Benvenuto Ospite Cerca | Topic Attivi | Utenti | | Log In | Registra

Aiutamici Forum » FORUM - Istruzioni e Guide » Sicurezza VIRUS » Controllo LOG

Controllo LOG Opzioni
Topic Precedente · Topic Sucessivo
effeelle2
Inviato: Sunday, December 22, 2013 6:40:02 PM

Rank: AiutAmico

Iscritto dal : 11/26/2009
Posts: 86
mi esce all'inizio..

Grazie

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13.07.11, on 22/12/2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\Programmi\Microsoft Security Client\MsMpEng.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\spoolsv.exe
D:\WINDOWS\Explorer.EXE
D:\WINDOWS\system32\hkcmd.exe
D:\WINDOWS\system32\igfxpers.exe
D:\WINDOWS\SOUNDMAN.EXE
D:\Programmi\Microsoft Security Client\msseces.exe
D:\Programmi\File comuni\Java\Java Update\jusched.exe
D:\WINDOWS\system32\ctfmon.exe
D:\WINDOWS\system32\rundll32.exe
D:\WINDOWS\system32\svchost.exe
D:\Programmi\BetterBrowse\bin\utilBetterBrowse.exe
D:\WINDOWS\system32\wuauclt.exe
D:\WINDOWS\system32\msiexec.exe
D:\Documents and Settings\Giovanni\Documenti\Downloads\SoftonicDownloader_per_hijackthis.exe
D:\Documents and Settings\Giovanni\Desktop\HijackThis.exe
D:\Programmi\Google\Chrome\Application\chrome.exe
D:\Programmi\Google\Chrome\Application\chrome.exe
D:\Programmi\Google\Chrome\Application\chrome.exe
D:\Programmi\Google\Chrome\Application\chrome.exe
D:\Programmi\Google\Chrome\Application\chrome.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://it.msn.com/?pc=UP22&ocid=UP22DHP
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
O2 - BHO: CrossriderApp0043628 - {11111111-1111-1111-1111-110411361128} - D:\Programmi\weDownload Manager Pro\weDownload Manager Pro-bho.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Programmi\Java\jre7\bin\ssv.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - D:\Programmi\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Programmi\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [igfxtray] D:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] D:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] D:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [MSC] "D:\Programmi\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [EPSON Stylus DX4800 Series] D:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE /F "D:\WINDOWS\TEMP\E_S12F.tmp" /EF "HKLM"
O4 - HKLM\..\Run: [mobilegeni daemon] D:\Programmi\Mobogenie\DaemonProcess.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "D:\Programmi\File comuni\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] D:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [NextLive] D:\WINDOWS\system32\rundll32.exe "D:\Documents and Settings\Giovanni\Dati applicazioni\newnext.me\nengine.dll",EntryPoint -m l
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-19\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO DI RETE')
O4 - HKUS\S-1-5-20\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SERVIZIO DI RETE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user')
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://D:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - D:\Programmi\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - D:\Programmi\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - D:\PROGRA~1\FILECO~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Precaricatore Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - D:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Daemon di cache delle categorie di componenti - {8C7461EF-2B13-11d2-BE35-3078302C2030} - D:\WINDOWS\system32\browseui.dll
O23 - Service: Util BetterBrowse - Unknown owner - D:\Programmi\BetterBrowse\bin\utilBetterBrowse.exe

--
End of file - 5654 bytes
Torna in alto
 
Sponsor
Inviato: Sunday, December 22, 2013 6:40:02 PM

 
Torna in alto
 
shapiro
Inviato: Sunday, December 22, 2013 6:54:22 PM

Rank: AiutAmico

Iscritto dal : 8/24/2008
Posts: 4,164
hai delle infezioni da adware ed altro prova a fare queste scansioni

scarica adwcleaner

clicca su scan e poi su ''clean'' conferma con OK le varie finestre che ti compariranno.

alla fine clicca su Report e allega il contenuto

Scarica e installa malwarebytes (scegli free version)
Aggiornalo: clicca sulla scheda "aggiornamenti" => "controlla aggiornamenti"
Esegui una "scansione completa" (seleziona l'opzione)
A scansione completa, fai clic su OK => Mostra i Risultati.
Assicurarti che tutto sia selezionato e clicca clic su Rimuovi selezionati.
Se ti chiede di riavviare, riavvia per completare il processo di pulizia.
Posta il rapporto .
Torna in alto
 
effeelle2
Inviato: Sunday, December 22, 2013 7:35:33 PM

Rank: AiutAmico

Iscritto dal : 11/26/2009
Posts: 86
in più dice file mancante qt4core.dll
all'accensione.
non mi fa installare programmi tipo spyhunter..
poi esce a sinistra una cosa... eccola:
WEB
Torna in alto
 
effeelle2
Inviato: Sunday, December 22, 2013 7:55:10 PM

Rank: AiutAmico

Iscritto dal : 11/26/2009
Posts: 86
# AdwCleaner v3.015 - Report created 22/12/2013 at 19:48:30
# Updated 10/12/2013 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Giovanni - GOLD
# Running from : D:\Documents and Settings\Giovanni\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : Update BetterBrowse
[#] Service Deleted : Util BetterBrowse

***** [ Files / Folders ] *****

Folder Deleted : D:\Documents and Settings\All Users\Dati applicazioni\ParetoLogic
Folder Deleted : D:\Programmi\weDownload Manager Pro
Folder Deleted : D:\Documents and Settings\Giovanni\Dati applicazioni\DriverCure
Folder Deleted : D:\Documents and Settings\Giovanni\Dati applicazioni\ParetoLogic
Folder Deleted : D:\Documents and Settings\Giovanni\Dati applicazioni\Mozilla\Firefox\Profiles\juryeluh.default\Extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com
File Deleted : D:\Programmi\Mozilla Firefox\.autoreg
File Deleted : D:\Documents and Settings\Giovanni\Dati applicazioni\Mozilla\Firefox\Profiles\juryeluh.default\searchplugins\bingp.xml
File Deleted : D:\WINDOWS\Tasks\weDownload Manager Pro-chromeinstaller.job
File Deleted : D:\WINDOWS\Tasks\weDownload Manager Pro-codedownloader.job
File Deleted : D:\WINDOWS\Tasks\weDownload Manager Pro-enabler.job
File Deleted : D:\WINDOWS\Tasks\weDownload Manager Pro-firefoxinstaller.job
File Deleted : D:\WINDOWS\Tasks\weDownload Manager Pro-updater.job

***** [ Shortcuts ] *****


***** [ Registry ] *****

Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [NextLive]
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WajamUpdater
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0043628.BHO
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0043628.BHO.1
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0043628.Sandbox
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0043628.Sandbox.1
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110411361128}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220422362228}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455365528}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466366628}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440444364428}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411361128}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110411361128}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2ff0943e-3ec4-4e3a-94c4-b7a2d3650ff6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c325bb22-92cd-42c3-99e5-6cb47d88377c}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c93b67c2-12bf-469d-9b8c-a20a807e7d99}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{d71aadf3-fa71-478f-bd7a-c531dd46acb2}
Key Deleted : HKCU\Software\installedbrowserextensions
Key Deleted : HKCU\Software\ParetoLogic
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\WEDLMNGR
Key Deleted : HKCU\Software\weDownload Manager Pro
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\weDownload Manager Pro
Key Deleted : HKLM\Software\ParetoLogic
Key Deleted : HKLM\Software\weDownload Manager Pro
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\weDownload Manager Pro

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702


-\\ Mozilla Firefox v3.6.18 (it)

[ File : D:\Documents and Settings\Giovanni\Dati applicazioni\Mozilla\Firefox\Profiles\juryeluh.default\prefs.js ]


-\\ Google Chrome v31.0.1650.63

[ File : D:\Documents and Settings\Giovanni\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [5625 octets] - [22/12/2013 19:43:25]
AdwCleaner[S0].txt - [4861 octets] - [22/12/2013 19:48:30]

########## EOF - D:\AdwCleaner\AdwCleaner[S0].txt - [4921 octets] ##########
Torna in alto
 
shapiro
Inviato: Sunday, December 22, 2013 7:58:33 PM

Rank: AiutAmico

Iscritto dal : 8/24/2008
Posts: 4,164



dovresti allegarmi anche la scansione con otl
Torna in alto
 
effeelle2
Inviato: Sunday, December 22, 2013 8:11:07 PM

Rank: AiutAmico

Iscritto dal : 11/26/2009
Posts: 86
OTL?
cos'è?
sta finendo quella con Malwarebytes..
Torna in alto
 
shapiro
Inviato: Sunday, December 22, 2013 8:25:40 PM

Rank: AiutAmico

Iscritto dal : 8/24/2008
Posts: 4,164


ho sbagliato Drool

posta il log della scansione con mbam
Torna in alto
 
effeelle2
Inviato: Sunday, December 22, 2013 8:55:02 PM

Rank: AiutAmico

Iscritto dal : 11/26/2009
Posts: 86
cmq l'ho cercato nei vostri programmi e l'ho trovato..
se serve eccolo:

OTL Extras logfile created on: 22/12/2013 20.24.14 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = D:\Documents and Settings\Giovanni\Documenti\Downloads
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000410 | Country: Italia | Language: ITA | Date Format: dd/MM/yyyy

1015,48 Mb Total Physical Memory | 347,78 Mb Available Physical Memory | 34,25% Memory free
2,39 Gb Paging File | 1,76 Gb Available in Paging File | 73,83% Paging File free
Paging file location(s): D:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = D: | %SystemRoot% = D:\WINDOWS | %ProgramFiles% = D:\Programmi
Drive C: | 100,00 Mb Total Space | 61,04 Mb Free Space | 61,04% Space Free | Partition Type: NTFS
Drive D: | 38,96 Gb Total Space | 27,11 Gb Free Space | 69,57% Space Free | Partition Type: NTFS
Drive E: | 72,72 Gb Total Space | 51,77 Gb Free Space | 71,19% Space Free | Partition Type: NTFS

Computer Name: GOLD | User Name: Giovanni | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "D:\Programmi\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "D:\Programmi\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1542:TCP" = 1542:TCP:*:Enabled:Realtek WPS TCP Prot
"1542:UDP" = 1542:UDP:*:Enabled:Realtek WPS UDP Prot
"53:UDP" = 53:UDP:*:Enabled:Realtek AP UDP Prot
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"D:\Programmi\REALTEK\11n USB Wireless LAN Utility\RtWLan.exe" = D:\Programmi\REALTEK\11n USB Wireless LAN Utility\RtWLan.exe:*:Enabled:RtWlan
"D:\Programmi\Skype\Phone\Skype.exe" = D:\Programmi\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0CD47142-BA4F-46B0-AA92-2675864928B8}" = Microsoft Security Client
"{138A4072-9E64-46BD-B5F9-DB2BB395391F}" = LWS VideoEffects
"{15634701-BACE-4449-8B25-1567DA8C9FD3}" = CameraHelperMsi
"{1651216E-E7AD-4250-92A1-FB8ED61391C9}" = LWS Help_main
"{1798D459-6B8B-474B-868D-1229EADA3B95}" = Adobe AIR
"{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
"{1A15507A-8551-4626-915D-3D5FA095CC1B}" = Corel Paint Shop Pro X
"{26A24AE4-039D-4CA4-87B4-2F83217045FF}" = Java 7 Update 45
"{350C9410-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4E209D4D-E648-477D-8FCB-1863D901BFBC}" = Office Update
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.1
"{55CA4086-0D2C-30E3-A7B5-C76BA737CECE}" = Microsoft .NET Framework 3.5 Service Pack 1 Language Pack - ITA
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{842F9881-E181-30B3-A152-008D61433274}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - ITA
"{86BA3130-5938-3192-BBCF-6B0A2D86FA58}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - ITA
"{8937D274-C281-42E4-8CDB-A0B2DF979189}" = LWS Webcam Software
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A708DD8-A5E6-11D4-A706-000629E95E20}" = Intel(R) Extreme Graphics 2 Driver
"{90120000-0010-0410-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Italian) 12
"{90120000-0016-0000-0000-0000000FF1CE}" = Microsoft Office Excel 2007
"{90120000-0016-0000-0000-0000000FF1CE}_EXCEL_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0016-0410-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Italian) 2007
"{90120000-0016-0410-0000-0000000FF1CE}_EXCEL_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0000-0000-0000000FF1CE}" = Microsoft Office Word 2007
"{90120000-001B-0000-0000-0000000FF1CE}_WORD_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0410-0000-0000000FF1CE}" = Microsoft Office Word MUI (Italian) 2007
"{90120000-001B-0410-0000-0000000FF1CE}_WORD_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_EXCEL_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0407-0000-0000000FF1CE}_WORD_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_EXCEL_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}_WORD_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_EXCEL_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-040C-0000-0000000FF1CE}_WORD_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007
"{90120000-001F-0410-0000-0000000FF1CE}_EXCEL_{A23BFC95-4A73-410F-9248-4C2B48E38C49}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0410-0000-0000000FF1CE}_WORD_{A23BFC95-4A73-410F-9248-4C2B48E38C49}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-002C-0410-0000-0000000FF1CE}" = Microsoft Office Proofing (Italian) 2007
"{90120000-006E-0410-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Italian) 2007
"{90120000-006E-0410-0000-0000000FF1CE}_EXCEL_{C0C7E58F-D0A1-4102-855B-0B7AA2E8F1C1}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-006E-0410-0000-0000000FF1CE}_WORD_{C0C7E58F-D0A1-4102-855B-0B7AA2E8F1C1}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1040-7B44-AB0000000001}" = Adobe Reader XI (11.0.05) - Italiano
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 Service Pack 1
"{D40EB009-0499-459c-A8AF-C9C110766215}" = Software della webcam Logitech
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Ashampoo Burning Studio 2009_is1" = Ashampoo Burning Studio 2009
"AVS Slideshow Maker Beta_is1" = AVS Slideshow Maker
"AVS Update Manager_is1" = AVS Update Manager 1.0
"BetterBrowse" = BetterBrowse
"CCleaner" = CCleaner
"EPSON Printer and Utilities" = Software per stampante EPSON
"EPSON Scanner" = EPSON Scan
"EXCEL" = Microsoft Office Excel 2007
"Google Chrome" = Google Chrome
"ie8" = Windows Internet Explorer 8
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware versione 1.75.0.1300
"Microsoft .NET Framework 3.5 Service Pack 1" = Microsoft .NET Framework 3.5 Service Pack 1
"Microsoft .NET Framework 3.5 Service Pack 1 Language Pack - ITA" = Microsoft .NET Framework 3.5 Service Pack 1 Language Pack - ITA
"Microsoft Security Client" = Microsoft Security Essentials
"Mozilla Firefox (3.6.18)" = Mozilla Firefox (3.6.18)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"Office Update" = Office Update
"VLC media player" = VLC media player 2.1.2
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"WinRAR archiver" = WinRAR gestione archivi
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"WORD" = Microsoft Office Word 2007
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0

========== Last 20 Event Log Errors ==========

[ System Events ]
Error - 13/12/2013 8.23.55 | Computer Name = GOLD | Source = atapi | ID = 262153
Description = La periferica \Device\Ide\IdePort1 non ha risposto entro il tempo
di attesa.

Error - 13/12/2013 8.24.05 | Computer Name = GOLD | Source = atapi | ID = 262153
Description = La periferica \Device\Ide\IdePort1 non ha risposto entro il tempo
di attesa.

Error - 13/12/2013 8.24.45 | Computer Name = GOLD | Source = atapi | ID = 262153
Description = La periferica \Device\Ide\IdePort1 non ha risposto entro il tempo
di attesa.

Error - 13/12/2013 8.24.55 | Computer Name = GOLD | Source = atapi | ID = 262153
Description = La periferica \Device\Ide\IdePort1 non ha risposto entro il tempo
di attesa.

Error - 13/12/2013 8.25.05 | Computer Name = GOLD | Source = Cdrom | ID = 262155
Description = Il driver ha rilevato un errore del controller su \Device\CdRom0.

Error - 13/12/2013 8.25.14 | Computer Name = GOLD | Source = Cdrom | ID = 262155
Description = Il driver ha rilevato un errore del controller su \Device\CdRom0.

Error - 13/12/2013 8.25.23 | Computer Name = GOLD | Source = Cdrom | ID = 262155
Description = Il driver ha rilevato un errore del controller su \Device\CdRom0.

Error - 13/12/2013 8.25.33 | Computer Name = GOLD | Source = Cdrom | ID = 262155
Description = Il driver ha rilevato un errore del controller su \Device\CdRom0.

Error - 13/12/2013 8.25.40 | Computer Name = GOLD | Source = Cdrom | ID = 262155
Description = Il driver ha rilevato un errore del controller su \Device\CdRom0.

Error - 13/12/2013 10.32.18 | Computer Name = GOLD | Source = Windows Update Agent | ID = 20
Description = Errore di installazione. Non è stato possibile installare il seguente
aggiornamento. Errore 0x8007f0f4: Aggiornamento della protezione per Windows XP
(KB2686509).


< End of report >
Torna in alto
 
effeelle2
Inviato: Sunday, December 22, 2013 8:55:48 PM

Rank: AiutAmico

Iscritto dal : 11/26/2009
Posts: 86
PS E' proprio noiosa la MASCHERA a sinistra del browser..

d'oh!
Torna in alto
 
effeelle2
Inviato: Sunday, December 22, 2013 8:57:20 PM

Rank: AiutAmico

Iscritto dal : 11/26/2009
Posts: 86
TROVATO, era BetterBrowser :-D
Torna in alto
 
shapiro
Inviato: Sunday, December 22, 2013 8:59:52 PM

Rank: AiutAmico

Iscritto dal : 8/24/2008
Posts: 4,164


gia' che lo hai usato allega anche otl.txt e la scansione con malwarebytes

dimmi anche quale dei due programmi hai usato per primo, mi fai sudare di meno Sick
Torna in alto
 
effeelle2
Inviato: Sunday, December 22, 2013 9:19:06 PM

Rank: AiutAmico

Iscritto dal : 11/26/2009
Posts: 86
Scusa :-P
allora ho usato prima hijackthis e ho postato il log
poi come hai detto tu:
1 ADWCLEANER
2 OTL
3 Malwarebytes a.m.

postando in sequenza i log.. ecco quello di mbam:

Malwarebytes Anti-Malware (Prova) 1.75.0.1300
www.malwarebytes.org

Versione database: v2013.12.22.04

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Giovanni :: GOLD [amministratore]

Protezione: Disattivata

22/12/2013 19.56.05
mbam-log-2013-12-22 (19-56-05).txt

Tipo di scansione: Scansione completa (C:\|D:\|E:\|)
Opzioni di scansione attive: Memoria | Esecuzione automatica | Registro | File di sistema | Euristica/Extra | Euristica/Shuriken | PUP | PUM
Opzioni di scansione disattivate: P2P
Elementi esaminati: 233502
Tempo impiegato: 1 ore, 13 minuti, 6 secondi

Processi rilevati in memoria: 0
(non sono stati rilevati elementi nocivi)

Moduli di memoria rilevati: 0
(non sono stati rilevati elementi nocivi)

Chiavi di registro rilevate: 0
(non sono stati rilevati elementi nocivi)

Valori di registro rilevati: 0
(non sono stati rilevati elementi nocivi)

Voci rilevate nei dati di registro: 2
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowHelp (PUM.Hijack.StartMenu) -> Cattivo: (0) Buono: (1) -> Spostato in quarantena e riparato con successo.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoSMHelp (PUM.Hijack.Help) -> Cattivo: (1) Buono: (0) -> Spostato in quarantena e riparato con successo.

Cartelle rilevate: 2
D:\Documents and Settings\Giovanni\Dati applicazioni\newnext.me (PUP.Optional.NextLive.A) -> Spostato in quarantena ed eliminato con successo.
D:\Documents and Settings\Giovanni\Dati applicazioni\newnext.me\cache (PUP.Optional.NextLive.A) -> Spostato in quarantena ed eliminato con successo.

File rilevati: 29
D:\AdwCleaner\Quarantine\D\Programmi\weDownload Manager Pro\weDownload Manager Pro-bg.exe.vir (PUP.Optional.WeDownload.A) -> Spostato in quarantena ed eliminato con successo.
D:\AdwCleaner\Quarantine\D\Programmi\weDownload Manager Pro\weDownload Manager Pro-bho.dll.vir (PUP.Optional.WeDownload.A) -> Spostato in quarantena ed eliminato con successo.
D:\AdwCleaner\Quarantine\D\Programmi\weDownload Manager Pro\weDownload Manager Pro-buttonutil.exe.vir (PUP.Optional.WeDownload.A) -> Spostato in quarantena ed eliminato con successo.
D:\AdwCleaner\Quarantine\D\Programmi\weDownload Manager Pro\weDownload Manager Pro-chromeinstaller.exe.vir (PUP.Optional.WeDownload.A) -> Spostato in quarantena ed eliminato con successo.
D:\AdwCleaner\Quarantine\D\Programmi\weDownload Manager Pro\weDownload Manager Pro-codedownloader.exe.vir (PUP.Optional.WeDownload.A) -> Spostato in quarantena ed eliminato con successo.
D:\AdwCleaner\Quarantine\D\Programmi\weDownload Manager Pro\weDownload Manager Pro-enabler.exe.vir (PUP.Optional.WeDownload.A) -> Spostato in quarantena ed eliminato con successo.
D:\AdwCleaner\Quarantine\D\Programmi\weDownload Manager Pro\weDownload Manager Pro-firefoxinstaller.exe.vir (PUP.Optional.WeDownload.A) -> Spostato in quarantena ed eliminato con successo.
D:\AdwCleaner\Quarantine\D\Programmi\weDownload Manager Pro\weDownload Manager Pro-updater.exe.vir (PUP.Optional.WeDownload.A) -> Spostato in quarantena ed eliminato con successo.
D:\Documents and Settings\Giovanni\Desktop\Crack Windiws\crack x windows 8\Windows 8 Pro Final Activator.exe (Trojan.Dropper.SFX) -> Spostato in quarantena ed eliminato con successo.
D:\Documents and Settings\Giovanni\Desktop\Crack Windiws\crack x windows 8\Attivatore della Personalizzazione\WPE.exe (Trojan.Dropper.SFX) -> Spostato in quarantena ed eliminato con successo.
D:\Documents and Settings\Giovanni\Impostazioni locali\Temp\sevcgyqbysux\parent.txt (PUP.Optional.BundleInstaller.A) -> Spostato in quarantena ed eliminato con successo.
D:\Documents and Settings\Giovanni\Impostazioni locali\Temp\sevcgyqbysux\software\wajam_download.exe (PUP.Optional.Wajam) -> Spostato in quarantena ed eliminato con successo.
D:\System Volume Information\_restore{7A5C9A95-6128-4AD6-9F5F-F4495F8099AA}\RP11\A0002882.exe (PUP.RiskwareTool.CK) -> Spostato in quarantena ed eliminato con successo.
D:\System Volume Information\_restore{7A5C9A95-6128-4AD6-9F5F-F4495F8099AA}\RP22\A0003757.exe (PUP.Optional.InstallCore.A) -> Spostato in quarantena ed eliminato con successo.
D:\System Volume Information\_restore{7A5C9A95-6128-4AD6-9F5F-F4495F8099AA}\RP66\A0012757.dll (PUP.Optional.Wajam) -> Spostato in quarantena ed eliminato con successo.
D:\System Volume Information\_restore{7A5C9A95-6128-4AD6-9F5F-F4495F8099AA}\RP66\A0012758.exe (PUP.Optional.Wajam) -> Spostato in quarantena ed eliminato con successo.
D:\System Volume Information\_restore{7A5C9A95-6128-4AD6-9F5F-F4495F8099AA}\RP67\A0012905.exe (PUP.Optional.WeDownload.A) -> Spostato in quarantena ed eliminato con successo.
D:\System Volume Information\_restore{7A5C9A95-6128-4AD6-9F5F-F4495F8099AA}\RP67\A0012906.dll (PUP.Optional.WeDownload.A) -> Spostato in quarantena ed eliminato con successo.
D:\System Volume Information\_restore{7A5C9A95-6128-4AD6-9F5F-F4495F8099AA}\RP67\A0012908.exe (PUP.Optional.WeDownload.A) -> Spostato in quarantena ed eliminato con successo.
D:\System Volume Information\_restore{7A5C9A95-6128-4AD6-9F5F-F4495F8099AA}\RP67\A0012909.exe (PUP.Optional.WeDownload.A) -> Spostato in quarantena ed eliminato con successo.
D:\System Volume Information\_restore{7A5C9A95-6128-4AD6-9F5F-F4495F8099AA}\RP67\A0012910.exe (PUP.Optional.WeDownload.A) -> Spostato in quarantena ed eliminato con successo.
D:\System Volume Information\_restore{7A5C9A95-6128-4AD6-9F5F-F4495F8099AA}\RP67\A0012911.exe (PUP.Optional.WeDownload.A) -> Spostato in quarantena ed eliminato con successo.
D:\System Volume Information\_restore{7A5C9A95-6128-4AD6-9F5F-F4495F8099AA}\RP67\A0012912.exe (PUP.Optional.WeDownload.A) -> Spostato in quarantena ed eliminato con successo.
D:\System Volume Information\_restore{7A5C9A95-6128-4AD6-9F5F-F4495F8099AA}\RP67\A0012914.exe (PUP.Optional.WeDownload.A) -> Spostato in quarantena ed eliminato con successo.
D:\System Volume Information\_restore{7A5C9A95-6128-4AD6-9F5F-F4495F8099AA}\RP67\A0013099.exe (Trojan.Dropper.SFX) -> Spostato in quarantena ed eliminato con successo.
D:\System Volume Information\_restore{7A5C9A95-6128-4AD6-9F5F-F4495F8099AA}\RP67\A0013100.exe (Trojan.Dropper.SFX) -> Spostato in quarantena ed eliminato con successo.
D:\Documents and Settings\Giovanni\Dati applicazioni\newnext.me\nengine.cookie (PUP.Optional.NextLive.A) -> Spostato in quarantena ed eliminato con successo.
D:\Documents and Settings\Giovanni\Dati applicazioni\newnext.me\nengine.dll (PUP.Optional.NextLive.A) -> Spostato in quarantena ed eliminato con successo.
D:\Documents and Settings\Giovanni\Dati applicazioni\newnext.me\cache\spark.bin (PUP.Optional.NextLive.A) -> Spostato in quarantena ed eliminato con successo.

(fine)
Torna in alto
 
effeelle2
Inviato: Sunday, December 22, 2013 9:21:07 PM

Rank: AiutAmico

Iscritto dal : 11/26/2009
Posts: 86
ultimo c'è sembre questa cosa all'avvio di Windows:

Manca qtcore4.dll ecc......

:-(

Grazie
Torna in alto
 
shapiro
Inviato: Sunday, December 22, 2013 9:36:02 PM

Rank: AiutAmico

Iscritto dal : 8/24/2008
Posts: 4,164



fai una nuova scansione con otl e allega il log otl.txt
Torna in alto
 
effeelle2
Inviato: Sunday, December 22, 2013 10:13:35 PM

Rank: AiutAmico

Iscritto dal : 11/26/2009
Posts: 86
OTL logfile created on: 22/12/2013 21.50.23 - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = D:\Documents and Settings\Giovanni\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000410 | Country: Italia | Language: ITA | Date Format: dd/MM/yyyy

1015,48 Mb Total Physical Memory | 422,05 Mb Available Physical Memory | 41,56% Memory free
2,39 Gb Paging File | 1,90 Gb Available in Paging File | 79,42% Paging File free
Paging file location(s): D:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = D: | %SystemRoot% = D:\WINDOWS | %ProgramFiles% = D:\Programmi
Drive C: | 100,00 Mb Total Space | 61,04 Mb Free Space | 61,04% Space Free | Partition Type: NTFS
Drive D: | 38,96 Gb Total Space | 27,09 Gb Free Space | 69,52% Space Free | Partition Type: NTFS
Drive E: | 72,72 Gb Total Space | 51,77 Gb Free Space | 71,19% Space Free | Partition Type: NTFS

Computer Name: GOLD | User Name: Giovanni | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/12/22 20.23.45 | 000,602,112 | ---- | M] (OldTimer Tools) -- D:\Documents and Settings\Giovanni\Desktop\OTL.exe
PRC - [2013/12/04 03.48.06 | 000,863,184 | ---- | M] (Google Inc.) -- D:\Programmi\Google\Chrome\Application\chrome.exe
PRC - [2013/10/23 15.01.10 | 000,022,208 | ---- | M] (Microsoft Corporation) -- D:\Programmi\Microsoft Security Client\MsMpEng.exe
PRC - [2013/10/23 14.55.28 | 000,948,440 | ---- | M] (Microsoft Corporation) -- D:\Programmi\Microsoft Security Client\msseces.exe
PRC - [2013/07/02 09.16.26 | 000,254,336 | ---- | M] (Oracle Corporation) -- D:\Programmi\File comuni\Java\Java Update\jusched.exe
PRC - [2013/04/04 14.50.32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) -- D:\Programmi\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2013/04/04 14.50.32 | 000,532,040 | ---- | M] (Malwarebytes Corporation) -- D:\Programmi\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2013/04/04 14.50.32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) -- D:\Programmi\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2009/12/09 13.08.33 | 001,504,256 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\explorer.exe
PRC - [2007/04/16 15.28.22 | 000,577,536 | ---- | M] (Realtek Semiconductor Corp.) -- D:\WINDOWS\soundman.exe


========== Modules (No Company Name) ==========

MOD - [2013/12/04 03.48.04 | 000,399,312 | ---- | M] () -- D:\Programmi\Google\Chrome\Application\31.0.1650.63\ppgooglenaclpluginchrome.dll
MOD - [2013/12/04 03.48.02 | 004,055,504 | ---- | M] () -- D:\Programmi\Google\Chrome\Application\31.0.1650.63\pdf.dll
MOD - [2013/12/04 03.47.08 | 001,619,408 | ---- | M] () -- D:\Programmi\Google\Chrome\Application\31.0.1650.63\ffmpegsumo.dll
MOD - [2009/02/12 07.30.02 | 000,190,976 | ---- | M] () -- D:\WINDOWS\system32\WgaLogon.dll
MOD - [2008/04/14 12.00.00 | 000,014,336 | ---- | M] () -- D:\WINDOWS\system32\msdmo.dll


========== Services (SafeList) ==========

SRV - [2013/12/21 16.48.50 | 000,182,696 | ---- | M] (Oracle Corporation) [Disabled | Stopped] -- D:\Programmi\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2013/10/23 15.01.10 | 000,022,208 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\Programmi\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV - [2013/10/09 10.58.16 | 003,275,136 | ---- | M] (Skype Technologies S.A.) [Disabled | Stopped] -- D:\Documents and Settings\All Users\Dati applicazioni\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service)
SRV - [2013/04/04 14.50.32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- D:\Programmi\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2013/04/04 14.50.32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- D:\Programmi\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2013/01/08 12.55.20 | 000,161,536 | R--- | M] (Skype Technologies) [Disabled | Stopped] -- D:\Programmi\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2011/07/20 05.18.24 | 000,440,696 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- D:\Programmi\File comuni\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv)
SRV - [2010/05/07 18.47.32 | 000,162,648 | ---- | M] (Logitech Inc.) [Disabled | Stopped] -- D:\Programmi\File comuni\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv)
SRV - [2006/10/26 13.03.08 | 000,145,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- D:\Programmi\File comuni\Microsoft Shared\Source Engine\OSE.EXE -- (ose)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\RTL8192su.sys -- (RTL8192su)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - [2013/04/04 14.50.32 | 000,022,856 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- D:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2011/10/26 01.25.47 | 000,237,096 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\b57xp32.sys -- (b57w2k)
DRV - [2010/05/14 23.04.02 | 006,842,592 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\lvuvc.sys -- (LVUVC)
DRV - [2010/05/14 23.02.26 | 000,276,448 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\lvrs.sys -- (LVRS)
DRV - [2010/05/14 23.02.14 | 000,114,784 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\lvpopflt.sys -- (lvpopflt)
DRV - [2010/05/07 18.43.30 | 000,025,824 | ---- | M] () [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\LVPr2Mon.sys -- (LVPr2Mon)
DRV - [2010/01/06 04.31.32 | 001,714,176 | R--- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\athuw.sys -- (AR9271)
DRV - [2008/09/24 10.40.22 | 004,122,368 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\alcxwdm.sys -- (ALCXWDM)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.google.it/ [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://it.msn.com/?pc=UP22&ocid=UP22DHP
IE - HKCU\..\SearchScopes,DefaultScope =
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Bing "
FF - prefs.js..browser.search.order.3: "Bing "
FF - prefs.js..browser.search.selectedEngine: "Bing "
FF - prefs.js..browser.startup.homepage: "http://it.msn.com/?pc=UP22&ocid=UP22DHP"
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}:6.13.0.13771
FF - prefs.js..keyword.URL: "http://www.bing.com/search?FORM=UP22DF&PC=UP22&q="
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: D:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: D:\Programmi\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: D:\Programmi\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: D:\Programmi\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: D:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: D:\Programmi\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: D:\Programmi\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.1: D:\Programmi\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: D:\Programmi\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.18\extensions\\Components: D:\Programmi\Mozilla Firefox\components [2013/11/29 18.17.14 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.18\extensions\\Plugins: D:\Programmi\Mozilla Firefox\plugins [2013/12/21 16.49.22 | 000,000,000 | ---D | M]

[2013/11/26 13.12.46 | 000,000,000 | ---D | M] (No name found) -- D:\Documents and Settings\Giovanni\Dati applicazioni\Mozilla\Extensions
[2013/12/21 14.28.20 | 000,000,000 | ---D | M] (No name found) -- D:\Documents and Settings\Giovanni\Dati applicazioni\Mozilla\Firefox\Profiles\juryeluh.default\extensions
[2013/11/28 14.28.50 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- D:\Documents and Settings\Giovanni\Dati applicazioni\Mozilla\Firefox\Profiles\juryeluh.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2013/12/21 16.48.07 | 000,000,000 | ---D | M] (No name found) -- D:\Programmi\Mozilla Firefox\extensions
[2013/12/02 17.16.51 | 000,000,000 | ---D | M] (Skype Click to Call) -- D:\Programmi\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013/12/02 17.16.50 | 000,000,000 | ---D | M] (No name found) -- D:\Programmi\Mozilla Firefox\browser\extensions
[2013/12/02 17.16.51 | 000,000,000 | ---D | M] (Skype Click to Call) -- D:\Programmi\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
File not found (No name found) -- D:\DOCUMENTS AND SETTINGS\GIOVANNI\DATI APPLICAZIONI\MOZILLA\FIREFOX\PROFILES\JURYELUH.DEFAULT\EXTENSIONS\008ABED2-B43A-46C9-9A5B-A771C87B82DA@1AD61D53-2BDC-4484-A26B-B888ECAE1906.COM
File not found (No name found) -- D:\PROGRAMMI\JAVA\JRE6\LIB\DEPLOY\JQS\FF
File not found (No name found) -- D:\PROGRAMMI\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
[2009/11/03 03.26.39 | 000,001,412 | ---- | M] () -- D:\Programmi\mozilla firefox\searchplugins\demauro.xml
[2013/11/29 18.17.07 | 000,000,744 | ---- | M] () -- D:\Programmi\mozilla firefox\searchplugins\eBay-it.xml
[2013/11/29 18.17.07 | 000,000,825 | ---- | M] () -- D:\Programmi\mozilla firefox\searchplugins\hoepli.xml
[2013/11/29 18.17.07 | 000,001,182 | ---- | M] () -- D:\Programmi\mozilla firefox\searchplugins\wikipedia-it.xml
[2013/11/29 18.17.07 | 000,000,953 | ---- | M] () -- D:\Programmi\mozilla firefox\searchplugins\yahoo-it.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - Extension: Documenti Google = D:\Documents and Settings\Giovanni\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Ricerca Google = D:\Documents and Settings\Giovanni\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Skype Click to Call = D:\Documents and Settings\Giovanni\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.13.0.13771_0\
CHR - Extension: Google Wallet = D:\Documents and Settings\Giovanni\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0\
CHR - Extension: Gmail = D:\Documents and Settings\Giovanni\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2008/04/14 12.00.00 | 000,000,768 | ---- | M]) - D:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Programmi\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Programmi\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O4 - HKLM..\Run: [EPSON Stylus DX4800 Series] D:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE (SEIKO EPSON CORPORATION)
O4 - HKLM..\Run: [mobilegeni daemon] D:\Programmi\Mobogenie\DaemonProcess.exe ()
O4 - HKLM..\Run: [MSC] D:\Programmi\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [SoundMan] D:\WINDOWS\soundman.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SunJavaUpdateSched] D:\Programmi\File comuni\Java\Java Update\jusched.exe (Oracle Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 0
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - D:\Programmi\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{33336658-1A71-428A-A8D8-F5267AA3F42B}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - D:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - D:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - D:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - D:\Programmi\File comuni\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - D:\Programmi\File comuni\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - D:\Programmi\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - D:\Programmi\File comuni\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - D:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (D:\WINDOWS\system32\userinit.exe) - D:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\WgaLogon: DllName - (WgaLogon.dll) - D:\WINDOWS\System32\WgaLogon.dll ()
O24 - Desktop Components:0 (Pagina iniziale corrente) - About:Home
O24 - Desktop WallPaper: D:\Documents and Settings\Giovanni\Impostazioni locali\Dati applicazioni\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: D:\Documents and Settings\Giovanni\Impostazioni locali\Dati applicazioni\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2013/11/24 12.28.15 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{5bf44847-5500-11e3-b9b9-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{5bf44847-5500-11e3-b9b9-806d6172696f}\Shell\AutoRun\command - "" = F:\Autorun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2013/12/22 20.23.30 | 000,602,112 | ---- | C] (OldTimer Tools) -- D:\Documents and Settings\Giovanni\Desktop\OTL.exe
[2013/12/22 19.54.06 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Impostazioni locali\Dati applicazioni\FileViewPro
[2013/12/22 19.48.27 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Dati applicazioni\IsolatedStorage
[2013/12/22 19.48.27 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Dati applicazioni\IsolatedStorage
[2013/12/22 19.39.58 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Dati applicazioni\Malwarebytes
[2013/12/22 19.39.50 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Menu Avvio\Programmi\Malwarebytes' Anti-Malware
[2013/12/22 19.39.43 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Dati applicazioni\Malwarebytes
[2013/12/22 19.39.37 | 000,022,856 | ---- | C] (Malwarebytes Corporation) -- D:\WINDOWS\System32\drivers\mbam.sys
[2013/12/22 19.39.37 | 000,000,000 | ---D | C] -- D:\Programmi\Malwarebytes' Anti-Malware
[2013/12/22 19.37.32 | 000,000,000 | ---D | C] -- D:\AdwCleaner
[2013/12/22 13.04.51 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- D:\Documents and Settings\Giovanni\Desktop\HijackThis.exe
[2013/12/22 13.02.02 | 000,000,000 | RH-D | C] -- D:\Documents and Settings\Giovanni\Recent
[2013/12/22 13.01.53 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Desktop\SpyHunter 4.1.11.0 + Crack
[2013/12/22 12.56.37 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Impostazioni locali\Dati applicazioni\Sun
[2013/12/21 16.49.30 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Dati applicazioni\Sun
[2013/12/21 16.49.28 | 000,000,000 | ---D | C] -- D:\Programmi\File comuni\Java
[2013/12/21 16.49.22 | 000,264,616 | ---- | C] (Oracle Corporation) -- D:\WINDOWS\System32\javaws.exe
[2013/12/21 16.49.22 | 000,145,408 | ---- | C] (Oracle Corporation) -- D:\WINDOWS\System32\javacpl.cpl
[2013/12/21 16.49.17 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Menu Avvio\Programmi\Java
[2013/12/21 16.49.16 | 000,175,016 | ---- | C] (Oracle Corporation) -- D:\WINDOWS\System32\javaw.exe
[2013/12/21 16.49.16 | 000,174,504 | ---- | C] (Oracle Corporation) -- D:\WINDOWS\System32\java.exe
[2013/12/21 16.49.16 | 000,094,632 | ---- | C] (Oracle Corporation) -- D:\WINDOWS\System32\WindowsAccessBridge.dll
[2013/12/21 16.48.39 | 000,000,000 | ---D | C] -- D:\Programmi\Java
[2013/12/21 14.29.28 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\.android
[2013/12/21 14.29.27 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Impostazioni locali\Dati applicazioni\cache
[2013/12/21 14.29.21 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Impostazioni locali\Dati applicazioni\genienext
[2013/12/21 14.29.20 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Impostazioni locali\Dati applicazioni\Mobogenie
[2013/12/21 14.29.20 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Documenti\Mobogenie
[2013/12/21 14.28.35 | 000,000,000 | ---D | C] -- D:\Programmi\Mobogenie
[2013/12/21 13.00.31 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Menu Avvio\Programmi\EPSON Scan
[2013/12/21 13.00.29 | 000,046,080 | ---- | C] (SEIKO EPSON CORP.) -- D:\WINDOWS\System32\escimgd.dll
[2013/12/21 13.00.29 | 000,029,696 | ---- | C] (SEIKO EPSON CORP.) -- D:\WINDOWS\System32\escwiad.dll
[2013/12/21 13.00.29 | 000,022,016 | ---- | C] (SEIKO EPSON CORP.) -- D:\WINDOWS\System32\esccmd.dll
[2013/12/21 11.31.34 | 000,000,000 | ---D | C] -- D:\Programmi\File comuni\Wise Installation Wizard
[2013/12/21 11.26.58 | 000,000,000 | ---D | C] -- D:\WINDOWS\pss
[2013/12/13 13.48.01 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Dati applicazioni\CompIdea
[2013/12/13 13.33.55 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Dati applicazioni\dvdcss
[2013/12/11 18.58.26 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\appmgmt
[2013/12/06 15.53.44 | 000,000,000 | ---D | C] -- D:\Programmi\File comuni\Adobe AIR
[2013/12/02 17.15.52 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Dati applicazioni\Skype
[2013/12/02 17.15.43 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Menu Avvio\Programmi\Skype
[2013/12/02 17.15.42 | 000,000,000 | ---D | C] -- D:\Programmi\File comuni\Skype
[2013/12/02 17.15.39 | 000,000,000 | R--D | C] -- D:\Programmi\Skype
[2013/12/02 17.15.30 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Dati applicazioni\Skype
[2013/12/02 13.53.18 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Documenti\Emergenza
[2013/12/02 13.17.39 | 000,000,000 | R--D | C] -- D:\Documents and Settings\All Users\Documenti\Musica
[2013/12/01 18.02.15 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Emergenza
[2013/11/30 19.33.36 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Menu Avvio\Programmi\EPSON
[2013/11/30 19.33.35 | 000,049,152 | ---- | C] (SEIKO EPSON CORP.) -- D:\WINDOWS\System32\E_DCINST.DLL
[2013/11/30 19.33.33 | 000,034,304 | ---- | C] (SEIKO EPSON CORPORATION) -- D:\WINDOWS\System32\E_FBCHADE.DLL
[2013/11/30 19.33.32 | 000,079,679 | ---- | C] (SEIKO EPSON CORPORATION) -- D:\WINDOWS\System32\E_FLMADE.DLL
[2013/11/30 19.33.32 | 000,064,000 | ---- | C] (SEIKO EPSON CORPORATION) -- D:\WINDOWS\System32\E_FBCBADE.DLL
[2013/11/30 19.33.16 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\DRVSTORE
[2013/11/30 19.32.55 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Dati applicazioni\EPSON
[2013/11/30 19.30.24 | 000,000,000 | ---D | C] -- D:\Programmi\epson
[2013/11/30 19.27.30 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Impostazioni locali\Dati applicazioni\DriverTuner
[2013/11/30 19.19.50 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Dati applicazioni\McAfee
[2013/11/30 19.19.10 | 000,000,000 | ---D | C] -- D:\Programmi\File comuni\Adobe
[2013/11/30 19.19.10 | 000,000,000 | ---D | C] -- D:\Programmi\Adobe
[2013/11/30 19.18.49 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Dati applicazioni\Adobe
[2013/11/30 19.17.26 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Impostazioni locali\Dati applicazioni\Adobe
[2013/11/30 18.32.38 | 000,000,000 | -HSD | C] -- D:\Documents and Settings\Giovanni\IECompatCache
[2013/11/30 12.39.14 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Documenti\Downloads
[2013/11/30 12.36.03 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Menu Avvio\Programmi\Google Chrome
[2013/11/28 13.41.09 | 000,123,008 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\usbvideo.sys
[2013/11/28 13.41.09 | 000,046,848 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\irbus.sys
[2013/11/27 18.25.26 | 000,000,000 | ---D | C] -- D:\Programmi\Microsoft CAPICOM 2.1.0.2
[2013/11/27 14.34.55 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Impostazioni locali\Dati applicazioni\Help
[2013/11/27 13.29.58 | 000,005,504 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\mstee.sys
[2013/11/27 13.29.54 | 000,010,880 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\ndisip.sys
[2013/11/27 13.29.52 | 000,016,384 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\ipsink.ax
[2013/11/27 13.29.52 | 000,016,384 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\ipsink.ax
[2013/11/27 13.29.52 | 000,015,232 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\streamip.sys
[2013/11/27 13.29.50 | 000,011,136 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\slip.sys
[2013/11/27 13.29.47 | 000,019,200 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wstcodec.sys
[2013/11/27 13.29.44 | 000,085,248 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\nabtsfec.sys
[2013/11/27 13.29.41 | 000,017,024 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\ccdecode.sys
[2013/11/27 13.29.33 | 000,060,160 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\usbaudio.sys
[2013/11/27 13.29.08 | 000,091,648 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\kswdmcap.ax
[2013/11/27 13.29.08 | 000,091,648 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\kswdmcap.ax
[2013/11/27 13.29.08 | 000,061,952 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\kstvtune.ax
[2013/11/27 13.29.08 | 000,061,952 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\kstvtune.ax
[2013/11/27 13.29.08 | 000,054,784 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\vfwwdm32.dll
[2013/11/27 13.29.08 | 000,054,784 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\vfwwdm32.dll
[2013/11/27 13.29.08 | 000,043,008 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\ksxbar.ax
[2013/11/27 13.29.08 | 000,043,008 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\ksxbar.ax
[2013/11/27 13.29.08 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\vidcap.ax
[2013/11/27 13.29.08 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\vidcap.ax
[2013/11/27 13.29.07 | 000,020,992 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dshowext.ax
[2013/11/27 13.29.07 | 000,020,992 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\dshowext.ax
[2013/11/27 13.23.58 | 000,275,696 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\mucltui.dll
[2013/11/27 13.23.58 | 000,018,672 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\mucltui.dll.mui
[2013/11/27 13.22.29 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Dati applicazioni\LogiShrd
[2013/11/26 16.57.46 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Menu Avvio\Programmi\Microsoft Silverlight
[2013/11/26 16.17.07 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\logishrd
[2013/11/26 16.16.02 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Dati applicazioni\Logitech
[2013/11/26 16.15.39 | 000,000,000 | ---D | C] -- D:\Programmi\File comuni\LWS
[2013/11/26 16.15.04 | 000,000,000 | ---D | C] -- D:\Programmi\Common Files
[2013/11/26 16.14.19 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Menu Avvio\Programmi\Logitech
[2013/11/26 16.14.10 | 000,000,000 | ---D | C] -- D:\Programmi\Logitech
[2013/11/26 16.14.05 | 000,000,000 | ---D | C] -- D:\Programmi\File comuni\LogiShrd
[2013/11/26 14.58.09 | 000,025,856 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\usbprint.sys
[2013/11/26 14.45.56 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Impostazioni locali\Dati applicazioni\Identities
[2013/11/26 14.32.02 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Dati applicazioni\WinRAR
[2013/11/26 14.22.56 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Dati applicazioni\vlc
[2013/11/26 14.15.26 | 000,000,000 | ---D | C] -- D:\WINDOWS\ie8updates
[2013/11/26 14.01.56 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\MRT
[2013/11/26 13.55.39 | 000,000,000 | -H-D | C] -- D:\WINDOWS\$hf_mig$
[2013/11/26 13.44.27 | 000,440,832 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\shimgvw.dll
[2013/11/26 13.44.16 | 000,391,168 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\themeui.dll
[2013/11/26 13.44.14 | 001,172,480 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msxml3.dll
[2013/11/26 13.44.10 | 000,017,920 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msyuv.dll
[2013/11/26 13.44.09 | 001,297,408 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\quartz.dll
[2013/11/26 13.43.35 | 008,492,032 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\shell32.dll
[2013/11/26 13.43.27 | 000,048,128 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\iyuv_32.dll
[2013/11/26 13.43.27 | 000,008,704 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\tsbyuv.dll
[2013/11/26 13.43.14 | 000,346,112 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\mspaint.exe
[2013/11/26 13.42.00 | 000,361,600 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\tcpip.sys
[2013/11/26 13.41.48 | 000,456,320 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\mrxsmb.sys
[2013/11/26 13.41.31 | 000,617,472 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\comctl32.dll
[2013/11/26 13.39.54 | 000,025,088 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\hidparse.sys
[2013/11/26 13.39.54 | 000,014,976 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\usbscan.sys
[2013/11/26 13.37.37 | 000,012,928 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\usb8023x.sys
[2013/11/26 13.36.11 | 000,630,272 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msfeeds.dll
[2013/11/26 13.36.10 | 000,055,296 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2013/11/26 13.36.09 | 000,743,424 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\iedvtool.dll
[2013/11/26 13.36.05 | 011,113,472 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\ieframe.dll
[2013/11/26 13.36.05 | 002,006,016 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\iertutil.dll
[2013/11/26 13.36.05 | 000,522,240 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\jsdbgui.dll
[2013/11/26 13.35.34 | 000,293,376 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\browserchoice.exe
[2013/11/26 13.34.12 | 000,005,376 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\usbd.sys
[2013/11/26 13.34.11 | 000,144,128 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\usbport.sys
[2013/11/26 13.34.11 | 000,030,336 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\usbehci.sys
[2013/11/26 13.32.12 | 002,197,248 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\ntoskrnl.exe
[2013/11/26 13.32.12 | 002,153,472 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2013/11/26 13.32.12 | 002,032,128 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2013/11/26 13.32.11 | 002,073,856 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\ntkrnlpa.exe
[2013/11/26 13.31.01 | 000,086,528 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\cabview.dll
[2013/11/26 13.30.58 | 000,045,568 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wab.exe
[2013/11/26 13.17.25 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Documenti\Download
[2013/11/26 13.14.39 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Dati applicazioni\Macromedia
[2013/11/26 13.12.18 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Impostazioni locali\Dati applicazioni\Mozilla
[2013/11/26 13.12.18 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Dati applicazioni\Mozilla
[2013/11/26 12.48.24 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\hidserv.dll
[2013/11/26 12.48.21 | 000,014,720 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\kbdhid.sys
[2013/11/26 12.37.41 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\SoftwareDistribution
[2013/11/26 12.36.52 | 000,032,384 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\usbccgp.sys
[2013/11/24 15.08.47 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Dati applicazioni\Ashampoo
[2013/11/24 15.08.27 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Impostazioni locali\Dati applicazioni\ashampoo
[2013/11/24 15.08.27 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Dati applicazioni\ashampoo
[2013/11/24 15.08.26 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Menu Avvio\Programmi\Ashampoo
[2013/11/24 15.08.15 | 000,000,000 | ---D | C] -- D:\Programmi\Ashampoo
[2013/11/24 15.07.47 | 000,000,000 | -H-D | C] -- D:\WINDOWS\PIF
[2013/11/24 14.55.32 | 000,230,048 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\MpSigStub.exe
[2013/11/24 14.51.46 | 000,000,000 | R--D | C] -- D:\Documents and Settings\Giovanni\Documenti\Video
[2013/11/24 14.51.46 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Dati applicazioni\AVS4YOU
[2013/11/24 14.49.15 | 000,000,000 | ---D | C] -- D:\Programmi\Microsoft Security Client
[2013/11/24 14.49.03 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Dati applicazioni\Windows Genuine Advantage
[2013/11/24 14.46.54 | 001,714,176 | R--- | C] (Atheros Communications, Inc.) -- D:\WINDOWS\System32\drivers\athuw.sys
[2013/11/24 14.31.29 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Dati applicazioni\InstallShield
[2013/11/24 14.31.25 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Menu Avvio\Programmi\Corel Paint Shop Pro X
[2013/11/24 14.31.19 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Dati applicazioni\Corel
[2013/11/24 14.31.04 | 000,000,000 | ---D | C] -- D:\Programmi\File comuni\Corel
[2013/11/24 14.31.04 | 000,000,000 | ---D | C] -- D:\Programmi\Corel
[2013/11/24 14.28.07 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Desktop\Photoinstrument- portable
[2013/11/24 14.26.21 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Menu Avvio\Programmi\Microsoft Office
[2013/11/24 14.26.02 | 000,000,000 | ---D | C] -- D:\Programmi\Microsoft Works
[2013/11/24 14.25.55 | 000,000,000 | ---D | C] -- D:\Programmi\File comuni\DESIGNER
[2013/11/24 14.25.43 | 000,000,000 | ---D | C] -- D:\Programmi\Microsoft.NET
[2013/11/24 14.24.45 | 000,000,000 | ---D | C] -- D:\WINDOWS\SHELLNEW
[2013/11/24 14.24.36 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Impostazioni locali\Dati applicazioni\Microsoft Help
[2013/11/24 14.24.33 | 000,000,000 | ---D | C] -- D:\Programmi\Microsoft Office
[2013/11/24 14.24.33 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Dati applicazioni\Microsoft Help
[2013/11/24 14.24.19 | 000,000,000 | RH-D | C] -- D:\MSOCache
[2013/11/24 14.16.40 | 000,000,000 | -HSD | C] -- D:\RECYCLER
[2013/11/24 14.16.23 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Dati applicazioni\Adobe
[2013/11/24 14.16.06 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Menu Avvio\Programmi\AVS4YOU
[2013/11/24 14.15.59 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Menu Avvio\Programmi\AVS4YOU
[2013/11/24 14.15.50 | 000,000,000 | ---D | C] -- D:\Programmi\File comuni\AVSMedia
[2013/11/24 14.15.42 | 001,700,352 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\GdiPlus.dll
[2013/11/24 14.15.42 | 000,974,848 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\mfc70.dll
[2013/11/24 14.15.42 | 000,487,424 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msvcp70.dll
[2013/11/24 14.15.42 | 000,344,064 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msvcr70.dll
[2013/11/24 14.15.42 | 000,024,576 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msxml3a.dll
[2013/11/24 14.15.41 | 000,000,000 | ---D | C] -- D:\Programmi\AVS4YOU
[2013/11/24 14.15.08 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Menu Avvio\Programmi\WinRAR
[2013/11/24 14.15.08 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Menu Avvio\Programmi\WinRAR
[2013/11/24 14.15.06 | 000,000,000 | ---D | C] -- D:\Programmi\WinRAR
[2013/11/24 14.13.32 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Menu Avvio\Programmi\CCleaner
[2013/11/24 14.13.30 | 000,000,000 | ---D | C] -- D:\Programmi\CCleaner
[2013/11/24 14.13.18 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Impostazioni locali\Dati applicazioni\Google
[2013/11/24 14.12.52 | 000,000,000 | ---D | C] -- D:\Programmi\Google
[2013/11/24 14.11.22 | 000,151,552 | ---- | C] (Intel Corporation) -- D:\WINDOWS\System32\igfxres.dll
[2013/11/24 14.09.52 | 000,053,248 | ---- | C] (Windows XP Bundled build C-Centric Single User) -- D:\WINDOWS\System32\CSVer.dll
[2013/11/24 14.09.52 | 000,000,000 | ---D | C] -- D:\Programmi\Intel
[2013/11/24 14.09.30 | 000,000,000 | ---D | C] -- D:\Intel
[2013/11/24 14.09.17 | 000,006,272 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\splitter.sys
[2013/11/24 14.09.16 | 000,083,072 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wdmaud.sys
[2013/11/24 14.09.14 | 000,052,864 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\dmusic.sys
[2013/11/24 14.09.12 | 000,056,576 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\swmidi.sys
[2013/11/24 14.09.11 | 000,142,592 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\aec.sys
[2013/11/24 14.09.09 | 000,172,416 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\kmixer.sys
[2013/11/24 14.09.05 | 000,002,944 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\drmkaud.sys
[2013/11/24 14.09.03 | 000,060,800 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\sysaudio.sys
[2013/11/24 14.08.56 | 000,007,552 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\mskssrv.sys
[2013/11/24 14.08.49 | 000,004,992 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\mspqm.sys
[2013/11/24 14.08.47 | 000,005,376 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\mspclock.sys
[2013/11/24 14.08.42 | 004,122,368 | R--- | C] (Realtek Semiconductor Corp.) -- D:\WINDOWS\System32\drivers\alcxwdm.sys
[2013/11/24 14.08.41 | 000,146,048 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\drivers\portcls.sys
[2013/11/24 14.08.41 | 000,146,048 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\portcls.sys
[2013/11/24 14.08.41 | 000,129,536 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\ksproxy.ax
[2013/11/24 14.08.41 | 000,129,536 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\ksproxy.ax
[2013/11/24 14.08.41 | 000,060,160 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\drivers\drmk.sys
[2013/11/24 14.08.41 | 000,060,160 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\drmk.sys
[2013/11/24 14.08.41 | 000,004,096 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\ksuser.dll
[2013/11/24 14.08.41 | 000,004,096 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\ksuser.dll
[2013/11/24 14.08.34 | 000,000,000 | ---D | C] -- D:\Programmi\Realtek AC97
[2013/11/24 14.08.33 | 010,528,768 | ---- | C] (Realtek Semiconductor Corp.) -- D:\WINDOWS\System32\RTLCPL.exe
[2013/11/24 14.08.30 | 018,804,736 | ---- | C] (Realtek Semiconductor Corp.) -- D:\WINDOWS\System32\alsndmgr.cpl
[2013/11/24 14.08.30 | 000,577,536 | ---- | C] (Realtek Semiconductor Corp.) -- D:\WINDOWS\soundman.exe
[2013/11/24 14.08.29 | 000,315,392 | ---- | C] (Realtek Semiconductor Corp.) -- D:\WINDOWS\alcupd.exe
[2013/11/24 14.08.29 | 000,217,088 | ---- | C] (Realtek Semiconductor Corp.) -- D:\WINDOWS\Alcrmv.exe
[2013/11/24 14.08.29 | 000,000,000 | -H-D | C] -- D:\Programmi\InstallShield Installation Information
[2013/11/24 14.08.18 | 000,000,000 | ---D | C] -- D:\Programmi\File comuni\InstallShield
[2013/11/24 14.07.37 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\ReinstallBackups
[2013/11/24 13.09.15 | 000,076,800 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\usbui.dll
[2013/11/24 13.08.02 | 000,000,000 | -HSD | C] -- D:\WINDOWS\Installer
[2013/11/24 13.08.01 | 000,000,000 | R--D | C] -- D:\Programmi
[2013/11/24 13.08.01 | 000,000,000 | ---D | C] -- D:\Programmi\File comuni\ODBC
[2013/11/24 13.08.01 | 000,000,000 | ---D | C] -- D:\Programmi\File comuni
[2013/11/24 13.07.51 | 000,037,888 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\irclass.dll
[2013/11/24 13.07.51 | 000,013,600 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\WFWNET.DRV
[2013/11/24 13.07.50 | 000,127,168 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\MSVIDEO.DLL
[2013/11/24 13.07.50 | 000,083,456 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\OLECLI.DLL
[2013/11/24 13.07.50 | 000,024,064 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\OLESVR.DLL
[2013/11/24 13.07.50 | 000,019,200 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\TAPI.DLL
[2013/11/24 13.07.50 | 000,009,171 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\VER.DLL
[2013/11/24 13.07.50 | 000,005,120 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\SHELL.DLL
[2013/11/24 13.07.50 | 000,004,080 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\TIMER.DRV
[2013/11/24 13.07.50 | 000,003,360 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\SYSTEM.DRV
[2013/11/24 13.07.50 | 000,002,176 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\VGA.DRV
[2013/11/24 13.07.50 | 000,001,744 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\SOUND.DRV
[2013/11/24 13.07.49 | 000,073,664 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\MCIAVI.DRV
[2013/11/24 13.07.49 | 000,033,632 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\COMMDLG.DLL
[2013/11/24 13.07.49 | 000,028,160 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\MCIWAVE.DRV
[2013/11/24 13.07.49 | 000,025,296 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\MCISEQ.DRV
[2013/11/24 13.07.49 | 000,009,936 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\LZEXPAND.DLL
[2013/11/24 13.07.49 | 000,002,032 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\MOUSE.DRV
[2013/11/24 13.07.49 | 000,002,000 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\KEYBOARD.DRV
[2013/11/24 13.07.49 | 000,001,152 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\MMTASK.TSK
[2013/11/24 13.07.48 | 000,109,520 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\AVIFILE.DLL
[2013/11/24 13.07.48 | 000,070,320 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\AVICAP.DLL
[2013/11/24 13.07.48 | 000,015,360 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\TASKMAN.EXE
[2013/11/24 13.07.48 | 000,015,360 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\taskman.exe
[2013/11/24 13.07.48 | 000,011,264 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\irenum.sys
[2013/11/24 13.07.47 | 000,146,944 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\WINSPOOL.DRV
[2013/11/24 13.07.47 | 000,075,776 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\storprop.dll
[2013/11/24 13.07.47 | 000,069,664 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\MMSYSTEM.DLL
[2013/11/24 13.07.47 | 000,033,280 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\batt.dll
[2013/11/24 13.07.38 | 000,000,000 | R--D | C] -- D:\Documents and Settings\All Users\Menu Avvio
[2013/11/24 13.07.38 | 000,000,000 | R--D | C] -- D:\Documents and Settings\All Users\Menu Avvio\Programmi\Esecuzione automatica
[2013/11/24 13.07.38 | 000,000,000 | R--D | C] -- D:\Documents and Settings\All Users\Documenti
[2013/11/24 13.07.38 | 000,000,000 | -H-D | C] -- D:\Documents and Settings\All Users\Modelli
[2013/11/24 13.07.38 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Preferiti
[2013/11/24 13.07.38 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Desktop
[2013/11/24 13.07.20 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\CatRoot2
[2013/11/24 13.07.20 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\CatRoot
[2013/11/24 13.07.14 | 000,000,000 | --SD | C] -- D:\Documents and Settings\All Users\Dati applicazioni\Microsoft
[2013/11/24 13.07.14 | 000,000,000 | RH-D | C] -- D:\Documents and Settings\All Users\Dati applicazioni
[2013/11/24 13.06.53 | 000,000,000 | ---D | C] -- D:\Documents and Settings
[2013/11/24 13.06.52 | 000,000,000 | -HSD | C] -- D:\System Volume Information
[2013/11/24 13.05.21 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Documenti\DriverGenius
[2013/11/24 13.03.47 | 000,000,000 | R-SD | C] -- D:\WINDOWS\Fonts
[2013/11/24 13.03.47 | 000,000,000 | RHSD | C] -- D:\WINDOWS\System32\dllcache
[2013/11/24 13.03.47 | 000,000,000 | R--D | C] -- D:\WINDOWS\Web
[2013/11/24 13.03.47 | 000,000,000 | -H-D | C] -- D:\WINDOWS\inf
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\WinSxS
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\wins
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\wbem
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\usmt
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\twain_32
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\Temp
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\system32
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\system
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\spool
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\ShellExt
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\Setup
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\security
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\Resources
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\repair
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\ras
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\Provisioning
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\PreInstall
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\PeerNet
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\PCHealth
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\oobe
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\npp
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\Network Diagnostic
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\mui
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\mui
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\msapps
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\msagent
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\Media
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\L2Schemas
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\java
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\it-it
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\it
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\inetsrv
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\IME
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\ime
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\icsxml
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\ias
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\Help
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\export
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\drivers\etc
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\ehome
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\drivers
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\Driver Cache
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\drivers\disdn
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\dhcp
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\Debug
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\Cursors
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\Connection Wizard
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\config
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\Config
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\AppPatch
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\addins
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\3com_dmi
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\3076
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\2052
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\1054
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\1042
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\1041
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\1040
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\1037
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\1033
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\1031
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\1028
[2013/11/24 13.03.47 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\1025
[2013/11/24 13.02.56 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Dati applicazioni\DriverGenius
[2013/11/24 12.58.29 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Menu Avvio\Programmi\VideoLAN
[2013/11/24 12.58.00 | 000,000,000 | ---D | C] -- D:\Programmi\VideoLAN
[2013/11/24 12.57.24 | 000,026,368 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\usbstor.sys
[2013/11/24 12.53.55 | 000,000,000 | -HSD | C] -- D:\Documents and Settings\Giovanni\PrivacIE
[2013/11/24 12.50.21 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Dati applicazioni\Identities
[2013/11/24 12.50.18 | 000,000,000 | R--D | C] -- D:\Documents and Settings\Giovanni\Documenti\Musica
[2013/11/24 12.50.18 | 000,000,000 | R--D | C] -- D:\Documents and Settings\Giovanni\Documenti\Immagini
[2013/11/24 12.50.18 | 000,000,000 | -H-D | C] -- D:\Programmi\Uninstall Information
[2013/11/24 12.50.17 | 000,000,000 | -HSD | C] -- D:\Documents and Settings\Giovanni\IETldCache
[2013/11/24 12.50.10 | 000,000,000 | --SD | C] -- D:\Documents and Settings\Giovanni\Dati applicazioni\Microsoft
[2013/11/24 12.50.10 | 000,000,000 | RH-D | C] -- D:\Documents and Settings\Giovanni\SendTo
[2013/11/24 12.50.10 | 000,000,000 | RH-D | C] -- D:\Documents and Settings\Giovanni\Dati applicazioni
[2013/11/24 12.50.10 | 000,000,000 | R--D | C] -- D:\Documents and Settings\Giovanni\Preferiti
[2013/11/24 12.50.10 | 000,000,000 | R--D | C] -- D:\Documents and Settings\Giovanni\Menu Avvio
[2013/11/24 12.50.10 | 000,000,000 | R--D | C] -- D:\Documents and Settings\Giovanni\Menu Avvio\Programmi\Esecuzione automatica
[2013/11/24 12.50.10 | 000,000,000 | R--D | C] -- D:\Documents and Settings\Giovanni\Documenti
[2013/11/24 12.50.10 | 000,000,000 | R--D | C] -- D:\Documents and Settings\Giovanni\Menu Avvio\Programmi\Accessori
[2013/11/24 12.50.10 | 000,000,000 | -HSD | C] -- D:\Documents and Settings\Giovanni\Cookies
[2013/11/24 12.50.10 | 000,000,000 | -H-D | C] -- D:\Documents and Settings\Giovanni\Risorse di stampa
[2013/11/24 12.50.10 | 000,000,000 | -H-D | C] -- D:\Documents and Settings\Giovanni\Risorse di rete
[2013/11/24 12.50.10 | 000,000,000 | -H-D | C] -- D:\Documents and Settings\Giovanni\Modelli
[2013/11/24 12.50.10 | 000,000,000 | -H-D | C] -- D:\Documents and Settings\Giovanni\Impostazioni locali
[2013/11/24 12.50.10 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Dati applicazioni\Sun
[2013/11/24 12.50.10 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Impostazioni locali\Dati applicazioni\Microsoft
[2013/11/24 12.50.10 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Giovanni\Desktop
[2013/11/24 12.49.07 | 000,000,000 | ---D | C] -- D:\WINDOWS\SoftwareDistribution
[2013/11/24 12.49.04 | 000,000,000 | ---D | C] -- D:\WINDOWS\Prefetch
[2013/11/24 12.49.03 | 000,000,000 | --SD | C] -- D:\Documents and Settings\LocalService\Dati applicazioni\Microsoft
[2013/11/24 12.49.03 | 000,000,000 | ---D | C] -- D:\Documents and Settings\LocalService\Impostazioni locali\Dati applicazioni\Microsoft
[2013/11/24 12.41.48 | 000,000,000 | ---D | C] -- D:\Documents and Settings\NetworkService\Impostazioni locali\Dati applicazioni\Microsoft
[2013/11/24 12.41.47 | 000,000,000 | --SD | C] -- D:\Documents and Settings\NetworkService\Dati applicazioni\Microsoft
[2013/11/24 12.40.36 | 000,041,600 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\weitekp9.dll
[2013/11/24 12.40.36 | 000,031,360 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\weitekp9.sys
[2013/11/24 12.40.35 | 000,053,248 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wamreg51.dll
[2013/11/24 12.40.35 | 000,009,216 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wamps51.dll
[2013/11/24 12.40.34 | 000,078,336 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wam51.dll
[2013/11/24 12.40.32 | 000,369,152 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\w3svc.dll
[2013/11/24 12.40.32 | 000,074,240 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\w3ext.dll
[2013/11/24 12.40.32 | 000,048,256 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\w32.dll
[2013/11/24 12.40.32 | 000,005,632 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\w3svapi.dll
[2013/11/24 12.40.32 | 000,004,608 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\w3ctrs51.dll
[2013/11/24 12.40.29 | 000,103,936 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\uihelper.dll
[2013/11/24 12.40.29 | 000,014,336 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\tsprof.exe
[2013/11/24 12.40.28 | 000,033,792 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\tools.dll
[2013/11/24 12.40.26 | 000,185,344 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\thawbrkr.dll
[2013/11/24 12.40.26 | 000,021,896 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\tdipx.sys
[2013/11/24 12.40.26 | 000,019,464 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\tdspx.sys
[2013/11/24 12.40.25 | 000,013,192 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\tdasync.sys
[2013/11/24 12.40.23 | 000,046,592 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\svcext51.dll
[2013/11/24 12.40.21 | 000,101,888 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\srusbusd.dll
[2013/11/24 12.40.21 | 000,046,592 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\sspifilt.dll
[2013/11/24 12.40.21 | 000,045,568 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\ssinc51.dll
[2013/11/24 12.40.21 | 000,016,896 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\status.dll
[2013/11/24 12.40.19 | 000,039,936 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\snmpthrd.dll
[2013/11/24 12.40.19 | 000,010,240 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\snmpstup.dll
[2013/11/24 12.40.19 | 000,008,704 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\snmptrap.exe
[2013/11/24 12.40.18 | 000,358,400 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\snmpincl.dll
[2013/11/24 12.40.18 | 000,259,072 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\snmpcl.dll
[2013/11/24 12.40.18 | 000,188,416 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\snmpsmir.dll
[2013/11/24 12.40.18 | 000,033,280 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\snmp.exe
[2013/11/24 12.40.18 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\snmpmib.dll
[2013/11/24 12.40.17 | 000,464,896 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\smtpsvc.dll
[2013/11/24 12.40.17 | 000,010,752 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\smtpapi.dll
[2013/11/24 12.40.16 | 000,236,544 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\smi2smir.exe
[2013/11/24 12.40.16 | 000,038,912 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\sm9aw.dll
[2013/11/24 12.40.16 | 000,031,744 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\smb6w.dll
[2013/11/24 12.40.16 | 000,031,744 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\sma3w.dll
[2013/11/24 12.40.16 | 000,015,872 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\smierrsm.dll
[2013/11/24 12.40.16 | 000,005,632 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\smimsgif.dll
[2013/11/24 12.40.16 | 000,005,632 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\smierrsy.dll
[2013/11/24 12.40.15 | 000,030,208 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\sm87w.dll
[2013/11/24 12.40.15 | 000,030,208 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\sm81w.dll
[2013/11/24 12.40.15 | 000,029,184 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\sm8cw.dll
[2013/11/24 12.40.15 | 000,026,624 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\sm93w.dll
[2013/11/24 12.40.15 | 000,026,624 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\sm92w.dll
[2013/11/24 12.40.15 | 000,026,112 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\sm90w.dll
[2013/11/24 12.40.15 | 000,026,112 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\sm8dw.dll
[2013/11/24 12.40.15 | 000,026,112 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\sm8aw.dll
[2013/11/24 12.40.15 | 000,026,112 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\sm89w.dll
[2013/11/24 12.40.14 | 000,025,088 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\sm59w.dll
[2013/11/24 12.40.14 | 000,019,456 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\simptcp.dll
[2013/11/24 12.40.07 | 000,221,696 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\seo.dll
[2013/11/24 12.40.07 | 000,057,856 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\EXCH_scripto.dll
[2013/11/24 12.40.07 | 000,009,216 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\scrnsave.scr
[2013/11/24 12.40.06 | 000,080,896 | ---- | C] (Ricoh Co., Ltd.) -- D:\WINDOWS\System32\dllcache\rwia330.dll
[2013/11/24 12.40.06 | 000,080,896 | ---- | C] (Ricoh Co., Ltd.) -- D:\WINDOWS\System32\dllcache\rwia001.dll
[2013/11/24 12.40.06 | 000,029,184 | ---- | C] (Ricoh Co., Ltd.) -- D:\WINDOWS\System32\dllcache\rw330ext.dll
[2013/11/24 12.40.06 | 000,027,648 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\rw001ext.dll
[2013/11/24 12.40.06 | 000,009,728 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\rwnh.dll
[2013/11/24 12.40.03 | 000,004,096 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\rpcref.dll
[2013/11/24 12.40.02 | 000,023,040 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\EXCH_regtrace.exe
[2013/11/24 12.40.02 | 000,014,848 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\register.exe
[2013/11/24 12.39.59 | 000,020,736 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\ramdisk.sys
[2013/11/24 12.39.59 | 000,016,896 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\quser.exe
[2013/11/24 12.39.59 | 000,009,728 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\query.exe
[2013/11/24 12.39.58 | 000,007,680 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\pwsdata.dll
[2013/11/24 12.39.56 | 000,131,584 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\pmxviceo.dll
[2013/11/24 12.39.56 | 000,011,264 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\pmxmcro.dll
[2013/11/24 12.39.56 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\pmxgl.dll
[2013/11/24 12.39.55 | 000,020,992 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\permchk.dll
[2013/11/24 12.39.54 | 000,031,744 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\pagecnt.dll
[2013/11/24 12.39.50 | 000,045,056 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\nsepm.dll
[2013/11/24 12.39.49 | 000,053,760 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\nextlink.dll
[2013/11/24 12.39.45 | 000,119,808 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\mtstocom.exe
[2013/11/24 12.39.39 | 000,040,960 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msiregmv.exe
[2013/11/24 12.39.38 | 001,875,968 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msir3jp.lex
[2013/11/24 12.39.38 | 000,098,304 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msir3jp.dll
[2013/11/24 12.39.26 | 000,092,416 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\mga.sys
[2013/11/24 12.39.26 | 000,092,032 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\mga.dll
[2013/11/24 12.39.26 | 000,086,016 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\metada51.dll
[2013/11/24 12.39.26 | 000,007,680 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\migregdb.exe
[2013/11/24 12.39.25 | 000,037,888 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\md5filt.dll
[2013/11/24 12.39.25 | 000,026,624 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\mdsync.dll
[2013/11/24 12.39.23 | 000,023,040 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\lpdsvc.dll
[2013/11/24 12.39.23 | 000,022,016 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\logscrpt.dll
[2013/11/24 12.39.23 | 000,019,456 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\lprmon.dll
[2013/11/24 12.39.23 | 000,013,312 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\lonsint.dll
[2013/11/24 12.39.22 | 000,033,792 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\lmmib2.dll
[2013/11/24 12.39.21 | 000,070,656 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\korwbrkr.dll
[2013/11/24 12.39.19 | 000,027,648 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\iscomlog.dll
[2013/11/24 12.39.19 | 000,018,432 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\jupiw.dll
[2013/11/24 12.39.19 | 000,009,216 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\iwrps.dll
[2013/11/24 12.39.18 | 000,007,168 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\isapips.dll
[2013/11/24 12.39.17 | 000,036,352 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\iprip.dll
[2013/11/24 12.39.16 | 000,257,024 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\infocomm.dll
[2013/11/24 12.39.16 | 000,015,872 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\inetin51.exe
[2013/11/24 12.39.16 | 000,009,216 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\infoctrs.dll
[2013/11/24 12.39.15 | 000,311,359 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\imepadsv.exe
[2013/11/24 12.39.15 | 000,102,463 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\imepadsm.dll
[2013/11/24 12.39.15 | 000,102,456 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\imlang.dll
[2013/11/24 12.39.14 | 000,145,408 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\iische51.dll
[2013/11/24 12.39.14 | 000,079,872 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\iislog51.dll
[2013/11/24 12.39.14 | 000,060,928 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\iisclex4.dll
[2013/11/24 12.39.14 | 000,019,456 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\iiscrmap.dll
[2013/11/24 12.39.14 | 000,007,168 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\iisfecnv.dll
[2013/11/24 12.39.14 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\iissync.exe
[2013/11/24 12.39.14 | 000,003,584 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\iismui.dll
[2013/11/24 12.39.13 | 000,025,088 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\iisadmin.dll
[2013/11/24 12.39.12 | 000,081,920 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\ieencode.dll
[2013/11/24 12.39.11 | 000,061,440 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\httpod51.dll
[2013/11/24 12.39.11 | 000,008,192 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\httpmb51.dll
[2013/11/24 12.39.10 | 000,268,288 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\httpext.dll
[2013/11/24 12.39.10 | 000,039,936 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\hostmib.dll
[2013/11/24 12.39.07 | 000,032,256 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\gzip.dll
[2013/11/24 12.39.05 | 000,128,512 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\ftpsv251.dll
[2013/11/24 12.39.05 | 000,007,680 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\ftpctrs2.dll
[2013/11/24 12.39.05 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\ftpmib.dll
[2013/11/24 12.39.04 | 000,618,605 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\fp4autl.dll
[2013/11/24 12.39.04 | 000,024,632 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\fpadmcgi.exe
[2013/11/24 12.39.04 | 000,020,541 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\fpadmdll.dll
[2013/11/24 12.39.03 | 000,014,848 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\flattemp.exe
[2013/11/24 12.39.01 | 000,014,336 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\exstrace.dll
[2013/11/24 12.39.00 | 000,108,032 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\evntagnt.dll
[2013/11/24 12.39.00 | 000,093,184 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\evntwin.exe
[2013/11/24 12.39.00 | 000,026,112 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\evntcmd.exe
[2013/11/24 12.38.59 | 000,057,856 | ---- | C] (SEIKO EPSON CORP.) -- D:\WINDOWS\System32\dllcache\esuimgd.dll
[2013/11/24 12.38.59 | 000,045,568 | ---- | C] (SEIKO EPSON CORP.) -- D:\WINDOWS\System32\dllcache\esunid.dll
[2013/11/24 12.38.59 | 000,031,744 | ---- | C] (SEIKO EPSON CORP.) -- D:\WINDOWS\System32\dllcache\esucmd.dll
[2013/11/24 12.38.59 | 000,025,856 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\et4000.sys
[2013/11/24 12.38.58 | 000,514,587 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\edb500.dll
[2013/11/24 12.38.57 | 000,055,632 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\dwil1040.dll
[2013/11/24 12.38.49 | 000,042,496 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\davcdata.exe
[2013/11/24 12.38.46 | 000,020,480 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\counters.dll
[2013/11/24 12.38.46 | 000,019,456 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\cprofile.exe
[2013/11/24 12.38.45 | 000,057,344 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\convlog.exe
[2013/11/24 12.38.45 | 000,033,792 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\controt.dll
[2013/11/24 12.38.43 | 000,024,064 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\compfilt.dll
[2013/11/24 12.38.40 | 001,677,824 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\chsbrkr.dll
[2013/11/24 12.38.40 | 000,838,144 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\chtbrkr.dll
[2013/11/24 12.38.39 | 000,016,384 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\chgport.exe
[2013/11/24 12.38.39 | 000,014,848 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\chgusr.exe
[2013/11/24 12.38.39 | 000,013,824 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\chglogon.exe
[2013/11/24 12.38.39 | 000,009,728 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\change.exe
[2013/11/24 12.38.37 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- D:\WINDOWS\System32\dllcache\cap7146.sys
[2013/11/24 12.38.29 | 000,045,568 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\browscap.dll
[2013/11/24 12.38.27 | 000,009,216 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\authfilt.dll
[2013/11/24 12.38.26 | 000,379,904 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\asp51.dll
[2013/11/24 12.38.26 | 000,029,184 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\asptxn.dll
[2013/11/24 12.38.26 | 000,010,240 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\aspperf.dll
[2013/11/24 12.38.25 | 000,333,824 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\aqueue.dll
[2013/11/24 12.38.24 | 000,109,568 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\appconf.dll
[2013/11/24 12.38.22 | 000,050,176 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\adrot.dll
[2013/11/24 12.38.22 | 000,029,696 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\admexs.dll
[2013/11/24 12.38.22 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\admxprox.dll
[2013/11/24 12.38.16 | 000,007,168 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wamregps.dll
[2013/11/24 12.38.15 | 000,032,827 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\tcptest.exe
[2013/11/24 12.38.15 | 000,016,384 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\tcptsat.dll
[2013/11/24 12.38.14 | 002,134,528 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\smtpsnap.dll
[2013/11/24 12.38.14 | 000,189,952 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\smtpadm.dll
[2013/11/24 12.38.14 | 000,008,192 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\staxmem.dll
[2013/11/24 12.38.13 | 000,020,536 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\shtml.dll
[2013/11/24 12.38.13 | 000,016,437 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\shtml.exe
[2013/11/24 12.38.09 | 000,077,824 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\logui.ocx
[2013/11/24 12.38.08 | 000,839,168 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\inetmgr.dll
[2013/11/24 12.38.08 | 000,068,608 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\isatq.dll
[2013/11/24 12.38.08 | 000,019,968 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\inetsloc.dll
[2013/11/24 12.38.08 | 000,013,312 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\infoadmn.dll
[2013/11/24 12.38.08 | 000,007,680 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\inetmgr.exe
[2013/11/24 12.38.07 | 000,171,520 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\iisui.dll
[2013/11/24 12.38.07 | 000,133,632 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\iisrtl.dll
[2013/11/24 12.38.07 | 000,068,608 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\iisext51.dll
[2013/11/24 12.38.07 | 000,065,024 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\iismap.dll
[2013/11/24 12.38.07 | 000,031,232 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\iisrstas.exe
[2013/11/24 12.38.07 | 000,015,360 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\iisreset.exe
[2013/11/24 12.38.07 | 000,005,632 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\iisrstap.dll
[2013/11/24 12.38.06 | 000,598,071 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\fpmmc.dll
[2013/11/24 12.38.06 | 000,217,088 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\fpmmcsat.dll
[2013/11/24 12.38.06 | 000,020,541 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\fpexedll.dll
[2013/11/24 12.38.06 | 000,020,538 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\fpremadm.exe
[2013/11/24 12.38.06 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\ftpsapi2.dll
[2013/11/24 12.38.05 | 000,876,653 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\fp4awel.dll
[2013/11/24 12.38.05 | 000,188,494 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\fpcount.exe
[2013/11/24 12.38.05 | 000,109,328 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\fp98swin.exe
[2013/11/24 12.38.05 | 000,102,509 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\fp4atxt.dll
[2013/11/24 12.38.05 | 000,049,212 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\fp4awebs.dll
[2013/11/24 12.38.05 | 000,041,020 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\fp4avnb.dll
[2013/11/24 12.38.05 | 000,032,826 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\fp4avss.dll
[2013/11/24 12.38.05 | 000,014,608 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\fp98sadm.exe
[2013/11/24 12.38.04 | 000,184,435 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\fp4amsft.dll
[2013/11/24 12.38.04 | 000,147,513 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\fp4apws.dll
[2013/11/24 12.38.04 | 000,082,035 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\fp4anscp.dll
[2013/11/24 12.38.04 | 000,049,210 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\fp4areg.dll
[2013/11/24 12.38.02 | 000,280,576 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\certwiz.ocx
[2013/11/24 12.38.02 | 000,188,480 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\cfgwiz.exe
[2013/11/24 12.38.02 | 000,077,312 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\cnfgprts.ocx
[2013/11/24 12.38.02 | 000,047,104 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\coadmin.dll
[2013/11/24 12.38.01 | 000,096,768 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\certmap.ocx
[2013/11/24 12.38.01 | 000,020,540 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\author.dll
[2013/11/24 12.38.01 | 000,016,439 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\author.exe
[2013/11/24 12.38.00 | 000,290,816 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\adsiis51.dll
[2013/11/24 12.38.00 | 000,043,520 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\admwprox.dll
[2013/11/24 12.38.00 | 000,016,439 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\admin.exe
[2013/11/24 12.37.59 | 000,020,540 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\admin.dll
[2013/11/24 12.37.58 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\xircom
[2013/11/24 12.37.58 | 000,000,000 | ---D | C] -- D:\Programmi\xerox
[2013/11/24 12.37.58 | 000,000,000 | ---D | C] -- D:\WINDOWS\srchasst
[2013/11/24 12.37.58 | 000,000,000 | ---D | C] -- D:\Programmi\File comuni\speechengines
[2013/11/24 12.37.58 | 000,000,000 | ---D | C] -- D:\Programmi\msn gaming zone
[2013/11/24 12.37.58 | 000,000,000 | ---D | C] -- D:\Programmi\microsoft frontpage
[2013/11/24 12.37.40 | 000,000,000 | ---D | C] -- D:\Programmi\Microsoft Silverlight
[2013/11/24 12.37.24 | 000,000,000 | ---D | C] -- D:\Programmi\MSXML 4.0
[2013/11/24 12.37.18 | 000,000,000 | --SD | C] -- D:\WINDOWS\System32\Microsoft
[2013/11/24 12.37.14 | 000,411,368 | ---- | C] (Sun Microsystems, Inc.) -- D:\WINDOWS\System32\deploytk.dll
[2013/11/24 12.36.53 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Menu Avvio\Programmi\Mozilla Firefox
[2013/11/24 12.36.52 | 000,000,000 | ---D | C] -- D:\Programmi\Mozilla Firefox
[2013/11/24 12.36.03 | 005,068,800 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\Da Vinci.scr
[2013/11/24 12.36.03 | 000,773,120 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\Bubbles.scr
[2013/11/24 12.36.02 | 008,174,592 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\Branded.scr
[2013/11/24 12.36.01 | 001,263,616 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\Aurora.scr
[2013/11/24 12.36.01 | 000,498,176 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\WSLogon.scr
[2013/11/24 12.36.00 | 007,093,760 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\Space.scr
[2013/11/24 12.36.00 | 003,343,360 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\Nature.scr
[2013/11/24 12.36.00 | 000,561,152 | ---- | C] (Greg Stitt) -- D:\WINDOWS\System32\Motion Picture.scr
[2013/11/24 12.36.00 | 000,117,248 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\Ribbons.scr
[2013/11/24 12.36.00 | 000,117,248 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\Mystify.scr
[2013/11/24 12.35.59 | 001,350,656 | ---- | C] (Sierra Online) -- D:\WINDOWS\System32\Johnny C..scr
[2013/11/24 12.35.59 | 000,241,152 | ---- | C] (Sencesa Group) -- D:\WINDOWS\System32\HypnogenicRain.scr
[2013/11/24 12.35.58 | 004,396,544 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\Gold Fish.scr
[2013/11/24 12.35.58 | 000,446,464 | ---- | C] (Matt Ginzton) -- D:\WINDOWS\System32\Flurry.scr
[2013/11/24 12.35.13 | 000,014,048 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\spmsg2.dll
[2013/11/24 12.33.59 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\XPSViewer
[2013/11/24 12.33.59 | 000,000,000 | ---D | C] -- D:\Programmi\MSBuild
[2013/11/24 12.33.59 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\en-US
[2013/11/24 12.33.55 | 000,000,000 | ---D | C] -- D:\Programmi\Reference Assemblies
[2013/11/24 12.33.43 | 000,018,808 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\spmsg.dll
[2013/11/24 12.33.14 | 000,000,000 | R-SD | C] -- D:\WINDOWS\assembly
[2013/11/24 12.32.54 | 000,000,000 | ---D | C] -- D:\WINDOWS\Microsoft.NET
[2013/11/24 12.32.06 | 001,676,288 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\xpssvcs.dll
[2013/11/24 12.32.06 | 001,676,288 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\xpssvcs.dll
[2013/11/24 12.32.06 | 000,575,488 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\xpsshhdr.dll
[2013/11/24 12.31.50 | 000,117,760 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\prntvpt.dll
[2013/11/24 12.31.42 | 000,089,088 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\filterpipelineprintproc.dll
[2013/11/24 12.31.41 | 000,597,504 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\printfilterpipelinesvc.exe
[2013/11/24 12.31.09 | 004,379,984 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx9_40.dll
[2013/11/24 12.31.09 | 004,178,264 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx9_41.dll
[2013/11/24 12.31.09 | 000,517,448 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XAudio2_4.dll
[2013/11/24 12.31.09 | 000,514,384 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XAudio2_3.dll
[2013/11/24 12.31.09 | 000,509,448 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XAudio2_2.dll
[2013/11/24 12.31.09 | 000,507,400 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XAudio2_1.dll
[2013/11/24 12.31.09 | 000,479,752 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XAudio2_0.dll
[2013/11/24 12.31.09 | 000,267,272 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XactEngine2_10.dll
[2013/11/24 12.31.09 | 000,267,112 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XactEngine2_9.dll
[2013/11/24 12.31.09 | 000,266,088 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XactEngine2_8.dll
[2013/11/24 12.31.09 | 000,261,480 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XactEngine2_7.dll
[2013/11/24 12.31.09 | 000,255,848 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XactEngine2_6.dll
[2013/11/24 12.31.09 | 000,251,672 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XactEngine2_5.dll
[2013/11/24 12.31.09 | 000,238,088 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XactEngine3_2.dll
[2013/11/24 12.31.09 | 000,238,088 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XactEngine3_1.dll
[2013/11/24 12.31.09 | 000,238,088 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XactEngine3_0.dll
[2013/11/24 12.31.09 | 000,237,848 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XactEngine2_4.dll
[2013/11/24 12.31.09 | 000,236,824 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XactEngine2_3.dll
[2013/11/24 12.31.09 | 000,235,856 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XactEngine3_3.dll
[2013/11/24 12.31.09 | 000,235,352 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XactEngine3_4.dll
[2013/11/24 12.31.09 | 000,230,168 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XactEngine2_2.dll
[2013/11/24 12.31.09 | 000,230,096 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XactEngine2_0.dll
[2013/11/24 12.31.09 | 000,229,584 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XactEngine2_1.dll
[2013/11/24 12.31.09 | 000,081,768 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XInput1_3.dll
[2013/11/24 12.31.09 | 000,070,992 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XAPOFX1_2.dll
[2013/11/24 12.31.09 | 000,069,448 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XAPOFX1_3.dll
[2013/11/24 12.31.09 | 000,068,616 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XAPOFX1_1.dll
[2013/11/24 12.31.09 | 000,065,032 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XAPOFX1_0.dll
[2013/11/24 12.31.09 | 000,062,744 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XInput1_2.dll
[2013/11/24 12.31.09 | 000,062,672 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XInput1_1.dll
[2013/11/24 12.31.09 | 000,061,136 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XInput9_1_0.dll
[2013/11/24 12.31.09 | 000,025,608 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\X3DAudio1_4.dll
[2013/11/24 12.31.09 | 000,025,608 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\X3DAudio1_3.dll
[2013/11/24 12.31.09 | 000,023,376 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\X3DAudio1_5.dll
[2013/11/24 12.31.09 | 000,022,360 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\X3DAudio1_6.dll
[2013/11/24 12.31.09 | 000,017,928 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\X3DAudio1_2.dll
[2013/11/24 12.31.09 | 000,015,128 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\X3DAudio1_1.dll
[2013/11/24 12.31.09 | 000,014,032 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\X3DAudio1_0.dll
[2013/11/24 12.31.08 | 003,851,784 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx9_39.dll
[2013/11/24 12.31.08 | 003,850,760 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx9_38.dll
[2013/11/24 12.31.08 | 003,786,760 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx9_37.dll
[2013/11/24 12.31.08 | 003,734,536 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx9_36.dll
[2013/11/24 12.31.08 | 003,727,720 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx9_35.dll
[2013/11/24 12.31.08 | 003,497,832 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx9_34.dll
[2013/11/24 12.31.07 | 003,495,784 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx9_33.dll
[2013/11/24 12.31.07 | 003,426,072 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx9_32.dll
[2013/11/24 12.31.07 | 002,414,360 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx9_31.dll
[2013/11/24 12.31.07 | 002,388,176 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx9_30.dll
[2013/11/24 12.31.07 | 002,332,368 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx9_29.dll
[2013/11/24 12.31.07 | 002,323,664 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx9_28.dll
[2013/11/24 12.31.07 | 002,319,568 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx9_27.dll
[2013/11/24 12.31.06 | 002,337,488 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx9_25.dll
[2013/11/24 12.31.06 | 002,297,552 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx9_26.dll
[2013/11/24 12.31.06 | 002,222,800 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx9_24.dll
[2013/11/24 12.31.06 | 002,036,576 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\D3DCompiler_40.dll
[2013/11/24 12.31.06 | 001,846,632 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\D3DCompiler_41.dll
[2013/11/24 12.31.06 | 001,493,528 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\D3DCompiler_39.dll
[2013/11/24 12.31.06 | 001,491,992 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\D3DCompiler_38.dll
[2013/11/24 12.31.06 | 001,420,824 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\D3DCompiler_37.dll
[2013/11/24 12.31.06 | 001,374,232 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\D3DCompiler_36.dll
[2013/11/24 12.31.06 | 001,358,192 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\D3DCompiler_35.dll
[2013/11/24 12.31.06 | 001,124,720 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\D3DCompiler_34.dll
[2013/11/24 12.31.06 | 001,123,696 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\D3DCompiler_33.dll
[2013/11/24 12.31.06 | 000,467,984 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx10_39.dll
[2013/11/24 12.31.06 | 000,467,984 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx10_38.dll
[2013/11/24 12.31.06 | 000,462,864 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx10_37.dll
[2013/11/24 12.31.06 | 000,453,456 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx10_41.dll
[2013/11/24 12.31.06 | 000,452,440 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx10_40.dll
[2013/11/24 12.31.06 | 000,444,776 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx10_36.dll
[2013/11/24 12.31.06 | 000,444,776 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx10_35.dll
[2013/11/24 12.31.06 | 000,443,752 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx10_34.dll
[2013/11/24 12.31.06 | 000,443,752 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx10_33.dll
[2013/11/24 12.31.06 | 000,440,080 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx10.dll
[2013/11/24 12.30.37 | 000,000,000 | ---D | C] -- D:\Programmi\Windows Media Connect 2
[2013/11/24 12.30.15 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\drivers\umdf
[2013/11/24 12.29.34 | 000,000,000 | ---D | C] -- D:\WINDOWS\WBEM
[2013/11/24 12.29.25 | 000,026,144 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\spupdsvc.exe
[2013/11/24 12.28.51 | 000,000,000 | -H-D | C] -- D:\WINDOWS\ie8
[2013/11/24 12.28.01 | 000,112,128 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\mapi32.dll
[2013/11/24 12.27.33 | 000,000,000 | -HSD | C] -- D:\Documents and Settings\All Users\DRM
[2013/11/24 12.27.21 | 000,000,000 | --SD | C] -- D:\WINDOWS\Downloaded Program Files
[2013/11/24 12.27.21 | 000,000,000 | R--D | C] -- D:\WINDOWS\Offline Web Pages
[2013/11/24 12.27.14 | 000,000,000 | R--D | C] -- D:\Documents and Settings\All Users\Documenti\Immagini
[2013/11/24 12.27.09 | 000,000,000 | -H-D | C] -- D:\Programmi\WindowsUpdate
[2013/11/24 12.27.05 | 000,000,000 | ---D | C] -- D:\Programmi\Servizi in linea
[2013/11/24 12.26.46 | 000,047,104 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\srdiag.exe
[2013/11/24 12.26.46 | 000,012,288 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\nmevtmsg.dll
[2013/11/24 12.26.46 | 000,012,288 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\nmevtmsg.dll
[2013/11/24 12.26.45 | 000,113,152 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\acctres.dll
[2013/11/24 12.26.45 | 000,012,288 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wb32.exe
[2013/11/24 12.26.45 | 000,012,288 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\cb32.exe
[2013/11/24 12.26.44 | 000,000,000 | ---D | C] -- D:\Programmi\File comuni\Services
[2013/11/24 12.26.41 | 000,073,728 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\icwtutor.exe
[2013/11/24 12.26.41 | 000,065,536 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\icwres.dll
[2013/11/24 12.26.41 | 000,040,960 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\trialoc.dll
[2013/11/24 12.26.41 | 000,016,384 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\icfgnt5.dll
[2013/11/24 12.26.41 | 000,016,384 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\icfgnt5.dll
[2013/11/24 12.26.41 | 000,000,000 | --SD | C] -- D:\WINDOWS\Tasks
[2013/11/24 12.26.40 | 000,023,552 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\mssoapr.dll
[2013/11/24 12.26.40 | 000,016,384 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\isignup.exe
[2013/11/24 12.26.39 | 000,235,520 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\mssoap1.dll
[2013/11/24 12.26.39 | 000,094,720 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\ieinfo5.ocx
[2013/11/24 12.26.39 | 000,025,088 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wisc10.dll
[2013/11/24 12.26.39 | 000,000,000 | ---D | C] -- D:\Programmi\File comuni\MSSoap
[2013/11/24 12.26.38 | 000,759,296 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\vgx.dll
[2013/11/24 12.26.37 | 001,678,336 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\setup_wm.exe
[2013/11/24 12.26.37 | 000,244,224 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\mpvis.dll
[2013/11/24 12.26.37 | 000,096,256 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wmpband.dll
[2013/11/24 12.26.37 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\Macromed
[2013/11/24 12.26.36 | 000,786,432 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\migrate.exe
[2013/11/24 12.26.36 | 000,226,816 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\npdrmv2.dll
[2013/11/24 12.26.36 | 000,221,184 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wmpns.dll
[2013/11/24 12.26.36 | 000,064,000 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wmplayer.exe
[2013/11/24 12.26.36 | 000,033,792 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\custsat.dll
[2013/11/24 12.26.35 | 000,364,544 | ---- | C] (Microsoft Corporation (written by Digital Renaissance Inc.)) -- D:\WINDOWS\System32\dllcache\npdsplay.dll
[2013/11/24 12.26.35 | 000,329,240 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\wucltui.dll
[2013/11/24 12.26.35 | 000,329,240 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wucltui.dll
[2013/11/24 12.26.35 | 000,210,968 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wuweb.dll
[2013/11/24 12.26.35 | 000,010,240 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\npwmsdrm.dll
[2013/11/24 12.26.35 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wuauserv.dll
[2013/11/24 12.26.35 | 000,004,639 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\mplayer2.exe
[2013/11/24 12.26.34 | 001,933,848 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wuaueng.dll
[2013/11/24 12.26.34 | 000,183,808 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\wuaueng1.dll
[2013/11/24 12.26.34 | 000,035,864 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\wups.dll
[2013/11/24 12.26.34 | 000,035,864 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wups.dll
[2013/11/24 12.26.33 | 000,219,160 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wuaucpl.cpl
[2013/11/24 12.26.32 | 000,577,048 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\wuapi.dll
[2013/11/24 12.26.32 | 000,577,048 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wuapi.dll
[2013/11/24 12.26.32 | 000,298,496 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\wuauclt1.exe
[2013/11/24 12.26.32 | 000,053,784 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wuauclt.exe
[2013/11/24 12.26.32 | 000,018,944 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\qmgrprxy.dll
[2013/11/24 12.26.32 | 000,018,944 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\qmgrprxy.dll
[2013/11/24 12.26.32 | 000,008,192 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\bitsprx2.dll
[2013/11/24 12.26.32 | 000,008,192 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\bitsprx2.dll
[2013/11/24 12.26.32 | 000,007,168 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\bitsprx4.dll
[2013/11/24 12.26.32 | 000,007,168 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\bitsprx4.dll
[2013/11/24 12.26.32 | 000,007,168 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\bitsprx3.dll
[2013/11/24 12.26.32 | 000,007,168 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\bitsprx3.dll
[2013/11/24 12.26.31 | 000,409,088 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\qmgr.dll
[2013/11/24 12.26.30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wmm2res2.dll
[2013/11/24 12.26.30 | 000,004,096 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wmm2eres.dll
[2013/11/24 12.26.29 | 000,502,272 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wmm2fxa.dll
[2013/11/24 12.26.29 | 000,402,432 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wmm2filt.dll
[2013/11/24 12.26.29 | 000,325,632 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wmm2fxb.dll
[2013/11/24 12.26.29 | 000,167,936 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wmm2ae.dll
[2013/11/24 12.26.29 | 000,007,680 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wmm2ext.dll
[2013/11/24 12.26.27 | 003,558,912 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\moviemk.exe
[2013/11/24 12.26.26 | 000,000,000 | ---D | C] -- D:\Programmi\Movie Maker
[2013/11/24 12.26.07 | 000,565,760 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msobmain.dll
[2013/11/24 12.26.07 | 000,122,368 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msobcomm.dll
[2013/11/24 12.26.07 | 000,030,720 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msobshel.dll
[2013/11/24 12.26.07 | 000,029,184 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msoobe.exe
[2013/11/24 12.26.07 | 000,019,456 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msobweb.dll
[2013/11/24 12.26.07 | 000,016,384 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msobdl.dll
[2013/11/24 12.26.06 | 000,051,712 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\oobebaln.exe
[2013/11/24 12.26.02 | 000,129,792 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\fltmgr.sys
[2013/11/24 12.26.02 | 000,023,040 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\fltMc.exe
[2013/11/24 12.26.02 | 000,023,040 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\fltmc.exe
[2013/11/24 12.26.02 | 000,016,896 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\fltlib.dll
[2013/11/24 12.26.01 | 000,309,248 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\srrstr.dll
[2013/11/24 12.26.01 | 000,171,520 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\srsvc.dll
[2013/11/24 12.26.01 | 000,081,920 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\ils.dll
[2013/11/24 12.26.01 | 000,081,920 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\ils.dll
[2013/11/24 12.26.01 | 000,073,472 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\sr.sys
[2013/11/24 12.26.01 | 000,032,768 | ---- | C] (Intel Corporation) -- D:\WINDOWS\System32\isrdbg32.dll
[2013/11/24 12.26.01 | 000,032,768 | ---- | C] (Intel Corporation) -- D:\WINDOWS\System32\dllcache\isrdbg32.dll
[2013/11/24 12.26.01 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\Restore
[2013/11/24 12.26.00 | 000,229,376 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\nmas.dll
[2013/11/24 12.26.00 | 000,069,632 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msconf.dll
[2013/11/24 12.26.00 | 000,069,632 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msconf.dll
[2013/11/24 12.26.00 | 000,040,960 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\dcap32.dll
[2013/11/24 12.26.00 | 000,034,560 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\mnmdd.dll
[2013/11/24 12.26.00 | 000,034,560 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\mnmdd.dll
[2013/11/24 12.26.00 | 000,032,768 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\mnmsrvc.exe
[2013/11/24 12.26.00 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\nmmkcert.dll
[2013/11/24 12.26.00 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\nmmkcert.dll
[2013/11/24 12.25.59 | 000,385,024 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\callcont.dll
[2013/11/24 12.25.59 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\nmasnt.dll
[2013/11/24 12.25.58 | 000,274,432 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\mst120.dll
[2013/11/24 12.25.58 | 000,221,184 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\nac.dll
[2013/11/24 12.25.58 | 000,077,824 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\nmcom.dll
[2013/11/24 12.25.58 | 000,061,440 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\rrcm.dll
[2013/11/24 12.25.58 | 000,057,344 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\mst123.dll
[2013/11/24 12.25.58 | 000,057,344 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\h323cc.dll
[2013/11/24 12.25.58 | 000,045,056 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\confmrsl.dll
[2013/11/24 12.25.57 | 001,036,288 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\conf.exe
[2013/11/24 12.25.57 | 000,188,416 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\nmwb.dll
[2013/11/24 12.25.57 | 000,172,032 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\nmoldwb.dll
[2013/11/24 12.25.57 | 000,151,552 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\nmft.dll
[2013/11/24 12.25.57 | 000,105,984 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msoert2.dll
[2013/11/24 12.25.57 | 000,105,984 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msoert2.dll
[2013/11/24 12.25.57 | 000,081,920 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\nmchat.dll
[2013/11/24 12.25.57 | 000,000,000 | ---D | C] -- D:\Programmi\NetMeeting
[2013/11/24 12.25.56 | 000,252,928 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msoeacct.dll
[2013/11/24 12.25.56 | 000,252,928 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msoeacct.dll
[2013/11/24 12.25.55 | 000,692,736 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\inetcomm.dll
[2013/11/24 12.25.55 | 000,086,528 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\directdb.dll
[2013/11/24 12.25.55 | 000,051,200 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\inetres.dll
[2013/11/24 12.25.55 | 000,051,200 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\inetres.dll
[2013/11/24 12.25.54 | 000,104,448 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\oeimport.dll
[2013/11/24 12.25.53 | 000,194,560 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\schedsvc.dll
[2013/11/24 12.25.53 | 000,073,728 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\setup50.exe
[2013/11/24 12.25.53 | 000,035,328 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\oemiglib.dll
[2013/11/24 12.25.53 | 000,012,288 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\mstinit.exe
[2013/11/24 12.25.53 | 000,012,288 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\mstinit.exe
[2013/11/24 12.25.53 | 000,000,000 | ---D | C] -- D:\Programmi\Outlook Express
[2013/11/24 12.25.52 | 000,278,528 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\inetcfg.dll
[2013/11/24 12.25.52 | 000,278,528 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\inetcfg.dll
[2013/11/24 12.25.52 | 000,086,016 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\isign32.dll
[2013/11/24 12.25.52 | 000,086,016 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\isign32.dll
[2013/11/24 12.25.52 | 000,073,728 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\icwdial.dll
[2013/11/24 12.25.52 | 000,073,728 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\icwdial.dll
[2013/11/24 12.25.52 | 000,065,536 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\icwphbk.dll
[2013/11/24 12.25.52 | 000,065,536 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\icwphbk.dll
[2013/11/24 12.25.51 | 000,172,032 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\icwhelp.dll
[2013/11/24 12.25.51 | 000,061,440 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\icwconn.dll
[2013/11/24 12.25.51 | 000,049,152 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\icwutil.dll
[2013/11/24 12.25.51 | 000,032,768 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\icwdl.dll
[2013/11/24 12.25.51 | 000,024,576 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\icwrmind.exe
[2013/11/24 12.25.51 | 000,020,480 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\inetwiz.exe
[2013/11/24 12.25.50 | 000,554,008 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\dao360.dll
[2013/11/24 12.25.50 | 000,217,088 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\sqlxmlx.dll
[2013/11/24 12.25.50 | 000,216,576 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\icwconn1.exe
[2013/11/24 12.25.50 | 000,086,016 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\icwconn2.exe
[2013/11/24 12.25.49 | 000,204,800 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msdaps.dll
[2013/11/24 12.25.49 | 000,094,208 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msdatl3.dll
[2013/11/24 12.25.49 | 000,077,824 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msdaosp.dll
[2013/11/24 12.25.49 | 000,073,728 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\oledb32r.dll
[2013/11/24 12.25.49 | 000,024,576 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msxactps.dll
[2013/11/24 12.25.49 | 000,020,480 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msdatt.dll
[2013/11/24 12.25.49 | 000,016,384 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msdasqlr.dll
[2013/11/24 12.25.49 | 000,004,096 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msdaurl.dll
[2013/11/24 12.25.48 | 000,315,392 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msdasql.dll
[2013/11/24 12.25.48 | 000,233,472 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msdaora.dll
[2013/11/24 12.25.48 | 000,200,704 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msadox.dll
[2013/11/24 12.25.48 | 000,180,224 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msadomd.dll
[2013/11/24 12.25.48 | 000,102,400 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msjro.dll
[2013/11/24 12.25.48 | 000,081,920 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msado27.tlb
[2013/11/24 12.25.48 | 000,081,920 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msado26.tlb
[2013/11/24 12.25.48 | 000,081,920 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msado25.tlb
[2013/11/24 12.25.48 | 000,061,440 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msado21.tlb
[2013/11/24 12.25.48 | 000,061,440 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msado20.tlb
[2013/11/24 12.25.48 | 000,057,344 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msadrh15.dll
[2013/11/24 12.25.48 | 000,057,344 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msador15.dll
[2013/11/24 12.25.48 | 000,020,480 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msdaorar.dll
[2013/11/24 12.25.48 | 000,004,096 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msdasc.dll
[2013/11/24 12.25.48 | 000,004,096 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msdaer.dll
[2013/11/24 12.25.48 | 000,004,096 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msdaenum.dll
[2013/11/24 12.25.48 | 000,004,096 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msdadc.dll
[2013/11/24 12.25.47 | 000,536,576 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msado15.dll
[2013/11/24 12.25.47 | 000,200,704 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msdaprst.dll
[2013/11/24 12.25.47 | 000,118,784 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msdarem.dll
[2013/11/24 12.25.47 | 000,036,864 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msdfmap.dll
[2013/11/24 12.25.47 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msader15.dll
[2013/11/24 12.25.47 | 000,016,384 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msdaremr.dll
[2013/11/24 12.25.47 | 000,016,384 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msdaprsr.dll
[2013/11/24 12.25.45 | 000,331,776 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msadce.dll
[2013/11/24 12.25.45 | 000,155,648 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msadds.dll
[2013/11/24 12.25.45 | 000,143,360 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msadco.dll
[2013/11/24 12.25.45 | 000,061,440 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msadcf.dll
[2013/11/24 12.25.45 | 000,053,248 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msadcs.dll
[2013/11/24 12.25.45 | 000,024,576 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msaddsr.dll
[2013/11/24 12.25.45 | 000,020,480 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msadcer.dll
[2013/11/24 12.25.45 | 000,016,384 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msadcor.dll
[2013/11/24 12.25.45 | 000,016,384 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msadcfr.dll
[2013/11/24 12.25.45 | 000,000,000 | ---D | C] -- D:\Programmi\File comuni\System
[2013/11/24 12.25.44 | 000,018,432 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\iedw.exe
[2013/11/24 12.25.44 | 000,000,000 | ---D | C] -- D:\Programmi\File comuni\Microsoft Shared
[2013/11/24 12.25.43 | 000,000,000 | ---D | C] -- D:\Programmi\Internet Explorer
[2013/11/24 12.24.57 | 000,000,000 | R--D | C] -- D:\Documents and Settings\All Users\Menu Avvio\Programmi\Strumenti di amministrazione
[2013/11/24 12.24.57 | 000,000,000 | ---D | C] -- D:\WINDOWS\Registration
[2013/11/24 12.24.49 | 000,000,000 | ---D | C] -- D:\Programmi\Windows Media Player
[2013/11/24 12.24.43 | 000,307,200 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\sndvol32.exe
[2013/11/24 12.24.43 | 000,046,592 | ---- | C] (Hilgraeve, Inc.) -- D:\WINDOWS\System32\hticons.dll
[2013/11/24 12.24.43 | 000,013,312 | ---- | C] (Hilgraeve, Inc.) -- D:\WINDOWS\System32\dllcache\htrn_jis.dll
[2013/11/24 12.24.42 | 000,233,472 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\avtapi.dll
[2013/11/24 12.24.42 | 000,233,472 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\avtapi.dll
[2013/11/24 12.24.42 | 000,073,216 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\avwav.dll
[2013/11/24 12.24.42 | 000,073,216 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\avwav.dll
[2013/11/24 12.24.42 | 000,035,840 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\winchat.exe
[2013/11/24 12.24.42 | 000,035,840 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\winchat.exe
[2013/11/24 12.24.42 | 000,016,384 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\avmeter.dll
[2013/11/24 12.24.42 | 000,016,384 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\avmeter.dll
[2013/11/24 12.24.40 | 000,605,696 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\getuname.dll
[2013/11/24 12.24.40 | 000,605,696 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\getuname.dll
[2013/11/24 12.24.39 | 000,116,736 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\calc.exe
[2013/11/24 12.24.39 | 000,082,432 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\charmap.exe
[2013/11/24 12.24.39 | 000,017,408 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\tsshutdn.exe
[2013/11/24 12.24.39 | 000,017,408 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\tsshutdn.exe
[2013/11/24 12.24.39 | 000,016,384 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\tskill.exe
[2013/11/24 12.24.39 | 000,016,384 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\tskill.exe
[2013/11/24 12.24.39 | 000,015,360 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\tsdiscon.exe
[2013/11/24 12.24.39 | 000,015,360 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\tsdiscon.exe
[2013/11/24 12.24.39 | 000,009,728 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\reset.exe
[2013/11/24 12.24.39 | 000,009,728 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\reset.exe
[2013/11/24 12.24.38 | 000,033,792 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\regini.exe
[2013/11/24 12.24.38 | 000,033,792 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\regini.exe
[2013/11/24 12.24.38 | 000,023,040 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\qwinsta.exe
[2013/11/24 12.24.38 | 000,023,040 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\qwinsta.exe
[2013/11/24 12.24.38 | 000,016,384 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\rwinsta.exe
[2013/11/24 12.24.38 | 000,016,384 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\rwinsta.exe
[2013/11/24 12.24.38 | 000,015,360 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\tscon.exe
[2013/11/24 12.24.38 | 000,015,360 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\tscon.exe
[2013/11/24 12.24.38 | 000,015,360 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\shadow.exe
[2013/11/24 12.24.38 | 000,015,360 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\shadow.exe
[2013/11/24 12.24.38 | 000,004,608 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\rdpcfgex.dll
[2013/11/24 12.24.38 | 000,004,608 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\rdpcfgex.dll
[2013/11/24 12.24.37 | 000,022,528 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msg.exe
[2013/11/24 12.24.37 | 000,022,528 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msg.exe
[2013/11/24 12.24.37 | 000,017,408 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\qappsrv.exe
[2013/11/24 12.24.37 | 000,017,408 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\qappsrv.exe
[2013/11/24 12.24.37 | 000,015,872 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\logoff.exe
[2013/11/24 12.24.37 | 000,015,872 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\logoff.exe
[2013/11/24 12.24.37 | 000,015,872 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\cdmodem.dll
[2013/11/24 12.24.37 | 000,015,872 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\cdmodem.dll
[2013/11/24 12.24.36 | 000,045,568 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wmi2xml.dll
[2013/11/24 12.24.36 | 000,019,456 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\mtsadmin.tlb
[2013/11/24 12.24.32 | 000,116,224 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\updprov.dll
[2013/11/24 12.24.32 | 000,077,824 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wmipicmp.dll
[2013/11/24 12.24.32 | 000,061,440 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wmimsg.dll
[2013/11/24 12.24.32 | 000,059,904 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wbemdisp.tlb
[2013/11/24 12.24.32 | 000,052,224 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wmitimep.dll
[2013/11/24 12.24.32 | 000,031,232 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wbemads.tlb
[2013/11/24 12.24.32 | 000,017,408 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\winmgmtr.dll
[2013/11/24 12.24.32 | 000,013,824 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\winmgmt.exe
[2013/11/24 12.24.32 | 000,012,288 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wbemads.dll
[2013/11/24 12.24.31 | 000,273,920 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msiprov.dll
[2013/11/24 12.24.31 | 000,061,952 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\tmplprov.dll
[2013/11/24 12.24.31 | 000,059,904 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\trnsprov.dll
[2013/11/24 12.24.31 | 000,053,248 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\fwdprov.dll
[2013/11/24 12.24.31 | 000,040,960 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\smtpcons.dll
[2013/11/24 12.24.31 | 000,016,896 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\unsecapp.exe
[2013/11/24 12.24.30 | 000,352,768 | ---- | C] (Hilgraeve, Inc.) -- D:\WINDOWS\System32\hypertrm.dll
[2013/11/24 12.24.30 | 000,124,416 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\mplay32.exe
[2013/11/24 12.24.30 | 000,124,416 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\mplay32.exe
[2013/11/24 12.24.30 | 000,120,320 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\dsprov.dll
[2013/11/24 12.24.29 | 000,346,112 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\mspaint.exe
[2013/11/24 12.24.29 | 000,021,896 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\tdtcp.sys
[2013/11/24 12.24.29 | 000,012,040 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\tdpipe.sys
[2013/11/24 12.24.29 | 000,000,000 | ---D | C] -- D:\Programmi\Windows NT
[2013/11/24 12.24.28 | 000,290,304 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\rhttpaa.dll
[2013/11/24 12.24.28 | 000,290,304 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\rhttpaa.dll
[2013/11/24 12.24.28 | 000,139,784 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\rdpwd.sys
[2013/11/24 12.24.28 | 000,136,192 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\aaclient.dll
[2013/11/24 12.24.28 | 000,136,192 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\aaclient.dll
[2013/11/24 12.24.28 | 000,094,208 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\tscfgwmi.dll
[2013/11/24 12.24.28 | 000,094,208 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\tscfgwmi.dll
[2013/11/24 12.24.28 | 000,053,248 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\tsgqec.dll
[2013/11/24 12.24.28 | 000,053,248 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\tsgqec.dll
[2013/11/24 12.24.26 | 002,067,456 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\lhmstscx.dll
[2013/11/24 12.24.25 | 000,677,888 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\lhmstsc.exe
[2013/11/24 12.24.25 | 000,147,968 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\rdchost.dll
[2013/11/24 12.24.25 | 000,147,968 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\rdchost.dll
[2013/11/24 12.24.25 | 000,142,336 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\sessmgr.exe
[2013/11/24 12.24.25 | 000,067,072 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\rdshost.exe
[2013/11/24 12.24.25 | 000,067,072 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\rdshost.exe
[2013/11/24 12.24.25 | 000,013,824 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\rdsaddin.exe
[2013/11/24 12.24.25 | 000,013,824 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\rdsaddin.exe
[2013/11/24 12.24.24 | 000,296,960 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\termsrv.dll
[2013/11/24 12.24.24 | 000,087,176 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\rdpwsx.dll
[2013/11/24 12.24.24 | 000,087,176 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\rdpwsx.dll
[2013/11/24 12.24.24 | 000,062,976 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\rdpclip.exe
[2013/11/24 12.24.24 | 000,062,976 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\rdpclip.exe
[2013/11/24 12.24.24 | 000,039,424 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\cfgbkend.dll
[2013/11/24 12.24.24 | 000,039,424 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\cfgbkend.dll
[2013/11/24 12.24.24 | 000,020,480 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\qprocess.exe
[2013/11/24 12.24.24 | 000,020,480 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\qprocess.exe
[2013/11/24 12.24.24 | 000,019,968 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\rdpsnd.dll
[2013/11/24 12.24.24 | 000,019,968 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\rdpsnd.dll
[2013/11/24 12.24.24 | 000,011,264 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\icaapi.dll
[2013/11/24 12.24.23 | 000,956,928 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msdtctm.dll
[2013/11/24 12.24.23 | 000,956,928 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msdtctm.dll
[2013/11/24 12.24.23 | 000,428,032 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msdtcprx.dll
[2013/11/24 12.24.23 | 000,428,032 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msdtcprx.dll
[2013/11/24 12.24.23 | 000,161,792 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msdtcuiu.dll
[2013/11/24 12.24.23 | 000,161,792 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msdtcuiu.dll
[2013/11/24 12.24.23 | 000,091,648 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\mtxoci.dll
[2013/11/24 12.24.23 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\MsDtc
[2013/11/24 12.24.22 | 000,058,880 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msdtclog.dll
[2013/11/24 12.24.22 | 000,058,880 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\msdtclog.dll
[2013/11/24 12.24.22 | 000,034,304 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\mtxlegih.dll
[2013/11/24 12.24.22 | 000,034,304 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\mtxlegih.dll
[2013/11/24 12.24.22 | 000,030,720 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\mtxdm.dll
[2013/11/24 12.24.22 | 000,030,720 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\mtxdm.dll
[2013/11/24 12.24.22 | 000,011,776 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\xolehlp.dll
[2013/11/24 12.24.22 | 000,011,776 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\xolehlp.dll
[2013/11/24 12.24.22 | 000,009,728 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\comrepl.exe
[2013/11/24 12.24.22 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\dcomcnfg.exe
[2013/11/24 12.24.22 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dcomcnfg.exe
[2013/11/24 12.24.22 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\comrereg.exe
[2013/11/24 12.24.22 | 000,004,096 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\mtxex.dll
[2013/11/24 12.24.22 | 000,004,096 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\mtxex.dll
[2013/11/24 12.24.21 | 000,195,072 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\comadmin.dll
[2013/11/24 12.24.21 | 000,110,592 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\clbcatex.dll
[2013/11/24 12.24.21 | 000,110,592 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\clbcatex.dll
[2013/11/24 12.24.21 | 000,097,792 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\comrepl.dll
[2013/11/24 12.24.21 | 000,097,792 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\comrepl.dll
[2013/11/24 12.24.21 | 000,085,504 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\catsrvps.dll
[2013/11/24 12.24.21 | 000,085,504 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\catsrvps.dll
[2013/11/24 12.24.21 | 000,060,416 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\colbact.dll
[2013/11/24 12.24.21 | 000,059,392 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\stclient.dll
[2013/11/24 12.24.21 | 000,059,392 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\stclient.dll
[2013/11/24 12.24.21 | 000,028,160 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\comaddin.dll
[2013/11/24 12.24.21 | 000,028,160 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\comaddin.dll
[2013/11/24 12.24.21 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\Com
[2013/11/24 12.24.20 | 000,625,664 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\catsrvut.dll
[2013/11/24 12.24.20 | 000,226,304 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\catsrv.dll
[2013/11/24 12.24.19 | 001,267,200 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\comsvcs.dll
[2013/11/24 12.24.19 | 000,539,648 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\comuid.dll
[2013/11/24 12.24.19 | 000,539,648 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\comuid.dll
[2013/11/24 12.24.19 | 000,167,424 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\comsnap.dll
[2013/11/24 12.24.19 | 000,167,424 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\comsnap.dll
[2013/11/24 12.24.18 | 000,498,688 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\clbcatq.dll
[2013/11/24 12.24.16 | 000,368,640 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wmic.exe
[2013/11/24 12.24.16 | 000,156,672 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wmipcima.dll
[2013/11/24 12.24.16 | 000,145,408 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wmisvc.dll
[2013/11/24 12.24.16 | 000,144,896 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wmiprov.dll
[2013/11/24 12.24.16 | 000,140,800 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wmidcprv.dll
[2013/11/24 12.24.16 | 000,132,096 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wmipdskq.dll
[2013/11/24 12.24.16 | 000,126,464 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wmiapsrv.exe
[2013/11/24 12.24.16 | 000,098,304 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wmiutils.dll
[2013/11/24 12.24.16 | 000,088,576 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wmiaprpl.dll
[2013/11/24 12.24.16 | 000,062,464 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wmipjobj.dll
[2013/11/24 12.24.16 | 000,061,952 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wmipiprt.dll
[2013/11/24 12.24.16 | 000,060,928 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wmicookr.dll
[2013/11/24 12.24.16 | 000,041,472 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wmipsess.dll
[2013/11/24 12.24.15 | 000,196,608 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wmiadap.exe
[2013/11/24 12.24.15 | 000,007,168 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wmiapres.dll
[2013/11/24 12.24.14 | 000,531,456 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wbemcore.dll
[2013/11/24 12.24.14 | 000,273,920 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wbemess.dll
[2013/11/24 12.24.14 | 000,197,120 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wbemupgd.dll
[2013/11/24 12.24.14 | 000,178,176 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wbemdisp.dll
[2013/11/24 12.24.14 | 000,118,272 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wbemtest.exe
[2013/11/24 12.24.14 | 000,071,680 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wbemcons.dll
[2013/11/24 12.24.14 | 000,043,520 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wbemsvc.dll
[2013/11/24 12.24.14 | 000,018,944 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wbemprox.dll
[2013/11/24 12.24.13 | 000,214,528 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wbemcomn.dll
[2013/11/24 12.24.13 | 000,199,168 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\wbemcntl.dll
[2013/11/24 12.24.13 | 000,178,176 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\repdrvfs.dll
[2013/11/24 12.24.13 | 000,131,584 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\viewprov.dll
[2013/11/24 12.24.13 | 000,086,528 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\stdprov.dll
[2013/11/24 12.24.13 | 000,036,352 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\scrcons.exe
[2013/11/24 12.24.12 | 000,237,056 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\provthrd.dll
[2013/11/24 12.24.12 | 000,212,992 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\ntevt.dll
[2013/11/24 12.24.12 | 000,124,416 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\mofd.dll
[2013/11/24 12.24.12 | 000,092,672 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\policman.dll
[2013/11/24 12.24.12 | 000,047,104 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\ncprov.dll
[2013/11/24 12.24.12 | 000,024,576 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\krnlprov.dll
[2013/11/24 12.24.12 | 000,016,896 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\mofcomp.exe
[2013/11/24 12.24.11 | 000,247,808 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\esscli.dll
[2013/11/24 12.24.11 | 000,185,344 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\framedyn.dll
[2013/11/24 12.24.10 | 001,359,360 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\cimwin32.dll
[2013/11/24 12.24.10 | 000,111,616 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\servdeps.dll
[2013/11/24 12.24.10 | 000,058,880 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\licwmi.dll
[2013/11/24 12.24.10 | 000,058,880 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\licwmi.dll
[2013/11/24 12.24.10 | 000,017,920 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\mmfutil.dll
[2013/11/24 12.24.10 | 000,017,920 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\mmfutil.dll
[2013/11/24 12.24.09 | 000,188,416 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\cmprops.dll
[2013/11/24 12.24.09 | 000,188,416 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\cmprops.dll
[2013/11/24 12.24.05 | 000,000,000 | R--D | C] -- D:\Documents and Settings\All Users\Documenti\Video
[2013/11/24 12.23.44 | 000,000,000 | R--D | C] -- D:\Documents and Settings\All Users\Menu Avvio\Programmi\Accessori
[6 D:\WINDOWS\System32\*.tmp files -> D:\WINDOWS\System32\*.tmp -> ]
[1 D:\WINDOWS\*.tmp files -> D:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/12/22 21.45.00 | 000,001,134 | ---- | M] () -- D:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2013/12/22 21.25.55 | 000,000,398 | -H-- | M] () -- D:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job
[2013/12/22 21.15.46 | 000,001,130 | ---- | M] () -- D:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2013/12/22 21.15.46 | 000,000,236 | ---- | M] () -- D:\WINDOWS\tasks\OGALogon.job
[2013/12/22 21.15.43 | 000,002,048 | --S- | M] () -- D:\WINDOWS\bootstat.dat
[2013/12/22 20.23.45 | 000,602,112 | ---- | M] (OldTimer Tools) -- D:\Documents and Settings\Giovanni\Desktop\OTL.exe
[2013/12/22 19.39.50 | 000,000,756 | ---- | M] () -- D:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
[2013/12/22 19.36.36 | 001,226,750 | ---- | M] () -- D:\Documents and Settings\Giovanni\Desktop\adwcleaner.exe
[2013/12/22 19.18.37 | 000,000,440 | -H-- | M] () -- D:\WINDOWS\tasks\User_Feed_Synchronization-{0B3A3860-AA29-4AF0-9C41-1C0154027B88}.job
[2013/12/22 13.04.54 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- D:\Documents and Settings\Giovanni\Desktop\HijackThis.exe
[2013/12/21 17.17.25 | 000,076,288 | ---- | M] () -- D:\Documents and Settings\Giovanni\Impostazioni locali\Dati applicazioni\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013/12/21 16.48.53 | 000,094,632 | ---- | M] (Oracle Corporation) -- D:\WINDOWS\System32\WindowsAccessBridge.dll
[2013/12/21 16.48.47 | 000,264,616 | ---- | M] (Oracle Corporation) -- D:\WINDOWS\System32\javaws.exe
[2013/12/21 16.48.46 | 000,175,016 | ---- | M] (Oracle Corporation) -- D:\WINDOWS\System32\javaw.exe
[2013/12/21 16.48.46 | 000,174,504 | ---- | M] (Oracle Corporation) -- D:\WINDOWS\System32\java.exe
[2013/12/21 16.48.46 | 000,145,408 | ---- | M] (Oracle Corporation) -- D:\WINDOWS\System32\javacpl.cpl
[2013/12/21 16.48.40 | 000,002,241 | ---- | M] () -- D:\Documents and Settings\All Users\Desktop\Skype.lnk
[2013/12/21 13.06.57 | 000,000,504 | ---- | M] () -- D:\Documents and Settings\Giovanni\Desktop\Immagini.lnk
[2013/12/21 13.00.31 | 000,000,665 | ---- | M] () -- D:\Documents and Settings\All Users\Desktop\EPSON Scan.lnk
[2013/12/21 12.33.27 | 000,132,480 | ---- | M] () -- D:\WINDOWS\System32\FNTCACHE.DAT
[2013/12/21 11.21.02 | 000,002,206 | ---- | M] () -- D:\WINDOWS\System32\wpa.dbl
[2013/12/18 12.08.58 | 000,002,562 | ---- | M] () -- D:\WINDOWS\diagwrn.xml
[2013/12/18 12.08.58 | 000,001,908 | ---- | M] () -- D:\WINDOWS\diagerr.xml
[2013/12/18 11.58.43 | 000,000,000 | ---- | M] () -- D:\WINDOWS\System32\drivers\lvuvc.hs
[2013/11/26 17.53.27 | 000,479,098 | ---- | M] () -- D:\WINDOWS\System32\perfh010.dat
[2013/11/26 17.53.27 | 000,432,646 | ---- | M] () -- D:\WINDOWS\System32\perfh009.dat
[2013/11/26 17.53.27 | 000,079,582 | ---- | M] () -- D:\WINDOWS\System32\perfc010.dat
[2013/11/26 17.53.27 | 000,067,602 | ---- | M] () -- D:\WINDOWS\System32\perfc009.dat
[2013/11/26 16.14.19 | 000,001,226 | ---- | M] () -- D:\Documents and Settings\All Users\Desktop\Logitech Webcam Software .lnk
[2013/11/26 13.12.24 | 000,000,000 | ---- | M] () -- D:\WINDOWS\nsreg.dat
[2013/11/24 15.08.26 | 000,000,826 | ---- | M] () -- D:\Documents and Settings\All Users\Desktop\Ashampoo Burning Studio 2009.lnk
[2013/11/24 14.49.39 | 000,001,912 | ---- | M] () -- D:\WINDOWS\epplauncher.mif
[2013/11/24 14.31.26 | 000,001,784 | ---- | M] () -- D:\Documents and Settings\All Users\Desktop\Corel Paint Shop Pro X.lnk
[2013/11/24 14.30.33 | 000,000,952 | -HS- | M] () -- D:\WINDOWS\System32\KGyGaAvL.sys
[2013/11/24 14.15.59 | 000,000,862 | ---- | M] () -- D:\Documents and Settings\Giovanni\Desktop\AVS Slideshow Maker.lnk
[2013/11/24 13.08.06 | 000,004,444 | ---- | M] () -- D:\WINDOWS\System32\pid.PNF
[2013/11/24 12.41.16 | 000,000,761 | ---- | M] () -- D:\WINDOWS\System32\$winnt$.inf
[2013/11/24 12.37.05 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- D:\WINDOWS\System32\deploytk.dll
[2013/11/24 12.30.44 | 000,023,392 | ---- | M] () -- D:\WINDOWS\System32\nscompat.tlb
[2013/11/24 12.30.44 | 000,016,832 | ---- | M] () -- D:\WINDOWS\System32\amcompat.tlb
[2013/11/24 12.28.15 | 000,002,885 | ---- | M] () -- D:\WINDOWS\System32\CONFIG.NT
[2013/11/24 12.28.12 | 000,316,640 | ---- | M] () -- D:\WINDOWS\WMSysPr9.prx
[2013/11/24 12.28.01 | 000,004,161 | ---- | M] () -- D:\WINDOWS\ODBCINST.INI
[2013/11/24 12.25.14 | 000,021,840 | ---- | M] () -- D:\WINDOWS\System32\emptyregdb.dat
[6 D:\WINDOWS\System32\*.tmp files -> D:\WINDOWS\System32\*.tmp -> ]
[1 D:\WINDOWS\*.tmp files -> D:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/12/22 19.39.50 | 000,000,756 | ---- | C] () -- D:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
[2013/12/22 19.36.17 | 001,226,750 | ---- | C] () -- D:\Documents and Settings\Giovanni\Desktop\adwcleaner.exe
[2013/12/21 13.06.57 | 000,000,504 | ---- | C] () -- D:\Documents and Settings\Giovanni\Desktop\Immagini.lnk
[2013/12/21 13.00.31 | 000,000,665 | ---- | C] () -- D:\Documents and Settings\All Users\Desktop\EPSON Scan.lnk
[2013/12/18 12.05.58 | 000,002,562 | ---- | C] () -- D:\WINDOWS\diagwrn.xml
[2013/12/18 12.05.58 | 000,001,908 | ---- | C] () -- D:\WINDOWS\diagerr.xml
[2013/12/02 17.15.43 | 000,002,241 | ---- | C] () -- D:\Documents and Settings\All Users\Desktop\Skype.lnk
[2013/11/30 19.19.26 | 000,002,299 | ---- | C] () -- D:\Documents and Settings\All Users\Menu Avvio\Programmi\Adobe Reader XI.lnk
[2013/11/30 18.32.21 | 000,000,440 | -H-- | C] () -- D:\WINDOWS\tasks\User_Feed_Synchronization-{0B3A3860-AA29-4AF0-9C41-1C0154027B88}.job
[2013/11/30 12.34.39 | 000,001,134 | ---- | C] () -- D:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2013/11/30 12.34.38 | 000,001,130 | ---- | C] () -- D:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2013/11/27 13.29.17 | 000,000,000 | ---- | C] () -- D:\WINDOWS\System32\drivers\lvuvc.hs
[2013/11/26 16.14.19 | 000,001,226 | ---- | C] () -- D:\Documents and Settings\All Users\Desktop\Logitech Webcam Software .lnk
[2013/11/26 13.31.44 | 000,003,072 | ---- | C] () -- D:\WINDOWS\System32\iacenc.dll
[2013/11/26 13.31.44 | 000,003,072 | ---- | C] () -- D:\WINDOWS\System32\dllcache\iacenc.dll
[2013/11/26 13.12.24 | 000,000,000 | ---- | C] () -- D:\WINDOWS\nsreg.dat
[2013/11/24 15.08.26 | 000,000,826 | ---- | C] () -- D:\Documents and Settings\All Users\Desktop\Ashampoo Burning Studio 2009.lnk
[2013/11/24 14.59.33 | 000,000,398 | -H-- | C] () -- D:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job
[2013/11/24 14.49.39 | 000,001,912 | ---- | C] () -- D:\WINDOWS\epplauncher.mif
[2013/11/24 14.49.33 | 000,001,678 | ---- | C] () -- D:\Documents and Settings\All Users\Menu Avvio\Programmi\Microsoft Security Essentials.lnk
[2013/11/24 14.39.49 | 000,451,072 | ---- | C] () -- D:\WINDOWS\System32\ISSRemoveSP.exe
[2013/11/24 14.31.26 | 000,001,784 | ---- | C] () -- D:\Documents and Settings\All Users\Desktop\Corel Paint Shop Pro X.lnk
[2013/11/24 14.29.53 | 000,000,952 | -HS- | C] () -- D:\WINDOWS\System32\KGyGaAvL.sys
[2013/11/24 14.15.59 | 000,000,862 | ---- | C] () -- D:\Documents and Settings\Giovanni\Desktop\AVS Slideshow Maker.lnk
[2013/11/24 14.09.07 | 000,049,152 | ---- | C] () -- D:\WINDOWS\System32\ChCfg.exe
[2013/11/24 14.08.33 | 000,141,016 | ---- | C] () -- D:\WINDOWS\System32\alsndmgr.wav
[2013/11/24 14.08.29 | 000,147,456 | ---- | C] () -- D:\WINDOWS\System32\RtlCPAPI.dll
[2013/11/24 13.08.06 | 000,004,444 | ---- | C] () -- D:\WINDOWS\System32\pid.PNF
[2013/11/24 13.08.01 | 000,004,161 | ---- | C] () -- D:\WINDOWS\ODBCINST.INI
[2013/11/24 13.07.48 | 000,001,840 | ---- | C] () -- D:\WINDOWS\System32\AUTOEXEC.NT
[2013/11/24 13.07.34 | 000,144,484 | ---- | C] () -- D:\WINDOWS\System32\dllcache\netfx.cat
[2013/11/24 13.07.34 | 000,105,926 | ---- | C] () -- D:\WINDOWS\System32\dllcache\tabletpc.cat
[2013/11/24 13.07.34 | 000,037,509 | ---- | C] () -- D:\WINDOWS\System32\dllcache\MW770.CAT
[2013/11/24 13.07.34 | 000,034,747 | ---- | C] () -- D:\WINDOWS\System32\dllcache\mediactr.cat
[2013/11/24 13.07.34 | 000,033,765 | ---- | C] () -- D:\WINDOWS\System32\dllcache\FP4.CAT
[2013/11/24 13.07.34 | 000,016,825 | ---- | C] () -- D:\WINDOWS\System32\dllcache\IMS.CAT
[2013/11/24 13.07.34 | 000,013,497 | ---- | C] () -- D:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2013/11/24 13.07.34 | 000,012,363 | ---- | C] () -- D:\WINDOWS\System32\dllcache\MSMSGS.CAT
[2013/11/24 13.07.34 | 000,010,027 | ---- | C] () -- D:\WINDOWS\System32\dllcache\MSTSWEB.CAT
[2013/11/24 13.07.34 | 000,008,599 | ---- | C] () -- D:\WINDOWS\System32\dllcache\IASNT4.CAT
[2013/11/24 13.07.34 | 000,007,382 | ---- | C] () -- D:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2013/11/24 13.07.34 | 000,007,334 | ---- | C] () -- D:\WINDOWS\System32\dllcache\wmerrenu.cat
[2013/11/24 13.07.33 | 001,246,366 | ---- | C] () -- D:\WINDOWS\System32\dllcache\SP3.CAT
[2013/11/24 13.07.33 | 000,809,974 | ---- | C] () -- D:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2013/11/24 13.07.33 | 000,399,670 | ---- | C] () -- D:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2013/11/24 13.07.32 | 002,046,387 | ---- | C] () -- D:\WINDOWS\System32\dllcache\NT5.CAT
[2013/11/24 13.07.32 | 000,632,578 | ---- | C] () -- D:\WINDOWS\System32\dllcache\NT5INF.CAT
[2013/11/24 13.06.51 | 000,132,480 | ---- | C] () -- D:\WINDOWS\System32\FNTCACHE.DAT
[2013/11/24 13.06.23 | 000,000,761 | ---- | C] () -- D:\WINDOWS\System32\$winnt$.inf
[2013/11/24 12.57.36 | 000,076,288 | ---- | C] () -- D:\Documents and Settings\Giovanni\Impostazioni locali\Dati applicazioni\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013/11/24 12.50.35 | 000,000,783 | ---- | C] () -- D:\Documents and Settings\Giovanni\Menu Avvio\Programmi\Internet Explorer.lnk
[2013/11/24 12.50.27 | 000,000,718 | ---- | C] () -- D:\Documents and Settings\Giovanni\Menu Avvio\Programmi\Outlook Express.lnk
[2013/11/24 12.50.10 | 000,001,599 | ---- | C] () -- D:\Documents and Settings\Giovanni\Menu Avvio\Programmi\Assistenza remota.lnk
[2013/11/24 12.50.10 | 000,000,768 | ---- | C] () -- D:\Documents and Settings\Giovanni\Menu Avvio\Programmi\Windows Media Player.lnk
[2013/11/24 12.41.07 | 000,002,048 | --S- | C] () -- D:\WINDOWS\bootstat.dat
[2013/11/24 12.39.21 | 001,158,818 | ---- | C] () -- D:\WINDOWS\System32\dllcache\korwbrkr.lex
[2013/11/24 12.39.04 | 000,094,208 | ---- | C] () -- D:\WINDOWS\System32\dllcache\fpencode.dll
[2013/11/24 12.37.47 | 000,000,236 | ---- | C] () -- D:\WINDOWS\tasks\OGALogon.job
[2013/11/24 12.36.01 | 001,634,304 | ---- | C] () -- D:\WINDOWS\System32\XPLogon.scr
[2013/11/24 12.35.58 | 000,294,912 | ---- | C] () -- D:\WINDOWS\System32\Euphoria.scr
[2013/11/24 12.28.15 | 000,002,885 | ---- | C] () -- D:\WINDOWS\System32\CONFIG.NT
[2013/11/24 12.28.11 | 000,023,392 | ---- | C] () -- D:\WINDOWS\System32\nscompat.tlb
[2013/11/24 12.28.11 | 000,016,832 | ---- | C] () -- D:\WINDOWS\System32\amcompat.tlb
[2013/11/24 12.28.10 | 000,316,640 | ---- | C] () -- D:\WINDOWS\WMSysPr9.prx
[2013/11/24 12.27.08 | 000,000,758 | ---- | C] () -- D:\Documents and Settings\All Users\Menu Avvio\Programmi\Windows Movie Maker.lnk
[2013/11/24 12.26.46 | 000,000,984 | ---- | C] () -- D:\WINDOWS\System32\dllcache\srframe.mmf
[2013/11/24 12.25.14 | 000,021,840 | ---- | C] () -- D:\WINDOWS\System32\emptyregdb.dat
[2013/11/24 12.24.39 | 000,003,286 | ---- | C] () -- D:\WINDOWS\System32\tslabels.h
[2013/11/24 12.24.39 | 000,001,161 | ---- | C] () -- D:\WINDOWS\System32\usrlogon.cmd
[2013/11/24 12.24.37 | 000,000,768 | ---- | C] () -- D:\WINDOWS\System32\msdtcprf.h
[2013/11/24 12.24.30 | 000,063,488 | ---- | C] () -- D:\WINDOWS\System32\wmimgmt.msc

========== ZeroAccess Check ==========

[2013/11/24 12.33.14 | 000,000,227 | RHS- | M] () -- D:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2009/01/07 18.21.12 | 001,497,088 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = D:\WINDOWS\system32\wbem\fastprox.dll -- [2009/12/09 12.10.24 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = D:\WINDOWS\system32\wbem\wbemess.dll -- [2008/04/14 12.00.00 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

< End of report >
Torna in alto
 
shapiro
Inviato: Sunday, December 22, 2013 10:43:51 PM

Rank: AiutAmico

Iscritto dal : 8/24/2008
Posts: 4,164
il log sembra a posto, sono dubbioso su questo

D:\Documents and Settings\Giovanni\Impostazioni locali\Dati applicazioni\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

controllalo su virus total
Torna in alto
 
effeelle2
Inviato: Sunday, December 22, 2013 10:47:16 PM

Rank: AiutAmico

Iscritto dal : 11/26/2009
Posts: 86
si può fare nulla per il problema QTCORE4.dll mancante che esce all'avvio?

ecco il contenuto del file che hai chiesto:

SHA256: 83916f103777e88c365ba0beb139d9ce479f181eced16f913fae0be0388d5986
Nome del file: DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
Rapporto rilevamento: 0 / 35
Data analisi: 2013-12-22 21:54:21 UTC ( 2 minuti fa )
Torna in alto
 
shapiro
Inviato: Sunday, December 22, 2013 11:00:05 PM

Rank: AiutAmico

Iscritto dal : 8/24/2008
Posts: 4,164

controlla quel file su virus total
Torna in alto
 
effeelle2
Inviato: Monday, December 23, 2013 11:09:56 AM

Rank: AiutAmico

Iscritto dal : 11/26/2009
Posts: 86
Controllato e quello è il repo che mi ha dato..
Torna in alto
 
Utenti presenti in questo topic
Guest

Aiutamici Forum » FORUM - Istruzioni e Guide » Sicurezza VIRUS » Controllo LOG


Salta al Forum
Aggiunta nuovi Topic disabilitata in questo forum.
Risposte disabilitate in questo forum.
Eliminazione tuoi Post disabilitata in questo forum.
Modifica dei tuoi post disabilitata in questo forum.
Creazione Sondaggi disabilitata in questo forum.
Voto ai sondaggi disabilitato in questo forum.

Main Forum RSS : RSS

Aiutamici Theme
Powered by Yet Another Forum.net versione 1.9.1.8 (NET v2.0) - 3/29/2008
Copyright © 2003-2008 Yet Another Forum.net. All rights reserved.