- C:\Programmi\Canon\Quick Menu\CNQMMAIN.EXE
PRC - [2012/03/26 16:35:16 | 000,449,168 | ---- | M] (CANON INC.) -- C:\Programmi\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
PRC - [2011/02/25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010/11/20 13:17:41 | 001,174,016 | ---- | M] (Microsoft Corporation) -- C:\Programmi\Windows Sidebar\sidebar.exe
PRC - [2010/06/28 18:05:26 | 003,021,720 | ---- | M] (Enigma Software Group USA, LLC.) -- C:\Programmi\Enigma Software Group\SpyHunter\SpyHunter4.exe
PRC - [2010/05/21 00:01:34 | 011,312,128 | ---- | M] (OpenOffice.org) -- C:\Programmi\OpenOffice.org 3\program\soffice.bin
PRC - [2010/05/21 00:01:32 | 011,318,784 | ---- | M] (OpenOffice.org) -- C:\Programmi\OpenOffice.org 3\program\soffice.exe
PRC - [2010/05/18 17:06:42 | 000,327,064 | ---- | M] (Enigma Software Group USA, LLC.) -- C:\Programmi\Enigma Software Group\SpyHunter\SH4Service.exe
PRC - [2009/10/26 13:46:54 | 001,458,176 | ---- | M] (Motorola Inc.) -- C:\Programmi\Motorola\SMSERIAL\sm56hlpr.exe
PRC - [2007/04/19 10:32:08 | 000,225,280 | ---- | M] (ATK0100) -- C:\Programmi\ATK Hotkey\HControl.exe
PRC - [2007/02/05 17:13:14 | 000,094,208 | ---- | M] () -- C:\Programmi\ATK Hotkey\ASLDRSrv.exe
PRC - [2006/12/18 16:26:26 | 002,420,736 | ---- | M] () -- C:\Programmi\ATK Hotkey\ATKOSD.exe
========== Modules (No Company Name) ========== MOD - [2013/10/09 23:52:46 | 018,003,456 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\464a76a3fdc9ee7456cb4baaea3e503a\PresentationFramework.ni.dll
MOD - [2013/10/09 23:52:45 | 013,199,360 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\e40d894a772b2cff5ffd5a84ef20d2d4\System.Windows.Forms.ni.dll
MOD - [2013/10/09 23:52:36 | 001,014,272 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\71d887ce964fb69b7f03c4fe7a3f28ff\System.Configuration.ni.dll
MOD - [2013/10/09 23:52:31 | 011,451,904 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\b5b66869081b909d238fdea083cf3179\PresentationCore.ni.dll
MOD - [2013/10/09 23:52:24 | 007,070,720 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\dac1208781fdd0b960afc12efff42944\System.Core.ni.dll
MOD - [2013/10/09 23:52:20 | 003,858,944 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\0b37b2bafc33ef52282b9d7b217cabaf\WindowsBase.ni.dll
MOD - [2013/08/19 13:22:16 | 000,762,880 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Remo#\8927b576eb15c4a8f4bb04f05e7cc51e\System.Runtime.Remoting.ni.dll
MOD - [2013/08/19 13:22:04 | 001,801,728 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\4d277a8481c203a35c58bd277a2e71df\System.Xaml.ni.dll
MOD - [2013/08/19 12:38:17 | 005,628,928 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\884bcbd22130ebeb1211bc7bcc3910c9\System.Xml.ni.dll
MOD - [2013/08/19 12:38:09 | 001,667,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\3a3fc0216674bdea0be809b305517c98\System.Drawing.ni.dll
MOD - [2013/08/19 12:37:59 | 000,595,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\228b114c79c5d9024bdb4cc580e32c09\PresentationFramework.Aero.ni.dll
MOD - [2013/08/19 12:37:58 | 009,099,776 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\de853615c8224ba5d9aa9b76276c6d98\System.ni.dll
MOD - [2013/08/19 12:37:52 | 014,416,896 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\cf58670896c5313b9b52f026f4455a5d\mscorlib.ni.dll
MOD - [2011/03/16 23:11:16 | 004,297,568 | ---- | M] () -- C:\Programmi\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
MOD - [2010/05/18 16:54:44 | 000,395,776 | ---- | M] () -- C:\Programmi\Enigma Software Group\SpyHunter\ExecutionGuard.dll
MOD - [2010/05/04 14:36:28 | 000,970,752 | ---- | M] () -- C:\Programmi\OpenOffice.org 3\program\libxml2.dll
MOD - [2003/05/15 13:43:24 | 000,119,808 | ---- | M] () -- C:\Programmi\WinRAR\RarExt.dll
========== Services (SafeList) ========== SRV - [2013/11/05 21:21:05 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Programmi\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/11/02 14:36:41 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/10/10 23:54:44 | 000,120,088 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Programmi\SUPERAntiSpyware\SASCore.exe -- (!SASCORE)
SRV - [2013/08/17 15:26:03 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2013/08/12 09:12:38 | 000,295,376 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Programmi\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV - [2013/08/12 09:12:38 | 000,022,208 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Programmi\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV - [2013/08/07 10:42:30 | 004,308,320 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Programmi\TeamViewer\Version8\TeamViewer_Service.exe -- (TeamViewer8)
SRV - [2013/05/27 05:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programmi\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2013/05/11 11:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Programmi\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/09/20 12:28:48 | 030,785,672 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service)
SRV - [2010/11/20 13:17:56 | 001,121,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programmi\Windows Media Player\wmpnetwk.exe -- (WMPNetworkSvc)
SRV - [2010/05/18 17:06:42 | 000,327,064 | ---- | M] (Enigma Software Group USA, LLC.) [Auto | Running] -- C:\Programmi\Enigma Software Group\SpyHunter\SH4Service.exe -- (SpyHunter 4 Service)
SRV - [2010/01/09 20:37:50 | 004,640,000 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programmi\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE -- (osppsvc)
SRV - [2010/01/09 20:18:00 | 000,149,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programmi\Common Files\microsoft shared\Source Engine\OSE.EXE -- (ose)
SRV - [2009/07/14 02:16:15 | 000,016,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV - [2009/07/14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/14 02:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2007/02/05 17:13:14 | 000,094,208 | ---- | M] () [Auto | Running] -- C:\Programmi\ATK Hotkey\ASLDRSrv.exe -- (ASLDRService)
========== Driver Services (SafeList) ========== DRV - File not found [Kernel | Auto | Stopped] -- -- (adfs)
DRV - [2013/06/18 20:50:08 | 000,107,392 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2012/10/18 10:12:06 | 000,971,752 | ---- | M] (AuthenTec, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ATSwpWDF.sys -- (ATSwpWDF)
DRV - [2011/07/22 17:27:02 | 000,012,880 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Programmi\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
DRV - [2011/07/12 22:55:22 | 000,067,664 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Programmi\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2010/11/20 13:30:15 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010/11/20 13:30:15 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010/11/20 13:30:15 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010/11/20 11:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010/11/20 10:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010/11/20 10:14:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010/11/20 10:14:41 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2010/01/27 18:10:44 | 000,005,248 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Programmi\Enigma Software Group\SpyHunter\esgiguard.sys -- (esgiguard)
DRV - [2009/10/26 14:09:06 | 001,095,936 | ---- | M] (Motorola Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\smserial.sys -- (smserial)
DRV - [2009/07/13 23:02:51 | 004,231,168 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\netw5v32.sys -- (netw5v32)
DRV - [2009/07/13 23:02:46 | 000,047,104 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\l160x86.sys -- (AtcL001)
DRV - [2009/07/01 23:59:00 | 009,786,752 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2007/07/31 01:39:00 | 000,007,680 | ---- | M] (ATK0100) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ATKACPI.sys -- (MTsensor)
DRV - [2006/11/14 16:35:20 | 000,037,376 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rixdptsk.sys -- (rismxdp)
========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://www.google.comIE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://www.google.comIE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar =
http://www.google.comIE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
http://www.google.comIE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL =
http://www.google.comIE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://www.google.comIE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL =
http://www.google.comIE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Search Bar =
http://www.google.comIE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page =
http://www.google.comIE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Default_Page_URL =
http://www.google.comIE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page =
http://www.google.comIE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://www.google.comIE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://www.google.comIE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar =
http://www.google.comIE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
http://www.google.comIE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL =
http://www.google.comIE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://www.google.com/IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache =
http://it.msn.com/?ocid=iehpIE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = it
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = C5 61 A7 28 C1 98 CE 01 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL =
http://www.google.comIE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Search Bar =
http://www.google.comIE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page =
http://www.google.comIE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Start Default_Page_URL =
http://www.google.comIE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page =
http://www.google.comIE - HKCU\..\SearchScopes,DefaultScope =
IE - HKCU\..\SearchScopes\{6DA00EEF-0DB5-4B55-B0C9-242374921551}: "URL" =
http://search.ividi.org/?q={searchTerms}&src=tbsp&id=a4f1bf02000000000000001de05ae6c7&affilt=3&r=25
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ========== FF - prefs.js..browser.search.order.1: "Search "
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "https://www.google.it/"
FF - prefs.js..extensions.enabledAddons: ffxtlbr%40ividi.com:1.6.0
FF - prefs.js..extensions.enabledAddons: b026053c-c151-481a-a83e-4fb8d5b1b1a4%40cb8a450e-83dd-422a-b921-028b1cbf9831.com:0.92.10
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:25.0
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 25.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 25.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 24.1.0\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 24.1.0\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 25.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 25.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
[2013/10/27 22:51:36 | 000,000,000 | ---D | M] (No name found) -- C:\Users\pcone\AppData\Roaming\mozilla\Extensions
[2013/11/11 22:16:43 | 000,000,000 | ---D | M] (No name found) -- C:\Users\pcone\AppData\Roaming\mozilla\Firefox\Profiles\97dmpqmb.default\extensions
[2013/11/11 00:06:19 | 000,000,000 | ---D | M] ("Magnet Downloader") -- C:\Users\pcone\AppData\Roaming\mozilla\Firefox\Profiles\97dmpqmb.default\extensions\b026053c-c151-481a-a83e-4fb8d5b1b1a4@cb8a450e-83dd-422a-b921-028b1cbf9831.com
[2013/11/09 22:16:47 | 000,000,000 | ---D | M] (iVIDI) -- C:\Users\pcone\AppData\Roaming\mozilla\Firefox\Profiles\97dmpqmb.default\extensions\ffxtlbr@ividi.com
[2013/11/11 00:06:19 | 000,000,000 | ---D | M] (No name found) -- C:\Users\pcone\AppData\Roaming\mozilla\Firefox\Profiles\97dmpqmb.default\extensions\b026053c-c151-481a-a83e-4fb8d5b1b1a4@cb8a450e-83dd-422a-b921-028b1cbf9831.com\extensionData
[2013/11/11 00:06:19 | 000,000,000 | ---D | M] (No name found) -- C:\Users\pcone\AppData\Roaming\mozilla\Firefox\Profiles\97dmpqmb.default\extensions\b026053c-c151-481a-a83e-4fb8d5b1b1a4@cb8a450e-83dd-422a-b921-028b1cbf9831.com\extensionData\plugins
[2013/11/11 00:06:19 | 000,000,000 | ---D | M] (No name found) -- C:\Users\pcone\AppData\Roaming\mozilla\Firefox\Profiles\97dmpqmb.default\extensions\b026053c-c151-481a-a83e-4fb8d5b1b1a4@cb8a450e-83dd-422a-b921-028b1cbf9831.com\extensionData\userCode
[2013/11/10 00:37:31 | 000,000,000 | ---D | M] (No name found) -- C:\Users\pcone\AppData\Roaming\mozilla\Firefox\Profiles\Solo_745043\extensions
[2013/10/13 00:00:14 | 000,000,000 | ---D | M] ("LyricsSay-15") -- C:\Users\pcone\AppData\Roaming\mozilla\Firefox\Profiles\Solo_745043\extensions\62073e4f-1fc6-4849-8949-46690b9524ef@69ed285a-4f5a-4766-9a6e-3b77a27fe618.com
[2013/10/13 00:00:13 | 000,000,000 | ---D | M] ("LyricsMonkey-15") -- C:\Users\pcone\AppData\Roaming\mozilla\Firefox\Profiles\Solo_745043\extensions\df228366-e2c4-46b8-90a5-7f788732f45e@ef1368ad-a4cd-43ec-9ff9-a16207813324.com
[2013/10/13 00:00:14 | 000,000,000 | ---D | M] (No name found) -- C:\Users\pcone\AppData\Roaming\mozilla\Firefox\Profiles\Solo_745043\extensions\62073e4f-1fc6-4849-8949-46690b9524ef@69ed285a-4f5a-4766-9a6e-3b77a27fe618.com\extensionData
[2013/10/13 00:00:14 | 000,000,000 | ---D | M] (No name found) -- C:\Users\pcone\AppData\Roaming\mozilla\Firefox\Profiles\Solo_745043\extensions\62073e4f-1fc6-4849-8949-46690b9524ef@69ed285a-4f5a-4766-9a6e-3b77a27fe618.com\extensionData\plugins
[2013/10/13 00:00:14 | 000,000,000 | ---D | M] (No name found) -- C:\Users\pcone\AppData\Roaming\mozilla\Firefox\Profiles\Solo_745043\extensions\62073e4f-1fc6-4849-8949-46690b9524ef@69ed285a-4f5a-4766-9a6e-3b77a27fe618.com\extensionData\userCode
[2013/10/13 00:00:13 | 000,000,000 | ---D | M] (No name found) -- C:\Users\pcone\AppData\Roaming\mozilla\Firefox\Profiles\Solo_745043\extensions\df228366-e2c4-46b8-90a5-7f788732f45e@ef1368ad-a4cd-43ec-9ff9-a16207813324.com\extensionData
[2013/10/13 00:00:13 | 000,000,000 | ---D | M] (No name found) -- C:\Users\pcone\AppData\Roaming\mozilla\Firefox\Profiles\Solo_745043\extensions\df228366-e2c4-46b8-90a5-7f788732f45e@ef1368ad-a4cd-43ec-9ff9-a16207813324.com\extensionData\plugins
[2013/10/13 00:00:13 | 000,000,000 | ---D | M] (No name found) -- C:\Users\pcone\AppData\Roaming\mozilla\Firefox\Profiles\Solo_745043\extensions\df228366-e2c4-46b8-90a5-7f788732f45e@ef1368ad-a4cd-43ec-9ff9-a16207813324.com\extensionData\userCode
[2013/11/05 21:20:41 | 000,000,000 | ---D | M] (No name found) -- C:\Programmi\Mozilla Firefox\extensions
[2013/11/05 21:20:40 | 000,000,000 | ---D | M] (No name found) -- C:\Programmi\Mozilla Firefox\browser\extensions
[2013/11/05 21:21:07 | 000,000,000 | ---D | M] (Default) -- C:\Programmi\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
File not found (No name found) -- C:\USERS\CAROTTA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\97DMPQMB.DEFAULT\EXTENSIONS\B026053C-C151-481A-A83E-4FB8D5B1B1A4@CB8A450E-83DD-422A-B921-028B1CBF9831.COM.XPI
O1 HOSTS File: ([2013/11/11 22:19:16 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Programmi\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Programmi\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programmi\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Programmi\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programmi\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Programmi\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O3 - HKCU\..\Toolbar\WebBrowser: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Programmi\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O4 - HKLM..\Run: [BCSSync] C:\Program Files\Microsoft Office\Office14\BCSSync.exe (Microsoft Corporation)
O4 - HKLM..\Run: [CanonQuickMenu] C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE (CANON INC.)
O4 - HKLM..\Run: [fst_it_5] File not found
O4 - HKLM..\Run: [IJNetworkScannerSelectorEX] C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe (CANON INC.)
O4 - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Programmi\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [SMSERIAL] C:\Programmi\Motorola\SMSERIAL\sm56hlpr.exe (Motorola Inc.)
O4 - HKCU..\Run: [GoogleDriveSync] C:\Program Files\Google\Drive\googledrivesync.exe (Google)
O4 - HKCU..\Run: [OfficeSyncProcess] C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE (Microsoft Corporation)
O4 - HKCU..\Run: [SUPERAntiSpyware] C:\Programmi\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware)
O4 - Startup: C:\Users\pcone\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk = C:\Programmi\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8 - Extra context menu item: E&sporta in Microsoft Excel - C:\Programmi\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: I&nvia a OneNote - C:\Programmi\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Invia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programmi\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : I&nvia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programmi\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: &Note collegate di OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programmi\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Note collegate di OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programmi\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}
http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 10.45.2)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 10.45.2)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5FF5B3D2-64E0-43BB-9619-C5BA2A140F76}: DhcpNameServer = 192.168.2.1
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programmi\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Programmi\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Programmi\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{62ded07b-04bf-11e3-93c7-001a927a9947}\Shell - "" = AutoRun
O33 - MountPoints2\{62ded07b-04bf-11e3-93c7-001a927a9947}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -a
O33 - MountPoints2\G\Shell - "" = AutoRun
O33 - MountPoints2\G\Shell\AutoRun\command - "" = G:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
========== Files/Folders - Created Within 30 Days ========== [2013/11/10 22:33:13 | 000,000,000 | ---D | C] -- C:\Users\pcone\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVS4YOU
[2013/11/10 22:32:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVS4YOU
[2013/11/10 22:32:40 | 010,833,920 | ---- | C] (Intel Corporation) -- C:\Windows\System32\libmfxsw32.dll
[2013/11/10 22:32:37 | 010,915,840 | ---- | C] (Intel Corporation) -- C:\Windows\System32\libmfxhw32.dll
[2013/11/10 14:44:31 | 000,000,000 | ---D | C] -- C:\Users\pcone\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
[2013/11/10 14:44:23 | 000,000,000 | ---D | C] -- C:\sh4ldr
[2013/11/10 01:32:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2013/11/10 01:32:42 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2013/11/10 00:21:38 | 000,000,000 | ---D | C] -- C:\Program Files\Magnet.TV
[2013/11/10 00:21:19 | 000,000,000 | ---D | C] -- C:\Users\pcone\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Magnet-TV.com
[2013/11/10 00:21:19 | 000,000,000 | ---D | C] -- C:\Program Files\Magnet-TV.com
[2013/11/09 23:25:05 | 000,000,000 | ---D | C] -- C:\Users\pcone\AppData\Roaming\SUPERAntiSpyware.com
[2013/11/09 23:25:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
[2013/11/09 23:24:56 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
[2013/11/09 23:24:56 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2013/11/05 21:20:40 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2013/10/27 22:50:40 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2013/10/27 20:28:53 | 000,000,000 | ---D | C] -- C:\Users\pcone\Documents\Freemake
[2013/10/27 20:28:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Freemake
[2013/10/27 20:28:38 | 000,000,000 | ---D | C] -- C:\Program Files\Freemake
[2013/10/20 22:54:33 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Thunderbird
[2013/10/20 21:41:27 | 000,000,000 | ---D | C] -- C:\My Music
[2013/10/20 21:26:13 | 000,000,000 | ---D | C] -- C:\Users\pcone\AppData\Roaming\FairStars CD Ripper
[2013/10/19 23:06:28 | 000,264,616 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaws.exe
[2013/10/19 23:06:14 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaw.exe
[2013/10/19 23:06:14 | 000,174,504 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\java.exe
[2013/10/19 23:06:14 | 000,094,632 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll
[2013/10/19 22:56:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Oracle
[2013/10/19 22:56:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2013/10/19 22:53:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
[2013/10/16 22:57:37 | 000,000,000 | ---D | C] -- C:\Users\pcone\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
[2013/10/16 22:57:36 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2013/10/16 22:34:00 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2013/10/16 21:59:45 | 000,000,000 | ---D | C] -- C:\Users\pcone\AppData\Roaming\Malwarebytes
[2013/10/16 21:59:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2013/10/16 21:59:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2013/10/16 21:59:17 | 000,022,856 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2013/10/16 21:59:16 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2013/10/16 20:45:26 | 000,000,000 | ---D | C] -- C:\Program Files\Enigma Software Group
[2013/10/16 20:44:35 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard
[2013/10/13 00:14:09 | 000,000,000 | ---D | C] -- C:\Users\pcone\AppData\Roaming\FreeAudioPack
[2013/10/13 00:06:56 | 000,000,000 | ---D | C] -- C:\Program Files\predm
[2013/10/12 23:53:34 | 001,986,560 | ---- | C] (NCT Company Ltd.) -- C:\Windows\System32\AudFile.dll
[2013/10/12 23:53:34 | 001,212,416 | ---- | C] (NCT Company Ltd.) -- C:\Windows\System32\AudioInfos.dll
[2013/10/12 23:53:34 | 000,458,752 | ---- | C] (NCT Company Ltd.) -- C:\Windows\System32\AudPlayer.dll
[2013/10/12 23:53:34 | 000,348,160 | ---- | C] (NCT Company Ltd.) -- C:\Windows\System32\WMAFile.dll
[2013/10/12 23:53:34 | 000,224,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TABCTL32.OCX
[2013/10/12 23:53:34 | 000,119,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\VB6FR.DLL
[2013/10/12 23:53:34 | 000,115,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msinet.OCX
[2013/10/12 23:53:34 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\VB6STKIT.DLL
[2013/10/12 23:53:34 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetfr.DLL
[2013/10/12 23:53:33 | 000,152,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\COMDLG32.OCX
[2013/10/12 23:53:33 | 000,141,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSCMCFR.DLL
[2013/10/12 23:53:33 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Mscc2fr.dll
[2013/10/12 23:53:33 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CMDLGFR.DLL
[2013/10/12 23:53:33 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TABCTFR.DLL
[2013/10/12 23:51:44 | 000,000,000 | ---D | C] -- C:\Program Files\Free mp3 Wma Converter
[2013/10/12 22:39:25 | 000,000,000 | ---D | C] -- C:\Users\pcone\AppData\Local\Programs
[2013/08/19 23:47:00 | 000,915,456 | ---- | C] (Delphi Shop Seven Pte Ltd.) -- C:\Program Files\avscrc.exe
[4 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 30 Days ========== [2013/11/11 22:22:35 | 000,698,570 | ---- | M] () -- C:\Windows\System32\perfh010.dat
[2013/11/11 22:22:35 | 000,616,008 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2013/11/11 22:22:35 | 000,127,764 | ---- | M] () -- C:\Windows\System32\perfc010.dat
[2013/11/11 22:22:35 | 000,106,388 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2013/11/11 22:18:26 | 000,001,136 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/11/11 22:17:42 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/11/11 22:17:34 | 2415,321,088 | -HS- | M] () -- C:\hiberfil.sys
[2013/11/11 21:36:00 | 000,000,978 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/11/11 21:28:00 | 000,001,140 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/11/11 20:18:46 | 000,020,288 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/11/11 20:18:46 | 000,020,288 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/11/10 23:25:00 | 000,000,514 | ---- | M] () -- C:\Windows\tasks\SUPERAntiSpyware Scheduled Task 7ea40c86-bc73-419a-a73a-efab3d393157.job
[2013/11/10 22:32:53 | 000,001,199 | ---- | M] () -- C:\Users\pcone\Desktop\AVS Audio Converter.lnk
[2013/11/10 22:05:04 | 000,006,659 | ---- | M] () -- C:\Users\pcone\Documents\hijackthis_20131110
[2013/11/10 14:44:33 | 000,002,250 | ---- | M] () -- C:\Users\pcone\Desktop\SpyHunter.lnk
[2013/11/10 14:04:30 | 000,001,193 | ---- | M] () -- C:\Users\pcone\Desktop\Documenti.lnk
[2013/11/10 02:00:00 | 000,000,514 | ---- | M] () -- C:\Windows\tasks\SUPERAntiSpyware Scheduled Task e47b25b0-b210-4f4f-a12a-643360b64eef.job
[2013/11/09 23:25:02 | 000,001,965 | ---- | M] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk
[2013/11/02 14:38:54 | 000,000,870 | ---- | M] () -- C:\Windows\System32\InstallUtil.InstallLog
[2013/11/02 14:36:28 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2013/11/02 14:36:28 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2013/10/23 20:51:33 | 000,001,051 | ---- | M] () -- C:\Users\pcone\Desktop\prestazioni esterne.lnk
[2013/10/20 10:36:21 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2013/10/19 23:05:41 | 000,094,632 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll
[2013/10/19 23:05:34 | 000,264,616 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\javaws.exe
[2013/10/19 23:05:34 | 000,175,016 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\javaw.exe
[2013/10/19 23:05:31 | 000,174,504 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\java.exe
[2013/10/16 22:57:37 | 000,002,973 | ---- | M] () -- C:\Users\pcone\Desktop\HiJackThis.lnk
[2013/10/16 22:03:05 | 000,001,071 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[4 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ========== [2013/11/10 22:32:53 | 000,001,199 | ---- | C] () -- C:\Users\pcone\Desktop\AVS Audio Converter.lnk
[2013/11/10 22:05:04 | 000,006,659 | ---- | C] () -- C:\Users\pcone\Documents\hijackthis_20131110
[2013/11/10 14:44:31 | 000,002,250 | ---- | C] () -- C:\Users\pcone\Desktop\SpyHunter.lnk
[2013/11/09 23:25:16 | 000,000,514 | ---- | C] () -- C:\Windows\tasks\SUPERAntiSpyware Scheduled Task 7ea40c86-bc73-419a-a73a-efab3d393157.job
[2013/11/09 23:25:15 | 000,000,514 | ---- | C] () -- C:\Windows\tasks\SUPERAntiSpyware Scheduled Task e47b25b0-b210-4f4f-a12a-643360b64eef.job
[2013/11/09 23:25:02 | 000,001,965 | ---- | C] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk
[2013/11/02 14:35:20 | 000,000,870 | ---- | C] () -- C:\Windows\System32\InstallUtil.InstallLog
[2013/10/27 22:50:43 | 000,001,023 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2013/10/23 20:50:07 | 000,001,051 | ---- | C] () -- C:\Users\pcone\Desktop\prestazioni esterne.lnk
[2013/10/20 10:36:21 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2013/10/16 22:57:37 | 000,002,973 | ---- | C] () -- C:\Users\pcone\Desktop\HiJackThis.lnk
[2013/10/16 21:59:21 | 000,001,071 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013/10/12 23:57:01 | 000,032,328 | ---- | C] () -- C:\Windows\Launcher.exe
[2013/10/12 23:53:34 | 000,116,296 | ---- | C] () -- C:\Windows\System32\NCTWMAProfiles.prx
[2013/08/27 21:43:51 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2013/08/18 13:06:50 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2013/08/14 13:07:27 | 000,007,680 | ---- | C] () -- C:\Windows\System32\CNMVS64.DLL
[2013/08/14 10:24:31 | 000,000,135 | ---- | C] () -- C:\Windows\AutoKMS.ini
========== ZeroAccess Check ========== [2009/07/14 05:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/07/26 02:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 13:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/14 02:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
< End of report >
********************************************************************************************************
OTL Extras logfile created on: 11/11/2013 22:21:20 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\pcone\Downloads
Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16721)
Locale: 00000410 | Country: Italia | Language: ITA | Date Format: dd/MM/yyyy
3,00 Gb Total Physical Memory | 1,66 Gb Available Physical Memory | 55,26% Memory free
6,00 Gb Paging File | 4,50 Gb Available in Paging File | 75,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 60,01 Gb Total Space | 27,68 Gb Free Space | 46,12% Space Free | Partition Type: NTFS
Drive D: | 172,86 Gb Total Space | 145,54 Gb Free Space | 84,19% Space Free | Partition Type: NTFS
Computer Name: pcone-PC | User Name: pcone | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ========== ========== File Associations ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htafile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office14\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office14\msohtmed.exe" /p %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ========== ========== Vista Active Open Ports Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{5D51CC2E-6D9E-431A-AE86-A7E849D2E7AD}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office14\outlook.exe |
========== Vista Active Application Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0D7CEB93-740A-44F8-9233-056F7A0A85D5}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\groove.exe |
"{15B77DCA-1611-4F62-95BC-CB5AFDA4F94A}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version8\teamviewer.exe |
"{1CD68E8F-4F59-48AF-BDB4-0AF716058838}" = protocol=17 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"{410885DE-E734-4C6F-A7F8-1E078BF07749}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version8\teamviewer_service.exe |
"{9D870CF8-76E4-4734-8B1C-8C0B0925331C}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version8\teamviewer.exe |
"{C2B61A9C-6E4C-4426-A717-102C82627DD6}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{D9581DC4-2F40-4F0F-9377-BFACA8A2FC16}" = protocol=6 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"{F06E4271-6D67-4D38-A899-3F2B80F7050B}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{F4A6454C-A78D-4330-BE6C-E7929E5754D7}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\groove.exe |
"{FD1E1D4C-248F-46DA-9D5F-E695ECFAC29F}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version8\teamviewer_service.exe |
"TCP Query User{033DBD8E-5DD3-4898-8809-C6735756A579}C:\metopackasp\metopackasp\extranet.exe" = protocol=6 | dir=in | app=c:\metopackasp\metopackasp\extranet.exe |
"TCP Query User{07B48F34-1282-463A-87AF-5E96EBEB7B19}C:\program files\magnet-tv.com\magnettv downloader.exe" = protocol=6 | dir=in | app=c:\program files\magnet-tv.com\magnettv downloader.exe |
"TCP Query User{7DC6D4D7-4C61-4D42-BAE5-59423551C736}C:\program files\torntv.com\torntv downloader.exe" = protocol=6 | dir=in | app=c:\program files\torntv.com\torntv downloader.exe |
"TCP Query User{C5528F4F-C533-4730-8884-1991889D2FE1}C:\windows\system32\wfs.exe" = protocol=6 | dir=in | app=c:\windows\system32\wfs.exe |
"TCP Query User{FAC96630-E86F-4F67-B003-4FC94285D5C5}C:\windows\kmsemulator.exe" = protocol=6 | dir=in | app=c:\windows\kmsemulator.exe |
"UDP Query User{0B07A77A-4B72-466A-B451-12EB7E8499E6}C:\windows\kmsemulator.exe" = protocol=17 | dir=in | app=c:\windows\kmsemulator.exe |
"UDP Query User{B505D095-65AC-496B-A6A7-F67F5C711C13}C:\metopackasp\metopackasp\extranet.exe" = protocol=17 | dir=in | app=c:\metopackasp\metopackasp\extranet.exe |
"UDP Query User{BB7E6650-568D-4F20-A86D-ED32AA2A2F9C}C:\program files\torntv.com\torntv downloader.exe" = protocol=17 | dir=in | app=c:\program files\torntv.com\torntv downloader.exe |
"UDP Query User{C689E2E1-8559-4EF1-8010-B5C8CACD9DAD}C:\windows\system32\wfs.exe" = protocol=17 | dir=in | app=c:\windows\system32\wfs.exe |
"UDP Query User{FD5C7EFA-1107-4962-BD99-587AEE676D26}C:\program files\magnet-tv.com\magnettv downloader.exe" = protocol=17 | dir=in | app=c:\program files\magnet-tv.com\magnettv downloader.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5400_series" = Canon MG5400 series MP Drivers
"{192A227B-A8C8-4C6D-B939-21FAEB007E1E}" = Google Drive
"{197A3012-8C85-4FD3-AB66-9EC7E13DB92E}" = Adobe AIR
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java(TM) 6 Update 20
"{26A24AE4-039D-4CA4-87B4-2F83217045FF}" = Java 7 Update 45
"{32714140-CBC5-3FAF-BFC2-3A7376C3EECF}" = Microsoft .NET Framework 4 Client Profile ITA Language Pack
"{3912D529-02BC-4CA8-B5ED-0D0C20EB6003}" = ATK Hotkey
"{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4D24F198-A2CB-46B5-BB16-41B69C644B6C}" = Microsoft Security Client
"{4FC9DA9D-F608-454E-8191-D7EFFDCC5726}" = SpyHunter
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{691BD252-796D-4AE3-924C-C48A1CD4BEDF}" = OpenOffice.org 3.2
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{90140000-0015-0410-0000-0000000FF1CE}" = Microsoft Office Access MUI (Italian) 2010
"{90140000-0015-0410-0000-0000000FF1CE}_Office14.PROPLUSR_{269F607C-E754-459B-AD70-F15D73EB8D10}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0016-0410-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Italian) 2010
"{90140000-0016-0410-0000-0000000FF1CE}_Office14.PROPLUSR_{269F607C-E754-459B-AD70-F15D73EB8D10}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0018-0410-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Italian) 2010
"{90140000-0018-0410-0000-0000000FF1CE}_Office14.PROPLUSR_{269F607C-E754-459B-AD70-F15D73EB8D10}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0019-0410-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Italian) 2010
"{90140000-0019-0410-0000-0000000FF1CE}_Office14.PROPLUSR_{269F607C-E754-459B-AD70-F15D73EB8D10}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001A-0410-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Italian) 2010
"{90140000-001A-0410-0000-0000000FF1CE}_Office14.PROPLUSR_{269F607C-E754-459B-AD70-F15D73EB8D10}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001B-0410-0000-0000000FF1CE}" = Microsoft Office Word MUI (Italian) 2010
"{90140000-001B-0410-0000-0000000FF1CE}_Office14.PROPLUSR_{269F607C-E754-459B-AD70-F15D73EB8D10}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0407-0000-0000000FF1CE}_Office14.PROPLUSR_{65A2328E-FDFB-4CA3-8582-357EA6825FEA}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{99ACCA38-6DD3-48A8-96AE-A283C9759279}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
"{90140000-001F-040C-0000-0000000FF1CE}_Office14.PROPLUSR_{46298F6A-1E7E-4D4A-B5F5-106A4F0E48C6}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2010
"{90140000-001F-0410-0000-0000000FF1CE}_Office14.PROPLUSR_{C0743197-FFEE-4C19-BAEB-8F7437DC4C8A}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-0410-0000-0000000FF1CE}" = Microsoft Office Proofing (Italian) 2010
"{90140000-002C-0410-0000-0000000FF1CE}_Office14.PROPLUSR_{711BC808-AC64-48E2-82B2-6B53BB802142}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0044-0410-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Italian) 2010
"{90140000-0044-0410-0000-0000000FF1CE}_Office14.PROPLUSR_{269F607C-E754-459B-AD70-F15D73EB8D10}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0410-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Italian) 2010
"{90140000-006E-0410-0000-0000000FF1CE}_Office14.PROPLUSR_{C9172EE7-BDCA-4E57-9217-4C589947298B}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00A1-0410-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Italian) 2010
"{90140000-00A1-0410-0000-0000000FF1CE}_Office14.PROPLUSR_{269F607C-E754-459B-AD70-F15D73EB8D10}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00BA-0410-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Italian) 2010
"{90140000-00BA-0410-0000-0000000FF1CE}_Office14.PROPLUSR_{269F607C-E754-459B-AD70-F15D73EB8D10}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{91140000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{047B0968-E622-4FAA-9B4B-121FA109EDDE}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{a0fe116e-9a8a-466f-aee0-625cb7c207e3}" = Microsoft Visual C++ 2005 Redistributable - KB2467175
"{A2804FE8-4101-48a0-AE1A-575B99014BF4}-Mio-7.50" = MioMore Desktop 7.50
"{AC76BA86-7AD7-1040-7B44-AB0000000001}" = Adobe Reader XI (11.0.05) - Italiano
"{BC61F51E-8AF7-46B9-AF20-B33B5EE81040}" = Nero 7 Essentials
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{EC3B598C-1151-4191-B5B4-A9072ADE6259}_is1" = ZipGenius 6 (6.0.2.1060)
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"AVS Audio Converter_is1" = AVS Audio Converter version 7
"AVS Update Manager_is1" = AVS Update Manager 1.0
"AVS4YOU Software Navigator_is1" = AVS4YOU Software Navigator 1.4
"Canon MG5400 series On-screen Manual" = Canon MG5400 series On-screen Manual
"Canon My Image Garden" = Canon My Image Garden
"Canon My Image Garden Design Files" = Canon My Image Garden Design Files
"Canon_IJ_Network_Scanner_Selector_EX" = Canon IJ Network Scanner Selector EX
"Canon_IJ_Network_UTILITY" = Canon IJ Network Tool
"Canon_IJ_Scan_Utility" = Canon IJ Scan Utility
"CanonMyPrinter" = Canon My Printer
"CanonQuickMenu" = Canon Quick Menu
"CCleaner" = CCleaner (remove only)
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"Easy-WebPrint EX" = Canon Easy-WebPrint EX
"KeyTweak" = KeyTweak - Keyboard Remapper (remove only)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware versione 1.75.0.1300
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile ITA Language Pack" = Microsoft .NET Framework 4 Client Profile - Language Pack (ITA)
"Microsoft Security Client" = Microsoft Security Essentials
"Mozilla Firefox 25.0 (x86 it)" = Mozilla Firefox 25.0 (x86 it)
"Mozilla Thunderbird 24.1.0 (x86 it)" = Mozilla Thunderbird 24.1.0 (x86 it)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"NVIDIA Drivers" = NVIDIA Drivers
"Office14.PROPLUSR" = Microsoft Office Professional Plus 2010
"pdfsam" = pdfsam
"Registrazione utente Canon MG5400 series" = Registrazione utente Canon MG5400 series
"SMSERIAL" = Motorola SM56 Speakerphone Modem
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"TeamViewer 8" = TeamViewer 8
"uTorrent" = µTorrent
"VLC media player" = VLC media player 1.0.3
"WinRAR archiver" = WinRAR archiver
========== Last 20 Event Log Errors ========== [ Application Events ]
Error - 05/11/2013 16:18:15 | Computer Name = pcone-PC | Source = SideBySide | ID = 16842815
Description = Generazione del contesto di attivazione non riuscita per "c:\Program
Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll". Errore nel file manifesto
o dei criteri "c:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll",
riga 3. Il valore "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR"
dell'attributo "version" nell'elemento "assemblyIdentity" non è valido.
Error - 08/11/2013 16:57:04 | Computer Name = pcone-PC | Source = Application Error | ID = 1000
Description = Nome dell'applicazione che ha generato l'errore: Explorer.EXE, versione:
6.1.7601.17567, timestamp: 0x4d6727a7 Nome del modulo che ha generato l'errore:
ntdll.dll, versione: 6.1.7601.18247, timestamp: 0x521ea91c Codice eccezione: 0xc0000374
Offset
errore 0x000c3873 ID processo che ha generato l'errore: 0xa1c Ora di avvio dell'applicazione
che ha generato l'errore: 0x01cedcc3e179fb15 Percorso dell'applicazione che ha generato
l'errore: C:\Windows\Explorer.EXE Percorso del modulo che ha generato l'errore:
C:\Windows\SYSTEM32\ntdll.dll ID segnalazione: 51fce934-48b8-11e3-8237-001fc62d3658
Error - 08/11/2013 16:57:21 | Computer Name = pcone-PC | Source = Application Error | ID = 1000
Description = Nome dell'applicazione che ha generato l'errore: explorer.exe, versione:
6.1.7601.17567, timestamp: 0x4d6727a7 Nome del modulo che ha generato l'errore:
ntdll.dll, versione: 6.1.7601.18247, timestamp: 0x521ea91c Codice eccezione: 0xc0000374
Offset
errore 0x000c3873 ID processo che ha generato l'errore: 0x52c Ora di avvio dell'applicazione
che ha generato l'errore: 0x01cedcc51b25d3d8 Percorso dell'applicazione che ha generato
l'errore: C:\Windows\explorer.exe Percorso del modulo che ha generato l'errore:
C:\Windows\SYSTEM32\ntdll.dll ID segnalazione: 5c330b2a-48b8-11e3-8237-001fc62d3658
Error - 08/11/2013 16:57:45 | Computer Name = pcone-PC | Source = Application Error | ID = 1000
Description = Nome dell'applicazione che ha generato l'errore: explorer.exe, versione:
6.1.7601.17567, timestamp: 0x4d6727a7 Nome del modulo che ha generato l'errore:
ntdll.dll, versione: 6.1.7601.18247, timestamp: 0x521ea91c Codice eccezione: 0xc0000374
Offset
errore 0x000c3873 ID processo che ha generato l'errore: 0x274 Ora di avvio dell'applicazione
che ha generato l'errore: 0x01cedcc5224beb34 Percorso dell'applicazione che ha generato
l'errore: C:\Windows\explorer.exe Percorso del modulo che ha generato l'errore:
C:\Windows\SYSTEM32\ntdll.dll ID segnalazione: 6a5039f2-48b8-11e3-8237-001fc62d3658
Error - 08/11/2013 16:58:03 | Computer Name = pcone-PC | Source = Application Error | ID = 1000
Description = Nome dell'applicazione che ha generato l'errore: explorer.exe, versione:
6.1.7601.17567, timestamp: 0x4d6727a7 Nome del modulo che ha generato l'errore:
ntdll.dll, versione: 6.1.7601.18247, timestamp: 0x521ea91c Codice eccezione: 0xc0000374
Offset
errore 0x000c3873 ID processo che ha generato l'errore: 0xa6c Ora di avvio dell'applicazione
che ha generato l'errore: 0x01cedcc52fef2d43 Percorso dell'applicazione che ha generato
l'errore: C:\Windows\explorer.exe Percorso del modulo che ha generato l'errore:
C:\Windows\SYSTEM32\ntdll.dll ID segnalazione: 753bf2f2-48b8-11e3-8237-001fc62d3658
Error - 08/11/2013 16:58:27 | Computer Name = pcone-PC | Source = Application Error | ID = 1000
Description = Nome dell'applicazione che ha generato l'errore: explorer.exe, versione:
6.1.7601.17567, timestamp: 0x4d6727a7 Nome del modulo che ha generato l'errore:
ntdll.dll, versione: 6.1.7601.18247, timestamp: 0x521ea91c Codice eccezione: 0xc0000374
Offset
errore 0x000c3873 ID processo che ha generato l'errore: 0x4c0 Ora di avvio dell'applicazione
che ha generato l'errore: 0x01cedcc53936f41d Percorso dell'applicazione che ha generato
l'errore: C:\Windows\explorer.exe Percorso del modulo che ha generato l'errore:
C:\Windows\SYSTEM32\ntdll.dll ID segnalazione: 831ed6ff-48b8-11e3-8237-001fc62d3658
Error - 09/11/2013 19:06:30 | Computer Name = pcone-PC | Source = MsiInstaller | ID = 11721
Description =
Error - 10/11/2013 14:11:26 | Computer Name = pcone-PC | Source = Application Error | ID = 1000
Description = Nome dell'applicazione che ha generato l'errore: ccleaner.exe, versione:
1.40.0.520, timestamp: 0x4642f72d Nome del modulo che ha generato l'errore: ntdll.dll,
versione: 6.1.7601.18247, timestamp: 0x521ea91c Codice eccezione: 0xc0000005 Offset
errore 0x000a266f ID processo che ha generato l'errore: 0xb6c Ora di avvio dell'applicazione
che ha generato l'errore: 0x01cede4039cc5e71 Percorso dell'applicazione che ha generato
l'errore: C:\Program Files\CCleaner\ccleaner.exe Percorso del modulo che ha generato
l'errore: C:\Windows\SYSTEM32\ntdll.dll ID segnalazione: 83670a92-4a33-11e3-bc83-001fc62d3658
Error - 10/11/2013 14:11:30 | Computer Name = pcone-PC | Source = Application Error | ID = 1000
Description = Nome dell'applicazione che ha generato l'errore: ccleaner.exe, versione:
1.40.0.520, timestamp: 0x4642f72d Nome del modulo che ha generato l'errore: ntdll.dll,
versione: 6.1.7601.18247, timestamp: 0x521ea91c Codice eccezione: 0xc0000005 Offset
errore 0x00024d4c ID processo che ha generato l'errore: 0xb6c Ora di avvio dell'applicazione
che ha generato l'errore: 0x01cede4039cc5e71 Percorso dell'applicazione che ha generato
l'errore: C:\Program Files\CCleaner\ccleaner.exe Percorso del modulo che ha generato
l'errore: C:\Windows\SYSTEM32\ntdll.dll ID segnalazione: 85c6d568-4a33-11e3-bc83-001fc62d3658
Error - 10/11/2013 19:06:11 | Computer Name = pcone-PC | Source = Application Error | ID = 1000
Description = Nome dell'applicazione che ha generato l'errore: ccleaner.exe, versione:
1.40.0.520, timestamp: 0x4642f72d Nome del modulo che ha generato l'errore: MSVBVM60.DLL,
versione: 6.0.98.15, timestamp: 0x4a5bda6c Codice eccezione: 0xc0000005 Offset errore
0x000ce526 ID processo che ha generato l'errore: 0x63c Ora di avvio dell'applicazione
che ha generato l'errore: 0x01cede5cae805f1d Percorso dell'applicazione che ha generato
l'errore: C:\Program Files\CCleaner\ccleaner.exe Percorso del modulo che ha generato
l'errore: C:\Windows\system32\MSVBVM60.DLL ID segnalazione: b052e1af-4a5c-11e3-afb0-001fc62d3658
[ System Events ]
Error - 08/11/2013 16:59:06 | Computer Name = pcone-PC | Source = Disk | ID = 262155
Description = Il driver ha rilevato un errore del controller su \Device\Harddisk1\DR2.
Error - 09/11/2013 06:30:33 | Computer Name = pcone-PC | Source = Service Control Manager | ID = 7000
Description = Il servizio adfs non è stato avviato per il seguente errore: %%2
Error - 09/11/2013 09:13:26 | Computer Name = pcone-PC | Source = Service Control Manager | ID = 7000
Description = Il servizio adfs non è stato avviato per il seguente errore: %%2
Error - 09/11/2013 15:52:19 | Computer Name = pcone-PC | Source = Service Control Manager | ID = 7000
Description = Il servizio adfs non è stato avviato per il seguente errore: %%2
Error - 09/11/2013 19:37:54 | Computer Name = pcone-PC | Source = Service Control Manager | ID = 7031
Description = Il servizio Update qualitink è stato arrestato in modo imprevisto.
Questo problema si è verificato 1 volta/e. Le seguenti azioni di correzione saranno
eseguite tra 5000 millisecondi: Riavvia il servizio.
Error - 10/11/2013 08:46:22 | Computer Name = pcone-PC | Source = Service Control Manager | ID = 7000
Description = Il servizio adfs non è stato avviato per il seguente errore: %%2
Error - 10/11/2013 13:51:50 | Computer Name = pcone-PC | Source = Service Control Manager | ID = 7000
Description = Il servizio adfs non è stato avviato per il seguente errore: %%2
Error - 10/11/2013 15:28:20 | Computer Name = pcone-PC | Source = Service Control Manager | ID = 7000
Description = Il servizio adfs non è stato avviato per il seguente errore: %%2
Error - 11/11/2013 15:08:31 | Computer Name = pcone-PC | Source = Service Control Manager | ID = 7000
Description = Il servizio adfs non è stato avviato per il seguente errore: %%2
Error - 11/11/2013 17:17:47 | Computer Name = pcone-PC | Source = Service Control Manager | ID = 7000
Description = Il servizio adfs non è stato avviato per il seguente errore: %%2
< End of report >
********************************************************************************************************
ringrazio, saluto ed attendo notizie in merito