Aiutamici Forum
Benvenuto Ospite Cerca | Topic Attivi | Utenti | | Log In | Registra

Controllo log per favore Opzioni
latino70
Inviato: Wednesday, December 25, 2013 10:00:18 PM
Rank: AiutAmico

Iscritto dal : 6/18/2005
Posts: 103
Quando navigo mi si aprono delle finestre di pubblicità o pagine di siti internet ho fatto la scansione con hijackthis:


Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21.50.46, on 25/12/2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Programmi\SUPERAntiSpyware\SASCORE.EXE
C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\Programmi\Java\jre7\bin\jqs.exe
C:\Programmi\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Programmi\EeePC\ACPI\AsAcpiSvr.exe
C:\Programmi\EeePC\ACPI\AsEPCMon.exe
C:\Programmi\EeePC\ACPI\AsTray.exe
C:\Programmi\Synaptics\SynTP\SynTPEnh.exe
C:\Programmi\Asus\LiveUpdate\LiveUpdate.exe
C:\WINDOWS\system32\igfxext.exe
C:\Programmi\File comuni\Java\Java Update\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programmi\ASUS\Eee Docking\Eee Docking.exe
C:\Programmi\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Programmi\ASUS\EeePC\Super Hybrid Engine\SuperHybridEngine.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Programmi\Mobile Partner\Mobile Partner.exe
C:\Programmi\Microsoft Security Client\MsMpEng.exe
C:\Programmi\Microsoft Security Client\msseces.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Programmi\Mozilla Firefox\firefox.exe
C:\Programmi\Mozilla Firefox\plugin-container.exe
C:\Programmi\Skype\Phone\Skype.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Utente\Desktop\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://asus.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
R3 - URLSearchHook: UsProvider Class - {539F76FD-084E-4858-86D5-62F02F54AE86} - C:\Programmi\Minibar\Minibar.dll
O2 - BHO: Supporto di collegamento per Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Programmi\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Programmi\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programmi\Java\jre7\bin\ssv.dll
O2 - BHO: Guida per l'accesso a Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programmi\File comuni\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: MinibarBHO - {AA74D58F-ACD0-450D-A85E-6C04B171C044} - C:\Programmi\Minibar\Minibar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programmi\Java\jre7\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Programmi\Windows Live\Toolbar\wltcore.dll
O2 - BHO: Show-Password - {e6ecc342-230c-4f2a-9555-17b076ad7dab} - C:\Programmi\Show-Password\150.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Programmi\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [AsusACPIServer] C:\Programmi\EeePC\ACPI\AsAcpiSvr.exe
O4 - HKLM\..\Run: [AsusEPCMonitor] C:\Programmi\EeePC\ACPI\AsEPCMon.exe
O4 - HKLM\..\Run: [AsusTray] C:\Programmi\EeePC\ACPI\AsTray.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Programmi\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SynAsusAcpi] C:\Programmi\Synaptics\SynTP\SynAsusAcpi.exe
O4 - HKLM\..\Run: [snp2uvc] C:\WINDOWS\vsnp2uvc.exe
O4 - HKLM\..\Run: [LiveUpdate] C:\Programmi\Asus\LiveUpdate\LiveUpdate.exe auto
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programmi\File comuni\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [MSC] "C:\Programmi\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Eee Docking] C:\Programmi\ASUS\Eee Docking\Eee Docking.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Programmi\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [Skype] "C:\Programmi\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO DI RETE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Dropbox.lnk = C:\Documents and Settings\Utente\Dati applicazioni\Dropbox\bin\Dropbox.exe
O4 - Global Startup: SuperHybridEngine.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: Invia a Bluetooth - C:\Programmi\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Invia a periferica &Bluetooth... - C:\Programmi\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: Inserisci blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programmi\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: Inserisci &blog in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programmi\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Invia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: I&nvia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Programmi\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Programmi\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Programmi\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: Visit AppsHat.com - {AAA38851-3CFF-475F-B5E0-720D3645E4A5} - C:\Programmi\Minibar\Minibar.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FILECO~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs:
O22 - SharedTaskScheduler: Precaricatore Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Daemon di cache delle categorie di componenti - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Programmi\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Servizio Google Update (gupdate) (gupdate) - Google Inc. - C:\Programmi\Google\Update\GoogleUpdate.exe
O23 - Service: Servizio Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Programmi\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Programmi\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Programmi\Java\jre7\bin\jqs.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Programmi\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Programmi\Skype\Updater\Updater.exe

--
End of file - 9189 bytes
Sponsor
Inviato: Wednesday, December 25, 2013 10:00:18 PM

 
shapiro
Inviato: Wednesday, December 25, 2013 10:44:58 PM

Rank: AiutAmico

Iscritto dal : 8/24/2008
Posts: 4,164
questa e' una delle infezioni che hai nel pc vediamo di eliminarla

scarica adwcleaner
Chiudi tutti i browser (è importante che siano chiusi: IE,Firefox, Chrome ecc...)
Clicca sul pulsante "Scan".
Finita la scansione clicca su "Clean"
Conferma con OK le varie finestre che ti compariranno.
Il pc si riavvierà, e uscirà il log con le eliminazioni.
Postalo qui.

una volta terminata la scansione Scarica OTL e salvalo sul desktop

Metti la spunta su SCAN ALL USERS.

Sotto output, metti la spunta su minimal output

Clicca sulla freccettina di File Age e seleziona 60 Days

Metti la spunta a LOP Check e Purity Check.

Clicca su RUN SCAN

Lascia fare la scansione senza interferire.

Al termine della scansione trovi due log sul desktop. OTL.txt ed Extras.txt, salvali e caricali su Wikisend,
latino70
Inviato: Wednesday, December 25, 2013 11:23:57 PM
Rank: AiutAmico

Iscritto dal : 6/18/2005
Posts: 103
# AdwCleaner v3.016 - Report created 25/12/2013 at 23:15:18
# Updated 23/12/2013 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Utente - YOUR-LSHU1MG1FC
# Running from : C:\Documents and Settings\Utente\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Programmi\Iminent
Folder Deleted : C:\Programmi\IminentToolbar
Folder Deleted : C:\Programmi\Minibar
Folder Deleted : C:\Programmi\Show-Password
Folder Deleted : C:\Documents and Settings\Utente\Impostazioni locali\Dati applicazioni\Minibar
Folder Deleted : C:\Documents and Settings\Utente\Dati applicazioni\IminentToolbar
Folder Deleted : C:\Documents and Settings\Utente\Dati applicazioni\OpenCandy
File Deleted : C:\Documents and Settings\Utente\Dati applicazioni\Mozilla\Firefox\Profiles\be2np2le.default\user.js
File Deleted : C:\Documents and Settings\Utente\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Local Storage\chrome-extension_igdhbblpcellaljokkpfhcjlagemhgjl_0.localstorage

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Iminent
Key Deleted : HKLM\SOFTWARE\Classes\AppID\WLXQuickTimeShellExt.DLL
Key Deleted : HKLM\SOFTWARE\Classes\ToolBand.EasyHideBtn
Key Deleted : HKLM\SOFTWARE\Classes\ToolBand.EasyHideBtn.1
Key Deleted : HKLM\SOFTWARE\Classes\ToolBand.Localizer
Key Deleted : HKLM\SOFTWARE\Classes\ToolBand.Localizer.1
Key Deleted : HKLM\SOFTWARE\Classes\ToolBand.NameHighlighter
Key Deleted : HKLM\SOFTWARE\Classes\ToolBand.NameHighlighter.1
Key Deleted : HKLM\SOFTWARE\Classes\ToolBand.NameHighlighterStatistics
Key Deleted : HKLM\SOFTWARE\Classes\ToolBand.NameHighlighterStatistics.1
Key Deleted : HKLM\SOFTWARE\Classes\ToolBand.SkypeIEHelper
Key Deleted : HKLM\SOFTWARE\Classes\ToolBand.SkypeIEHelper.1
Key Deleted : HKLM\SOFTWARE\Classes\ToolBand.SNameProxy
Key Deleted : HKLM\SOFTWARE\Classes\ToolBand.SNameProxy.1
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{937936AF-28CA-4973-B8AE-F250406149A2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{539F76FD-084E-4858-86D5-62F02F54AE86}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{60EACC1A-33FA-443D-9846-17B28E2C9BDB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AA74D58F-ACD0-450D-A85E-6C04B171C044}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AAA38851-3CFF-475F-B5E0-720D3645E4A5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{06E50566-0AB7-431C-841D-62794727DAF9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{26E7211D-0650-43CF-8498-4C81E83AEAAA}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{937936AF-28CA-4973-B8AE-F250406149A2}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{F13D3582-1359-4F8F-9A48-EF3AE9F5701C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA74D58F-ACD0-450D-A85E-6C04B171C044}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{AAA38851-3CFF-475F-B5E0-720D3645E4A5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{539F76FD-084E-4858-86D5-62F02F54AE86}]
Key Deleted : HKCU\Software\Show-Password
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Key Deleted : HKLM\Software\Iminent
Key Deleted : HKLM\Software\Minibar
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\AppsHat Mobile Apps
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\AppsHat Mobile Apps
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\FilesFrog Update Checker
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08121C32A9C319F4CB0C11FF059552A4
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\43C098337DB065A49B665D4EA7F16D1C
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75FF6D97AF9FC004A9521D4B83FA6321
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A71991503412AEB42838B02C5ED9F9CD
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CB13D869D7D092348847B7481BB59E27
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F2E0D3DD9E5E4B74CA43BCE77815E287
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F7652513C62FF63448CFF05163719DB7

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702


-\\ Mozilla Firefox v26.0 (it)

[ File : C:\Documents and Settings\Utente\Dati applicazioni\Mozilla\Firefox\Profiles\be2np2le.default\prefs.js ]


-\\ Google Chrome v31.0.1650.63

[ File : C:\Documents and Settings\Utente\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\preferences ]

Deleted : homepage
Deleted : urls_to_restore_on_startup

*************************

AdwCleaner[R0].txt - [6119 octets] - [25/12/2013 23:07:21]
AdwCleaner[R1].txt - [6179 octets] - [25/12/2013 23:13:30]
AdwCleaner[S0].txt - [6238 octets] - [25/12/2013 23:15:18]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [6298 octets] ##########
latino70
Inviato: Wednesday, December 25, 2013 11:54:46 PM
Rank: AiutAmico

Iscritto dal : 6/18/2005
Posts: 103
ho fatto tutto ora questi due log non ho capito dove caricarli, puoi ridirmelo, è un'altro programma l'ultimo che hai detto?
shapiro
Inviato: Thursday, December 26, 2013 12:10:51 AM

Rank: AiutAmico

Iscritto dal : 8/24/2008
Posts: 4,164



no no va bene cosi'


ora fai la scansione con otl e posta il log
latino70
Inviato: Thursday, December 26, 2013 12:17:47 AM
Rank: AiutAmico

Iscritto dal : 6/18/2005
Posts: 103
shapiro ha scritto:



no no va bene cosi'


ora fai la scansione con otl e posta il log


qui ce ne sono 2 te li posto tutti e due

OTL Extras logfile created on: 25/12/2013 23.26.57 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Utente\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000410 | Country: Italia | Language: ITA | Date Format: dd/MM/yyyy

1015,17 Mb Total Physical Memory | 266,80 Mb Available Physical Memory | 26,28% Memory free
2,38 Gb Paging File | 1,53 Gb Available in Paging File | 64,27% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programmi
Drive C: | 72,06 Gb Total Space | 56,46 Gb Free Space | 78,35% Space Free | Partition Type: NTFS
Drive D: | 72,05 Gb Total Space | 71,92 Gb Free Space | 99,81% Space Free | Partition Type: NTFS
Drive E: | 29,26 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive F: | 1,86 Gb Total Space | 0,14 Gb Free Space | 7,25% Space Free | Partition Type: FAT

Computer Name: YOUR-LSHU1MG1FC | User Name: Utente | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

[HKEY_USERS\S-1-5-21-771611404-3383921317-1991890655-1005\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Programmi\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Programmi\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Browse with FastStone] -- "C:\Programmi\FastStone Image Viewer\FSViewer.exe" "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Programmi\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
"ANTIVIRUSDISABLENOTIFY" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\Programmi\Windows Live\Messenger\wlcsdk.exe" = C:\Programmi\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation)
"C:\Programmi\Windows Live\Messenger\msnmsgr.exe" = C:\Programmi\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger -- (Microsoft Corporation)
"C:\Programmi\Windows Live\Sync\WindowsLiveSync.exe" = C:\Programmi\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync -- (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\Programmi\Windows Live\Messenger\wlcsdk.exe" = C:\Programmi\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation)
"C:\Programmi\Windows Live\Messenger\msnmsgr.exe" = C:\Programmi\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger -- (Microsoft Corporation)
"C:\Programmi\Windows Live\Sync\WindowsLiveSync.exe" = C:\Programmi\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync -- (Microsoft Corporation)
"C:\Programmi\Microsoft Office\Office12\ONENOTE.EXE" = C:\Programmi\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote -- (Microsoft Corporation)
"C:\Documents and Settings\Utente\Dati applicazioni\Dropbox\bin\Dropbox.exe" = C:\Documents and Settings\Utente\Dati applicazioni\Dropbox\bin\Dropbox.exe:*:Enabled:Dropbox -- (Dropbox, Inc.)
"C:\Programmi\Skype\Phone\Skype.exe" = C:\Programmi\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{19F5658D-92E8-4A08-8657-D38ABB1574B2}" = Asus ACPI Driver
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Strumento di caricamento di Windows Live
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2682CFF5-D807-48F1-AC86-34A1654877EE}" = Windows Live Toolbar
"{26A24AE4-039D-4CA4-87B4-2F83217045FF}" = Java 7 Update 45
"{28006915-2739-4EBE-B5E8-49B25D32EB33}" = Atheros Client Installation Program
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
"{32714140-CBC5-3FAF-BFC2-3A7376C3EECF}" = Microsoft .NET Framework 4 Client Profile ITA Language Pack
"{34A08914-7A33-4040-A959-1577BF5AFF8A}" = Microsoft Works
"{350C9410-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{38E5A3B1-ADF1-47E0-8024-76310A30EB36}" = LiveUpdate
"{399C37FB-08AF-493B-BFED-20FBD85EDF7F}" = ASUS USB2.0 UVC VGA WebCam
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3FB39BED-37C8-4E60-8E02-315B8C2B07E3}" = USB2.0 UVC Camera Device
"{42146067-CB25-4560-8DA1-EBE8AFC37147}" = Windows Live Family Safety
"{47BACF74-5A07-48BD-BADB-A769550F0F5A}" = FontResizer
"{49C77D21-F91F-4296-B7DF-19C5FF51AF4D}" = Windows Live Call
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3}" = Junk Mail filter update
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.11
"{541DEAC0-5F3D-45E6-B7CB-94ECF3B96748}" = Skype web features
"{587178E7-B1DF-494E-9838-FA4DD36E873C}" = ASUSUpdate for Eee PC
"{5AE2BE5E-930A-481C-817E-C373E8910C8A}" = Windows Live Messenger
"{622A0A32-9711-43D3-A6F1-B0FC78F1A68A}_is1" = MassTube 12.0.0.276 Beta 5
"{6333FC29-BFE5-4024-AC78-958A1A7555D1}" = EeeSplendid
"{6F695BCF-9BDC-48AB-8D46-D57CFAD7A248}" = Assistente per l'accesso a Windows Live
"{78EA81C3-5E56-4F9F-96C7-696226794E2D}" = Windows Live Mail
"{88F08F98-12BC-4613-81A2-8F9B88CFC73E}" = Super Hybrid Engine
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}" = Ralink RT2860 Wireless LAN Card
"{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}" = Choice Guard
"{90120000-0010-0410-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Italian) 12
"{90120000-0016-0410-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Italian) 2007
"{90120000-0018-0410-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Italian) 2007
"{90120000-001B-0410-0000-0000000FF1CE}" = Microsoft Office Word MUI (Italian) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007
"{90120000-0020-0410-0000-0000000FF1CE}" = Pacchetto di compatibilità per Office System 2007
"{90120000-002C-0410-0000-0000000FF1CE}" = Microsoft Office Proofing (Italian) 2007
"{90120000-006E-0410-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Italian) 2007
"{90120000-00A1-0410-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Italian) 2007
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{95120000-00AF-0410-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (Italian)
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{98EABC7F-B1A1-43A5-B505-5B4EC3908DCD}" = Microsoft Security Client
"{9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}" = Microsoft Search Enhancement Pack
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A6280CE4-04F4-46B8-B0A3-703EC252AD17}" = Windows Live Writer
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A973AD04-558F-4810-9B1B-0664C930490B}" = Raccolta foto di Windows Live
"{AC76BA86-7AD7-1040-7B44-A81000000003}" = Adobe Reader 8.1.0 - Italiano
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C72CA49A-9237-4810-8449-45DA3BD26D64}" = EzMessenger
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D1D4D7EA-62B8-4665-9FF7-02A91B925CC9}" = Google+ Auto Backup
"{D806E63B-0C11-4061-8DA9-1E980FB9A9EB}" = Data Sync
"{E171E280-0BAE-4460-9F47-CA96D17828B6}" = Windows Live Essentials
"{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}" = Microsoft Office Suite Activation Assistant
"{EF321705-AE33-4E6E-ACEA-18EDF7F24144}" = Windows Live Sync
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"44a5ce38-8adb-43c9-8a5e-ee8ed8f3982a" = Show-Password
"AbiWord2" = AbiWord 2.9.4
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Any Video Converter_is1" = Any Video Converter 5.5.3
"CCleaner" = CCleaner
"Eee Docking_is1" = Eee Docking 1.3.6.0
"FastStone Image Viewer" = FastStone Image Viewer 4.9
"Google Chrome" = Google Chrome
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"ie8" = Windows Internet Explorer 8
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile ITA Language Pack" = Microsoft .NET Framework 4 Client Profile - Language Pack (ITA)
"Microsoft Security Client" = Microsoft Security Essentials
"Mobile Partner" = Mobile Partner
"Mozilla Firefox 26.0 (x86 it)" = Mozilla Firefox 26.0 (x86 it)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"Picasa 3" = Picasa 3
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"VLC media player" = VLC media player 2.0.0
"Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"WinLiveSuite_Wave3" = Windows Live Essentials
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-771611404-3383921317-1991890655-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Dropbox" = Dropbox

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 24/12/2013 22.47.52 | Computer Name = YOUR-LSHU1MG1FC | Source = .NET Runtime | ID = 1023
Description = .NET Runtime version 2.0.50727.3649 - Fatal Execution Engine Error
(7A0BD156) (80131506)

Error - 24/12/2013 22.47.52 | Computer Name = YOUR-LSHU1MG1FC | Source = .NET Runtime | ID = 1023
Description = .NET Runtime version 2.0.50727.3649 - Fatal Execution Engine Error
(7A0BD156) (80131506)

Error - 24/12/2013 22.47.52 | Computer Name = YOUR-LSHU1MG1FC | Source = .NET Runtime | ID = 1023
Description = .NET Runtime version 2.0.50727.3649 - Fatal Execution Engine Error
(7A0BD156) (80131506)

Error - 24/12/2013 22.47.52 | Computer Name = YOUR-LSHU1MG1FC | Source = .NET Runtime | ID = 1023
Description = .NET Runtime version 2.0.50727.3649 - Fatal Execution Engine Error
(7A0BD156) (80131506)

Error - 24/12/2013 22.47.52 | Computer Name = YOUR-LSHU1MG1FC | Source = .NET Runtime | ID = 1023
Description = .NET Runtime version 2.0.50727.3649 - Fatal Execution Engine Error
(7A0BD156) (80131506)

Error - 24/12/2013 22.47.52 | Computer Name = YOUR-LSHU1MG1FC | Source = .NET Runtime | ID = 1023
Description = .NET Runtime version 2.0.50727.3649 - Fatal Execution Engine Error
(7A0BD156) (80131506)

Error - 24/12/2013 22.47.52 | Computer Name = YOUR-LSHU1MG1FC | Source = .NET Runtime | ID = 1023
Description = .NET Runtime version 2.0.50727.3649 - Fatal Execution Engine Error
(7A0BD156) (80131506)

Error - 24/12/2013 22.47.52 | Computer Name = YOUR-LSHU1MG1FC | Source = .NET Runtime | ID = 1023
Description = .NET Runtime version 2.0.50727.3649 - Fatal Execution Engine Error
(7A0BD156) (80131506)

Error - 24/12/2013 22.47.52 | Computer Name = YOUR-LSHU1MG1FC | Source = .NET Runtime | ID = 1023
Description = .NET Runtime version 2.0.50727.3649 - Fatal Execution Engine Error
(7A0BD156) (80131506)

Error - 24/12/2013 22.47.52 | Computer Name = YOUR-LSHU1MG1FC | Source = .NET Runtime | ID = 1023
Description = .NET Runtime version 2.0.50727.3649 - Fatal Execution Engine Error
(7A0BD156) (80131506)

[ System Events ]
Error - 21/12/2013 19.45.46 | Computer Name = YOUR-LSHU1MG1FC | Source = Service Control Manager | ID = 7034
Description = Interruzione imprevista del servizio Java Quick Starter. Questo evento
si è già verificato 1 volta(e).

Error - 23/12/2013 6.42.17 | Computer Name = YOUR-LSHU1MG1FC | Source = Dhcp | ID = 1002
Description = Il lease 10.38.5.219 dell'indirizzo IP della scheda di rete con indirizzo
001E101F3E8B è stato negato dal server DHCP 10.211.74.81. Il server DHCP ha inviato
un messaggio DHCPNACK.

Error - 23/12/2013 22.28.01 | Computer Name = YOUR-LSHU1MG1FC | Source = Windows Update Agent | ID = 20
Description = Errore di installazione. Non è stato possibile installare il seguente
aggiornamento. Errore 0x80070643: Aggiornamento della sicurezza per Microsoft .NET
Framework 2.0 SP2 su Windows Server 2003 e Windows XP x86 (KB2844285).

Error - 24/12/2013 23.16.20 | Computer Name = YOUR-LSHU1MG1FC | Source = Windows Update Agent | ID = 20
Description = Errore di installazione. Non è stato possibile installare il seguente
aggiornamento. Errore 0x80070643: Aggiornamento della sicurezza per Microsoft .NET
Framework 2.0 SP2 su Windows Server 2003 e Windows XP x86 (KB2742596).


< End of report >
latino70
Inviato: Thursday, December 26, 2013 12:20:46 AM
Rank: AiutAmico

Iscritto dal : 6/18/2005
Posts: 103
OTL logfile created on: 25/12/2013 23.26.57 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Utente\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000410 | Country: Italia | Language: ITA | Date Format: dd/MM/yyyy

1015,17 Mb Total Physical Memory | 266,80 Mb Available Physical Memory | 26,28% Memory free
2,38 Gb Paging File | 1,53 Gb Available in Paging File | 64,27% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programmi
Drive C: | 72,06 Gb Total Space | 56,46 Gb Free Space | 78,35% Space Free | Partition Type: NTFS
Drive D: | 72,05 Gb Total Space | 71,92 Gb Free Space | 99,81% Space Free | Partition Type: NTFS
Drive E: | 29,26 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive F: | 1,86 Gb Total Space | 0,14 Gb Free Space | 7,25% Space Free | Partition Type: FAT

Computer Name: YOUR-LSHU1MG1FC | User Name: Utente | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days

========== Processes (SafeList) ==========

PRC - C:\Documents and Settings\Utente\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Programmi\Java\jre7\bin\jqs.exe (Oracle Corporation)
PRC - C:\Documents and Settings\Utente\Dati applicazioni\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
PRC - C:\Programmi\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware)
PRC - C:\Programmi\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Programmi\SUPERAntiSpyware\SASCore.exe (SUPERAntiSpyware.com)
PRC - C:\Programmi\File comuni\Java\Java Update\jusched.exe (Oracle Corporation)
PRC - C:\Programmi\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
PRC - C:\Programmi\Microsoft Security Client\msseces.exe (Microsoft Corporation)
PRC - C:\Programmi\ASUS\Eee Docking\Eee Docking.exe ()
PRC - C:\Programmi\ASUS\LiveUpdate\LiveUpdate.exe ()
PRC - C:\Programmi\EeePC\ACPI\AsAcpiSvr.exe (ASUSTeK Computer Inc.)
PRC - C:\Programmi\EeePC\ACPI\AsTray.exe (ASUSTeK Computer Inc.)
PRC - C:\Programmi\Mobile Partner\Mobile Partner.exe ()
PRC - C:\Programmi\ASUS\EeePC\Super Hybrid Engine\SuperHybridEngine.exe (ASUSTeK Computer Inc.)
PRC - C:\Programmi\EeePC\ACPI\AsEPCMon.exe (ASUSTeK Computer Inc.)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)


========== Modules (No Company Name) ==========

MOD - C:\Documents and Settings\Utente\Dati applicazioni\Dropbox\bin\wxmsw28uh_vc.dll ()
MOD - C:\Programmi\Mozilla Firefox\mozjs.dll ()
MOD - C:\Documents and Settings\Utente\Dati applicazioni\Dropbox\bin\libcef.dll ()
MOD - C:\Programmi\Mobile Partner\DeviceMgrPlugin.dll ()
MOD - C:\Programmi\Mobile Partner\DeviceMgrUIPlugin.dll ()
MOD - C:\Programmi\Mobile Partner\NDISAPI.dll ()
MOD - C:\Programmi\Mobile Partner\NetInfoPlugin.dll ()
MOD - C:\Programmi\ASUS\Eee Docking\Eee Docking.exe ()
MOD - C:\Programmi\ASUS\LiveUpdate\LiveUpdate.exe ()
MOD - C:\Programmi\ASUS\LiveUpdate\Enumeration.dll ()
MOD - C:\Programmi\Mobile Partner\Mobile Partner.exe ()
MOD - C:\Programmi\Mobile Partner\LocaleMgrPlugin.dll ()
MOD - C:\Programmi\Mobile Partner\SMSPlugin.dll ()
MOD - C:\Programmi\Mobile Partner\NotifyServicePlugin.dll ()
MOD - C:\Programmi\Mobile Partner\ConfigFilePlugin.dll ()
MOD - C:\Programmi\Mobile Partner\CallPlugin.dll ()
MOD - C:\Programmi\Mobile Partner\DialUpPlugin.dll ()
MOD - C:\Programmi\ASUS\LiveUpdate\Parser.dll ()
MOD - C:\Programmi\ASUS\LiveUpdate\ClientSocket.dll ()
MOD - C:\Programmi\Mobile Partner\DetectDev.dll ()
MOD - C:\Programmi\Mobile Partner\XCodec.dll ()
MOD - C:\Programmi\Mobile Partner\DeviceOperate.dll ()
MOD - C:\Programmi\Mobile Partner\atcomm.dll ()
MOD - C:\Programmi\Mobile Partner\isaputrace.dll ()
MOD - C:\Programmi\Mobile Partner\FileManager.dll ()


========== Services (SafeList) ==========

SRV - (AppMgmt) -- %SystemRoot%\System32\appmgmts.dll File not found
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (JavaQuickStarterService) -- C:\Programmi\Java\jre7\bin\jqs.exe (Oracle Corporation)
SRV - (MozillaMaintenance) -- C:\Programmi\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (SkypeUpdate) -- C:\Programmi\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (!SASCORE) -- C:\Programmi\SUPERAntiSpyware\SASCore.exe (SUPERAntiSpyware.com)
SRV - (MsMpSvc) -- C:\Programmi\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
SRV - (odserv) -- C:\Programmi\File comuni\Microsoft Shared\OFFICE12\ODSERV.EXE (Microsoft Corporation)
SRV - (ose) -- C:\Programmi\File comuni\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)


========== Driver Services (SafeList) ==========

DRV - (WDICA) -- File not found
DRV - (PDRFRAME) -- File not found
DRV - (PDRELI) -- File not found
DRV - (PDFRAME) -- File not found
DRV - (PDCOMP) -- File not found
DRV - (PCIDump) -- File not found
DRV - (lbrtfdc) -- File not found
DRV - (i2omgmt) -- File not found
DRV - (Changer) -- File not found
DRV - (BTWUSB) -- System32\Drivers\btwusb.sys File not found
DRV - (btwhid) -- system32\DRIVERS\btwhid.sys File not found
DRV - (BTWDNDIS) -- system32\DRIVERS\btwdndis.sys File not found
DRV - (BTDriver) -- system32\DRIVERS\btport.sys File not found
DRV - (btaudio) -- system32\drivers\btaudio.sys File not found
DRV - (SASDIFSV) -- C:\Programmi\SUPERAntiSpyware\sasdifsv.sys (SUPERAdBlocker.com and SUPERAntiSpyware.com)
DRV - (SASKUTIL) -- C:\Programmi\SUPERAntiSpyware\SASKUTIL.SYS (SUPERAdBlocker.com and SUPERAntiSpyware.com)
DRV - (ewusbnet) -- C:\WINDOWS\system32\drivers\ewusbnet.sys (Huawei Technologies Co., Ltd.)
DRV - (hwdatacard) -- C:\WINDOWS\system32\drivers\ewusbmdm.sys (Huawei Technologies Co., Ltd.)
DRV - (hwusbdev) -- C:\WINDOWS\system32\drivers\ewusbdev.sys (Huawei Technologies Co., Ltd.)
DRV - (RT80x86) -- C:\WINDOWS\system32\drivers\rt2860.sys (Ralink Technology, Corp.)
DRV - (IntcAzAudAddService) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.)
DRV - (AR5416) -- C:\WINDOWS\system32\drivers\athw.sys (Atheros Communications, Inc.)
DRV - (SNP2UVC) -- C:\WINDOWS\system32\drivers\snp2uvc.sys ()
DRV - (L1c) -- C:\WINDOWS\system32\drivers\l1c51x86.sys (Atheros Communications, Inc.)
DRV - (fssfltr) -- C:\WINDOWS\system32\drivers\fssfltr_tdi.sys (Microsoft Corporation)
DRV - (uvclf) -- C:\WINDOWS\system32\drivers\uvclf.sys (GenesysLogic Technologies, Inc.)
DRV - (Ambfilt) -- C:\WINDOWS\system32\drivers\Ambfilt.sys (Creative)
DRV - (AsusACPI) -- C:\WINDOWS\system32\drivers\ASUSACPI.SYS (ASUSTeK Computer Inc.)
DRV - (Monfilt) -- C:\WINDOWS\system32\drivers\Monfilt.sys (Creative Technology Ltd.)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-21-771611404-3383921317-1991890655-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://asus.msn.com
IE - HKU\S-1-5-21-771611404-3383921317-1991890655-1005\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-771611404-3383921317-1991890655-1005\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-771611404-3383921317-1991890655-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..extensions.enabledAddons: %7Bb9db16a4-6edc-47ec-a1f4-b86292ed211d%7D:4.9.21
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:26.0
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Programmi\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Programmi\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Programmi\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8064.0206: C:\Programmi\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Programmi\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Programmi\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.0: C:\Programmi\VideoLAN\VLC\npvlc.dll (VideoLAN)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 26.0\extensions\\Components: C:\Programmi\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 26.0\extensions\\Plugins: C:\Programmi\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{b2375139-b908-4471-a891-0e2f76a4d88b}: C:\Programmi\Show-Password\150.xpi

[2013/12/22 13.37.50 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Utente\Dati applicazioni\Mozilla\Extensions
[2013/12/22 13.45.43 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Utente\Dati applicazioni\Mozilla\Firefox\Profiles\be2np2le.default\extensions
[2013/12/22 13.45.43 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\Utente\Dati applicazioni\Mozilla\Firefox\Profiles\be2np2le.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2013/12/19 21.31.01 | 000,000,000 | ---D | M] (No name found) -- C:\Programmi\Mozilla Firefox\extensions
[2013/12/22 13.36.37 | 000,000,000 | ---D | M] (No name found) -- C:\Programmi\Mozilla Firefox\browser\extensions
[2013/12/22 13.36.37 | 000,000,000 | ---D | M] (Default) -- C:\Programmi\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://www.google.com
CHR - Extension: YouTube Video Downloader = C:\Documents and Settings\Utente\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\amigimmlihnhjdjlooofbfnmdllhfmmn\2_0\
CHR - Extension: Documenti Google = C:\Documents and Settings\Utente\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Google Drive = C:\Documents and Settings\Utente\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Documents and Settings\Utente\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Ricerca Google = C:\Documents and Settings\Utente\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Video download helper = C:\Documents and Settings\Utente\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\dbkchnicaiglcjpgbmpfmoafckkomdcm\1.1.4.6_0\
CHR - Extension: Video download helper = C:\Documents and Settings\Utente\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\dbkchnicaiglcjpgbmpfmoafckkomdcm\1.1.4.7_0\
CHR - Extension: Show-Password = C:\Documents and Settings\Utente\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\logekkkdbdidmmcgkonmmonclldogceg\1.136_0\
CHR - Extension: Google Wallet = C:\Documents and Settings\Utente\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0\
CHR - Extension: Google Wallet = C:\Documents and Settings\Utente\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0\
CHR - Extension: Gmail = C:\Documents and Settings\Utente\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2008/04/14 13.00.00 | 000,000,768 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Supporto di collegamento per Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Programmi\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programmi\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Guida per l'accesso a Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programmi\File comuni\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programmi\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Show-Password) - {e6ecc342-230c-4f2a-9555-17b076ad7dab} - C:\Programmi\Show-Password\150.dll File not found
O3 - HKLM\..\Toolbar: (no name) - - No CLSID value found.
O4 - HKLM..\Run: [AsusACPIServer] C:\Programmi\EeePC\ACPI\AsAcpiSvr.exe (ASUSTeK Computer Inc.)
O4 - HKLM..\Run: [AsusEPCMonitor] C:\Programmi\EeePC\ACPI\AsEPCMon.exe (ASUSTeK Computer Inc.)
O4 - HKLM..\Run: [AsusTray] C:\Programmi\EeePC\ACPI\AsTray.exe (ASUSTeK Computer Inc.)
O4 - HKLM..\Run: [LiveUpdate] C:\Programmi\Asus\LiveUpdate\LiveUpdate.exe ()
O4 - HKLM..\Run: [MSC] C:\Programmi\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [snp2uvc] C:\WINDOWS\vsnp2uvc.exe File not found
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Programmi\File comuni\Java\Java Update\jusched.exe (Oracle Corporation)
O4 - HKLM..\Run: [SynAsusAcpi] C:\Programmi\Synaptics\SynTP\SynAsusAcpi.exe (Synaptics Incorporated)
O4 - HKU\.DEFAULT..\Run: [Google+ Auto Backup] C:\Programmi\Google\Google+ Auto Backup\Google+ Auto Backup.exe (Google Inc.)
O4 - HKU\S-1-5-18..\Run: [Google+ Auto Backup] C:\Programmi\Google\Google+ Auto Backup\Google+ Auto Backup.exe (Google Inc.)
O4 - HKU\S-1-5-21-771611404-3383921317-1991890655-1005..\Run: [Eee Docking] C:\Programmi\ASUS\Eee Docking\Eee Docking.exe ()
O4 - HKU\S-1-5-21-771611404-3383921317-1991890655-1005..\Run: [SUPERAntiSpyware] C:\Programmi\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware)
O4 - Startup: C:\Documents and Settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\ SuperHybridEngine.lnk = C:\Programmi\ASUS\EeePC\Super Hybrid Engine\SuperHybridEngine.exe (ASUSTeK Computer Inc.)
O4 - Startup: C:\Documents and Settings\Utente\Menu Avvio\Programmi\Esecuzione automatica\Dropbox.lnk = C:\Documents and Settings\Utente\Dati applicazioni\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-771611404-3383921317-1991890655-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Invia a Bluetooth - C:\Programmi\WIDCOMM\Bluetooth Software\btsendto_ie.htm File not found
O8 - Extra context menu item: Invia a periferica &Bluetooth... - C:\Programmi\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm File not found
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Programmi\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Programmi\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.52.97.25 193.70.152.25
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{73426ED6-50F8-41F7-AC15-703ACF1E254E}: DhcpNameServer = 212.52.97.25 193.70.152.25
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programmi\File comuni\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Programmi\File comuni\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Programmi\File comuni\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Programmi\File comuni\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Pagina iniziale corrente) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Eee PC Seashell_1.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Eee PC Seashell_1.bmp
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Programmi\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/08/25 10.37.18 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2009/08/26 03.42.34 | 000,143,360 | R--- | M] (Huawei Technologies Co., Ltd.) - E:\AutoRun.exe -- [ CDFS ]
O32 - AutoRun File - [2008/03/07 01.34.52 | 000,000,047 | R--- | M] () - E:\AUTORUN.INF -- [ CDFS ]
O32 - Unable to obtain root file information for disk F:\
O33 - MountPoints2\{7f15db16-674b-11e3-b206-1c4bd62b884e}\Shell - "" = AutoRun
O33 - MountPoints2\{7f15db16-674b-11e3-b206-1c4bd62b884e}\Shell\AutoRun\command - "" = E:\AutoRun.exe -- [2009/08/26 03.42.34 | 000,143,360 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\{7f15db17-674b-11e3-b206-1c4bd62b884e}\Shell\AutoRun\command - "" = d907523_a.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 60 Days ==========

[2013/12/25 23.12.35 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Utente\Desktop\OTL.exe
[2013/12/25 23.07.15 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2013/12/25 21.49.50 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Documents and Settings\Utente\Desktop\HiJackThis.exe
[2013/12/25 21.02.32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Avvio\Programmi\Skype
[2013/12/25 21.02.28 | 000,000,000 | ---D | C] -- C:\Programmi\File comuni\Skype
[2013/12/25 20.57.38 | 001,551,008 | ---- | C] (Skype Technologies S.A.) -- C:\Documents and Settings\Utente\Desktop\SkypeSetup.exe
[2013/12/25 20.44.00 | 000,275,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll
[2013/12/25 20.44.00 | 000,018,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll.mui
[2013/12/25 20.36.12 | 000,230,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MpSigStub.exe
[2013/12/25 20.21.28 | 000,000,000 | ---D | C] -- C:\Programmi\Microsoft Security Client
[2013/12/25 03.30.09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Dati applicazioni\AbiSuite
[2013/12/25 03.29.28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Menu Avvio\Programmi\AbiWord Word Processor
[2013/12/25 03.28.55 | 000,000,000 | ---D | C] -- C:\Programmi\AbiWord
[2013/12/25 01.09.49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Impostazioni locali\Dati applicazioni\PCHealth
[2013/12/24 02.47.54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\dwhelper
[2013/12/23 19.33.18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Desktop\ImageInc_1_2
[2013/12/23 18.21.24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Dati applicazioni\Skype
[2013/12/23 13.39.20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Desktop\Nuova cartella
[2013/12/23 11.23.08 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2013/12/23 11.23.01 | 000,000,000 | ---D | C] -- C:\Programmi\MSBuild
[2013/12/23 11.22.49 | 000,000,000 | ---D | C] -- C:\Programmi\Reference Assemblies
[2013/12/23 11.21.58 | 000,597,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\printfilterpipelinesvc.exe
[2013/12/23 11.21.58 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\prntvpt.dll
[2013/12/23 11.21.58 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\filterpipelineprintproc.dll
[2013/12/23 11.21.57 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpsshhdr.dll
[2013/12/23 11.21.56 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpssvcs.dll
[2013/12/23 11.21.56 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpssvcs.dll
[2013/12/22 13.51.02 | 000,692,616 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2013/12/22 13.51.01 | 000,071,048 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2013/12/22 13.47.47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Documenti\Download
[2013/12/22 13.37.36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Impostazioni locali\Dati applicazioni\Mozilla
[2013/12/22 13.37.35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Dati applicazioni\Mozilla
[2013/12/22 13.36.50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dati applicazioni\Mozilla
[2013/12/22 13.36.48 | 000,000,000 | ---D | C] -- C:\Programmi\Mozilla Maintenance Service
[2013/12/22 13.03.26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Avvio\Programmi\Google+ Auto Backup
[2013/12/22 00.28.00 | 000,630,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll
[2013/12/22 00.28.00 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2013/12/22 00.27.56 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll
[2013/12/22 00.27.51 | 011,113,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2013/12/22 00.27.51 | 002,006,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll
[2013/12/22 00.27.51 | 000,522,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsdbgui.dll
[2013/12/22 00.23.46 | 000,012,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usb8023x.sys
[2013/12/22 00.23.44 | 000,123,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbvideo.sys
[2013/12/22 00.23.44 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbaudio.sys
[2013/12/21 16.43.15 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe
[2013/12/21 16.37.18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Impostazioni locali\Dati applicazioni\Sun
[2013/12/21 16.37.17 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun
[2013/12/21 16.33.29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dati applicazioni\Sun
[2013/12/21 16.33.27 | 000,000,000 | ---D | C] -- C:\Programmi\File comuni\Java
[2013/12/21 16.33.13 | 000,264,616 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe
[2013/12/21 16.33.13 | 000,145,408 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl
[2013/12/21 16.32.39 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe
[2013/12/21 16.32.39 | 000,094,632 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll
[2013/12/21 16.32.39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Avvio\Programmi\Java
[2013/12/21 16.32.38 | 000,174,504 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe
[2013/12/21 16.31.18 | 000,000,000 | ---D | C] -- C:\Programmi\Java
[2013/12/21 16.27.35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Dati applicazioni\Sun
[2013/12/21 08.35.42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Dati applicazioni\AVG
[2013/12/21 08.33.48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dati applicazioni\AVG
[2013/12/21 08.33.11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Documenti\Any Video Converter
[2013/12/21 08.33.06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Dati applicazioni\AnvSoft
[2013/12/21 08.32.22 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Dati applicazioni\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
[2013/12/21 08.32.20 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Dati applicazioni\Common Files
[2013/12/21 08.30.27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Avvio\Programmi\AnvSoft
[2013/12/21 08.29.51 | 000,000,000 | ---D | C] -- C:\Programmi\AnvSoft
[2013/12/21 08.01.20 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documenti\Video
[2013/12/21 07.57.28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dati applicazioni\Windows Genuine Advantage
[2013/12/21 07.21.19 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidparse.sys
[2013/12/21 07.21.19 | 000,014,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbscan.sys
[2013/12/20 04.14.18 | 000,032,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbccgp.sys
[2013/12/20 04.14.18 | 000,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbd.sys
[2013/12/20 04.09.47 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2013/12/19 22.19.18 | 000,000,000 | ---D | C] -- C:\Programmi\CCleaner
[2013/12/19 21.50.43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Desktop\revouninstaller
[2013/12/19 21.48.21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Dati applicazioni\SUPERAntiSpyware.com
[2013/12/19 21.48.04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dati applicazioni\SUPERAntiSpyware.com
[2013/12/19 21.48.04 | 000,000,000 | ---D | C] -- C:\Programmi\SUPERAntiSpyware
[2013/12/19 21.34.04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US
[2013/12/19 21.31.01 | 000,000,000 | ---D | C] -- C:\Programmi\Mozilla Firefox
[2013/12/19 21.30.48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Documenti\MassTube
[2013/12/19 21.30.38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Impostazioni locali\Dati applicazioni\Temp
[2013/12/19 21.30.07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Dati applicazioni\MassTube
[2013/12/19 21.30.02 | 000,000,000 | ---D | C] -- C:\Programs
[2013/12/19 21.29.40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Impostazioni locali\Dati applicazioni\AppsHat Mobile Apps
[2013/12/19 21.29.36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Local Settings
[2013/12/18 08.08.10 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Utente\Desktop\.picasaoriginals
[2013/12/18 06.36.28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
[2013/12/17 23.41.57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Desktop\foto e cartoline
[2013/12/17 23.41.16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Dati applicazioni\vlc
[2013/12/17 23.40.48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Avvio\Programmi\VideoLAN
[2013/12/17 23.40.19 | 000,000,000 | ---D | C] -- C:\Programmi\VideoLAN
[2013/12/17 22.32.48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Dati applicazioni\FastStone
[2013/12/17 22.30.58 | 000,000,000 | ---D | C] -- C:\Programmi\FastStone Image Viewer
[2013/12/17 22.30.58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Avvio\Programmi\FastStone Image Viewer
[2013/12/17 22.20.09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Avvio\Programmi\Picasa 3
[2013/12/17 22.04.09 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Utente\Documenti\Video
[2013/12/17 21.50.54 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Utente\Documenti\Dropbox
[2013/12/17 21.48.06 | 000,000,000 | ---D | C] -- C:\Programmi\Dropbox
[2013/12/17 21.47.36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Menu Avvio\Programmi\Dropbox
[2013/12/17 21.46.42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Dati applicazioni\Dropbox
[2013/12/17 21.11.09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Documenti\Downloads
[2013/12/17 20.54.11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Avvio\Programmi\Google Chrome
[2013/12/17 20.51.29 | 000,000,000 | ---D | C] -- C:\Programmi\Google
[2013/12/17 20.51.29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Impostazioni locali\Dati applicazioni\Google
[2013/12/17 20.50.42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Impostazioni locali\Dati applicazioni\Deployment
[2013/12/17 20.49.25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Dati applicazioni\Macromedia
[2013/12/17 20.49.21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Dati applicazioni\Adobe
[2013/12/17 19.47.04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Avvio\Programmi\Mobile Partner
[2013/12/17 19.47.01 | 000,114,432 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewusbnet.sys
[2013/12/17 19.47.01 | 000,102,912 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewusbmdm.sys
[2013/12/17 19.47.01 | 000,100,736 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewusbdev.sys
[2013/12/17 19.47.01 | 000,024,448 | ---- | C] (Huawei Tech. Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewdcsc.sys
[2013/12/17 19.46.44 | 000,000,000 | ---D | C] -- C:\Programmi\Mobile Partner
[2013/12/17 17.21.57 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Utente\IECompatCache
[2013/12/17 17.21.45 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Utente\PrivacIE
[2013/12/17 16.52.36 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Utente\Dati applicazioni\Microsoft
[2013/12/17 16.52.36 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Utente\SendTo
[2013/12/17 16.52.36 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Utente\Recent
[2013/12/17 16.52.36 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Utente\Dati applicazioni
[2013/12/17 16.52.36 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Utente\Preferiti
[2013/12/17 16.52.36 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Utente\Documenti\Musica
[2013/12/17 16.52.36 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Utente\Menu Avvio
[2013/12/17 16.52.36 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Utente\Documenti\Immagini
[2013/12/17 16.52.36 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Utente\Menu Avvio\Programmi\Esecuzione automatica
[2013/12/17 16.52.36 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Utente\Documenti
[2013/12/17 16.52.36 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Utente\Menu Avvio\Programmi\Accessori
[2013/12/17 16.52.36 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Utente\IETldCache
[2013/12/17 16.52.36 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Utente\Cookies
[2013/12/17 16.52.36 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Utente\Risorse di stampa
[2013/12/17 16.52.36 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Utente\Risorse di rete
[2013/12/17 16.52.36 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Utente\Modelli
[2013/12/17 16.52.36 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Utente\Impostazioni locali
[2013/12/17 16.52.36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Documenti\My Videos
[2013/12/17 16.52.36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Documenti\My Pictures
[2013/12/17 16.52.36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Documenti\My Office
[2013/12/17 16.52.36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Documenti\My Music
[2013/12/17 16.52.36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Documenti\My Ebooks
[2013/12/17 16.52.36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Impostazioni locali\Dati applicazioni\Microsoft Help
[2013/12/17 16.52.36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Impostazioni locali\Dati applicazioni\Microsoft
[2013/12/17 16.52.36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Dati applicazioni\InstallShield
[2013/12/17 16.52.36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Dati applicazioni\Identities
[2013/12/17 16.52.36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Desktop
[2013/12/17 16.52.36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Impostazioni locali\Dati applicazioni\Adobe
[2013/12/13 03.31.22 | 004,583,424 | ---- | C] (Google Inc.) -- C:\WINDOWS\System32\GPhotos.scr
[2013/12/13 01.16.24 | 000,922,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\imapi2fs.dll
[2013/12/13 01.16.24 | 000,922,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imapi2fs.dll
[2013/12/13 01.16.24 | 000,426,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\imapi2.dll
[2013/12/13 01.16.24 | 000,426,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imapi2.dll
[2013/12/13 01.16.24 | 000,062,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdrom.sys
[22 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 60 Days ==========

[2013/12/25 23.39.15 | 000,000,978 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2013/12/25 23.28.45 | 000,000,398 | -H-- | M] () -- C:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job
[2013/12/25 23.27.38 | 000,000,358 | -H-- | M] () -- C:\WINDOWS\tasks\MpIdleTask.job
[2013/12/25 23.17.44 | 000,001,126 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2013/12/25 23.17.40 | 000,000,366 | ---- | M] () -- C:\WINDOWS\tasks\Show-Password Update.job
[2013/12/25 23.17.33 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013/12/25 23.12.44 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Utente\Desktop\OTL.exe
[2013/12/25 23.06.34 | 001,233,962 | ---- | M] () -- C:\Documents and Settings\Utente\Desktop\adwcleaner.exe
[2013/12/25 23.01.01 | 000,001,130 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2013/12/25 21.48.15 | 000,000,496 | ---- | M] () -- C:\WINDOWS\tasks\SUPERAntiSpyware Scheduled Task 4606f3f2-d8f7-464d-bd51-8612132014de.job
[2013/12/25 21.02.32 | 000,001,870 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk
[2013/12/25 20.57.53 | 001,551,008 | ---- | M] (Skype Technologies S.A.) -- C:\Documents and Settings\Utente\Desktop\SkypeSetup.exe
[2013/12/25 20.24.26 | 000,001,912 | ---- | M] () -- C:\WINDOWS\epplauncher.mif
[2013/12/25 20.21.20 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2013/12/25 19.12.39 | 000,004,608 | ---- | M] () -- C:\Documents and Settings\Utente\Impostazioni locali\Dati applicazioni\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013/12/25 16.02.58 | 000,520,370 | ---- | M] () -- C:\WINDOWS\System32\perfh010.dat
[2013/12/25 16.02.58 | 000,473,302 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2013/12/25 16.02.58 | 000,089,640 | ---- | M] () -- C:\WINDOWS\System32\perfc010.dat
[2013/12/25 16.02.58 | 000,076,396 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2013/12/25 04.01.58 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2013/12/25 03.58.51 | 002,723,703 | ---- | M] () -- C:\Documents and Settings\Utente\Desktop\ioioioi.jpg
[2013/12/25 03.49.24 | 002,723,703 | ---- | M] () -- C:\Documents and Settings\Utente\Desktop\103_0620.JPG
[2013/12/25 03.33.38 | 000,001,580 | ---- | M] () -- C:\Documents and Settings\Utente\Desktop\AbiWord 2.9.lnk
[2013/12/25 02.00.00 | 000,000,496 | ---- | M] () -- C:\WINDOWS\tasks\SUPERAntiSpyware Scheduled Task ee54bc03-79c9-4b8d-bb73-258162d39a5f.job
[2013/12/24 02.57.18 | 002,816,366 | ---- | M] () -- C:\Documents and Settings\Utente\Desktop\La Pina _ Giuliano Palma - Parla Piano [HQ AUDIO]-1.3gp
[2013/12/24 02.49.09 | 002,816,366 | ---- | M] () -- C:\Documents and Settings\Utente\Desktop\La Pina _ Giuliano Palma - Parla Piano [HQ AUDIO].3gp
[2013/12/23 19.26.39 | 000,015,428 | ---- | M] () -- C:\Documents and Settings\Utente\Desktop\millo.jpg
[2013/12/23 17.26.55 | 000,186,608 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2013/12/22 13.51.02 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2013/12/22 13.51.01 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2013/12/22 13.36.54 | 000,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2013/12/22 12.34.03 | 000,001,034 | ---- | M] () -- C:\Documents and Settings\Utente\Menu Avvio\Programmi\Esecuzione automatica\Dropbox.lnk
[2013/12/22 12.32.01 | 000,001,022 | ---- | M] () -- C:\Documents and Settings\Utente\Desktop\Dropbox.lnk
[2013/12/21 16.31.53 | 000,094,632 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll
[2013/12/21 16.31.44 | 000,264,616 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe
[2013/12/21 16.31.44 | 000,175,016 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe
[2013/12/21 16.31.43 | 000,174,504 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe
[2013/12/21 16.31.43 | 000,145,408 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl
[2013/12/21 08.30.31 | 000,000,824 | ---- | M] () -- C:\Documents and Settings\Utente\Desktop\Any Video Converter.lnk
[2013/12/21 08.01.08 | 000,000,762 | ---- | M] () -- C:\Documents and Settings\Utente\Desktop\Windows Media Player.lnk
[2013/12/19 22.19.24 | 000,000,654 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\CCleaner.lnk
[2013/12/19 21.53.16 | 000,000,251 | ---- | M] () -- C:\WINDOWS\System32\InstallUtil.InstallLog
[2013/12/19 21.48.16 | 000,001,642 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\SUPERAntiSpyware Professional.lnk
[2013/12/19 21.30.07 | 000,000,631 | ---- | M] () -- C:\Documents and Settings\Utente\Desktop\MassTube.lnk
[2013/12/17 23.40.49 | 000,000,691 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\VLC media player.lnk
[2013/12/17 22.32.22 | 000,000,752 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\FastStone Image Viewer.lnk
[2013/12/17 22.21.58 | 000,000,731 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Picasa 3.lnk
[2013/12/17 20.54.11 | 000,001,775 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk
[2013/12/17 19.47.05 | 000,000,726 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mobile Partner.lnk
[2013/12/17 16.51.56 | 000,000,068 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2013/12/17 16.50.31 | 000,000,211 | RHS- | M] () -- C:\boot.ini
[2013/12/17 16.49.17 | 000,005,208 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF
[2013/12/17 16.41.50 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD
[2013/12/13 03.31.22 | 004,583,424 | ---- | M] (Google Inc.) -- C:\WINDOWS\System32\GPhotos.scr
[2013/12/13 01.16.24 | 000,922,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\imapi2fs.dll
[2013/12/13 01.16.24 | 000,922,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imapi2fs.dll
[2013/12/13 01.16.24 | 000,426,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\imapi2.dll
[2013/12/13 01.16.24 | 000,426,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imapi2.dll
[2013/12/13 01.16.24 | 000,062,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdrom.sys
[2013/11/19 11.21.30 | 000,230,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MpSigStub.exe
[2013/11/13 03.59.31 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imagehlp.dll
[2013/11/07 06.38.51 | 000,591,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcrt4.dll
[2013/10/30 03.52.03 | 001,879,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\win32k.sys
[2013/10/30 03.52.03 | 001,879,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\win32k.sys
[2013/10/29 08.57.02 | 006,020,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.dll
[2013/10/29 08.57.02 | 001,216,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\urlmon.dll
[2013/10/29 08.57.02 | 000,920,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wininet.dll
[2013/10/29 08.57.02 | 000,759,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vgx.dll
[2013/10/29 08.57.02 | 000,630,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msfeeds.dll
[2013/10/29 08.57.02 | 000,630,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll
[2013/10/29 08.57.02 | 000,611,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mstime.dll
[2013/10/29 08.57.02 | 000,611,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstime.dll
[2013/10/29 08.57.02 | 000,206,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\occache.dll
[2013/10/29 08.57.02 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\url.dll
[2013/10/29 08.57.02 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\url.dll
[2013/10/29 08.57.02 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtmled.dll
[2013/10/29 08.57.02 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msfeedsbs.dll
[2013/10/29 08.57.02 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2013/10/29 08.57.01 | 011,113,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2013/10/29 08.57.01 | 002,006,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll
[2013/10/29 08.57.01 | 001,469,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcpl.cpl
[2013/10/29 08.57.01 | 001,469,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcpl.cpl
[2013/10/29 08.57.01 | 000,743,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll
[2013/10/29 08.57.01 | 000,522,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsdbgui.dll
[2013/10/29 08.57.01 | 000,387,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iedkcs32.dll
[2013/10/29 08.57.01 | 000,387,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedkcs32.dll
[2013/10/29 08.57.01 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iepeers.dll
[2013/10/29 08.57.01 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iepeers.dll
[2013/10/29 08.57.01 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\licmgr10.dll
[2013/10/29 08.57.01 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\licmgr10.dll
[2013/10/29 08.57.01 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\jsproxy.dll
[2013/10/29 08.57.01 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsproxy.dll
[2013/10/29 08.57.01 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\corpol.dll
[2013/10/29 08.57.01 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\corpol.dll
[2013/10/29 06.15.36 | 000,174,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ie4uinit.exe
[2013/10/29 06.15.36 | 000,174,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ie4uinit.exe
[2013/10/29 01.45.18 | 000,385,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\html.iec
[22 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/12/25 23.06.16 | 001,233,962 | ---- | C] () -- C:\Documents and Settings\Utente\Desktop\adwcleaner.exe
[2013/12/25 21.02.32 | 000,001,870 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk
[2013/12/25 20.40.05 | 000,000,358 | -H-- | C] () -- C:\WINDOWS\tasks\MpIdleTask.job
[2013/12/25 20.33.20 | 000,000,398 | -H-- | C] () -- C:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job
[2013/12/25 20.24.26 | 000,001,912 | ---- | C] () -- C:\WINDOWS\epplauncher.mif
[2013/12/25 20.23.16 | 000,001,678 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Avvio\Programmi\Microsoft Security Essentials.lnk
[2013/12/25 19.12.38 | 000,004,608 | ---- | C] () -- C:\Documents and Settings\Utente\Impostazioni locali\Dati applicazioni\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013/12/25 03.58.51 | 002,723,703 | ---- | C] () -- C:\Documents and Settings\Utente\Desktop\ioioioi.jpg
[2013/12/25 03.49.24 | 002,723,703 | ---- | C] () -- C:\Documents and Settings\Utente\Desktop\103_0620.JPG
[2013/12/25 03.33.38 | 000,001,580 | ---- | C] () -- C:\Documents and Settings\Utente\Desktop\AbiWord 2.9.lnk
[2013/12/25 02.57.34 | 002,260,293 | ---- | C] () -- C:\Documents and Settings\Utente\Desktop\103_0610.JPG
[2013/12/25 02.55.54 | 002,246,337 | ---- | C] () -- C:\Documents and Settings\Utente\Desktop\103_0611.JPG
[2013/12/25 02.55.21 | 002,507,985 | ---- | C] () -- C:\Documents and Settings\Utente\Desktop\weee.JPG
[2013/12/24 02.57.13 | 002,816,366 | ---- | C] () -- C:\Documents and Settings\Utente\Desktop\La Pina _ Giuliano Palma - Parla Piano [HQ AUDIO]-1.3gp
[2013/12/24 02.48.02 | 002,816,366 | ---- | C] () -- C:\Documents and Settings\Utente\Desktop\La Pina _ Giuliano Palma - Parla Piano [HQ AUDIO].3gp
[2013/12/23 19.26.37 | 000,015,428 | ---- | C] () -- C:\Documents and Settings\Utente\Desktop\millo.jpg
[2013/12/22 13.51.04 | 000,000,978 | ---- | C] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2013/12/22 13.36.54 | 000,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2013/12/22 13.36.53 | 000,000,702 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Avvio\Programmi\Mozilla Firefox.lnk
[2013/12/22 12.34.03 | 000,001,034 | ---- | C] () -- C:\Documents and Settings\Utente\Menu Avvio\Programmi\Esecuzione automatica\Dropbox.lnk
[2013/12/21 08.30.31 | 000,000,824 | ---- | C] () -- C:\Documents and Settings\Utente\Desktop\Any Video Converter.lnk
[2013/12/20 04.13.36 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2013/12/20 04.13.36 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\dllcache\iacenc.dll
[2013/12/19 22.19.23 | 000,000,654 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\CCleaner.lnk
[2013/12/19 21.53.10 | 000,000,251 | ---- | C] () -- C:\WINDOWS\System32\InstallUtil.InstallLog
[2013/12/19 21.48.38 | 000,000,496 | ---- | C] () -- C:\WINDOWS\tasks\SUPERAntiSpyware Scheduled Task ee54bc03-79c9-4b8d-bb73-258162d39a5f.job
[2013/12/19 21.48.38 | 000,000,496 | ---- | C] () -- C:\WINDOWS\tasks\SUPERAntiSpyware Scheduled Task 4606f3f2-d8f7-464d-bd51-8612132014de.job
[2013/12/19 21.48.16 | 000,001,642 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\SUPERAntiSpyware Professional.lnk
[2013/12/19 21.30.07 | 000,000,631 | ---- | C] () -- C:\Documents and Settings\Utente\Desktop\MassTube.lnk
[2013/12/19 21.28.02 | 000,000,366 | ---- | C] () -- C:\WINDOWS\tasks\Show-Password Update.job
[2013/12/17 23.40.49 | 000,000,691 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\VLC media player.lnk
[2013/12/17 22.30.59 | 000,000,752 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\FastStone Image Viewer.lnk
[2013/12/17 22.21.58 | 000,000,731 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Picasa 3.lnk
[2013/12/17 21.50.54 | 000,001,022 | ---- | C] () -- C:\Documents and Settings\Utente\Desktop\Dropbox.lnk
[2013/12/17 20.54.11 | 000,001,775 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk
[2013/12/17 20.51.30 | 000,001,130 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2013/12/17 20.51.30 | 000,001,126 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2013/12/17 19.47.05 | 000,000,726 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Mobile Partner.lnk
[2013/12/17 16.53.06 | 000,000,783 | ---- | C] () -- C:\Documents and Settings\Utente\Menu Avvio\Programmi\Internet Explorer.lnk
[2013/12/17 16.53.00 | 000,000,762 | ---- | C] () -- C:\Documents and Settings\Utente\Desktop\Windows Media Player.lnk
[2013/12/17 16.52.37 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\Utente\Menu Avvio\Programmi\Assistenza remota.lnk
[2013/12/17 16.52.37 | 000,000,768 | ---- | C] () -- C:\Documents and Settings\Utente\Menu Avvio\Programmi\Windows Media Player.lnk
[2013/12/17 16.52.37 | 000,000,718 | ---- | C] () -- C:\Documents and Settings\Utente\Menu Avvio\Programmi\Outlook Express.lnk
[2013/12/17 16.52.37 | 000,000,671 | ---- | C] () -- C:\Documents and Settings\Utente\Desktop\Install Norton Internet Security.lnk
[2013/12/17 16.41.50 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD

========== ZeroAccess Check ==========

[2009/08/25 12.48.24 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2009/03/03 00.10.18 | 001,499,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009/02/09 11.51.43 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008/04/14 13.00.00 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2013/12/21 08.36.37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\AVG
[2013/12/21 08.32.20 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Common Files
[2009/08/25 12.08.16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Ralink Driver
[2013/12/21 08.32.22 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Dati applicazioni\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
[2013/12/25 03.32.57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Utente\Dati applicazioni\AbiSuite
[2013/12/21 08.33.06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Utente\Dati applicazioni\AnvSoft
[2013/12/21 08.35.42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Utente\Dati applicazioni\AVG
[2013/12/25 23.22.01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Utente\Dati applicazioni\Dropbox
[2013/12/19 22.04.50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Utente\Dati applicazioni\MassTube

========== Purity Check ==========



< End of report >
shapiro
Inviato: Thursday, December 26, 2013 12:19:54 PM

Rank: AiutAmico

Iscritto dal : 8/24/2008
Posts: 4,164



a parte una cosa un po' sospetta il log di otl e' a posto

Scarica e installa malwarebytes
Aggiornalo: clicca sulla scheda "aggiornamenti" => "controlla aggiornamenti"
Esegui una "scansione completa" (seleziona l'opzione)
Quando finisce se dovesse rilevare delle infezioni assicurarti che tutto sia selezionato e clicca clic su Rimuovi selezionati.
Se ti chiede di riavviare, riavvia per completare il processo di pulizia.
Posta il rapporto .

latino70
Inviato: Friday, December 27, 2013 8:50:20 AM
Rank: AiutAmico

Iscritto dal : 6/18/2005
Posts: 103
Malwarebytes Anti-Malware (Prova) 1.75.0.1300
www.malwarebytes.org

Versione database: v2013.12.26.05

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Utente :: YOUR-LSHU1MG1FC [amministratore]

Protezione: Attivata

26/12/2013 18.50.32
MBAM-log-2013-12-26 (21-39-01).txt

Tipo di scansione: Scansione completa (C:\|D:\|)
Opzioni di scansione attive: Memoria | Esecuzione automatica | Registro | File di sistema | Euristica/Extra | Euristica/Shuriken | PUP | PUM
Opzioni di scansione disattivate: P2P
Elementi esaminati: 58996
Tempo impiegato: 2 ore, 47 minuti, 28 secondi [interrotto]

Processi rilevati in memoria: 0
(non sono stati rilevati elementi nocivi)

Moduli di memoria rilevati: 0
(non sono stati rilevati elementi nocivi)

Chiavi di registro rilevate: 0
(non sono stati rilevati elementi nocivi)

Valori di registro rilevati: 0
(non sono stati rilevati elementi nocivi)

Voci rilevate nei dati di registro: 0
(non sono stati rilevati elementi nocivi)

Cartelle rilevate: 0
(non sono stati rilevati elementi nocivi)

File rilevati: 12
C:\AdwCleaner\Quarantine\C\Programmi\Minibar\Minibar.dll.vir (PUP.Optional.MiniBar.A) -> Nessuna azione intrapresa.
C:\Documents and Settings\Utente\Documenti\Downloads\iLividSetup-r343-n-bc.exe (PUP.Optional.Bandoo) -> Nessuna azione intrapresa.
C:\Documents and Settings\Utente\Documenti\Downloads\ImageEditorSetup.exe (PUP.Optional.JumpyApps) -> Nessuna azione intrapresa.
C:\Documents and Settings\Utente\Documenti\Downloads\SoftonicDownloader_per_masstube.exe (PUP.Optional.Softonic.A) -> Nessuna azione intrapresa.
C:\Documents and Settings\Utente\Impostazioni locali\Dati applicazioni\AppsHat Mobile Apps\Uninstall.exe (PUP.Optional.Somoto.A) -> Nessuna azione intrapresa.
C:\Documents and Settings\Utente\Impostazioni locali\Temp\OptimizerPro.exe (PUP.Optional.OptimizerPro.A) -> Nessuna azione intrapresa.
C:\Documents and Settings\Utente\Impostazioni locali\Temp\UpdateCheckerSetup.exe (PUP.Optional.Somoto) -> Nessuna azione intrapresa.
C:\Documents and Settings\Utente\Impostazioni locali\Temp\Show-Password_1030-8101.exe (PUP.Optional.AdLyrics) -> Nessuna azione intrapresa.
C:\Documents and Settings\Utente\Impostazioni locali\Temp\appshat-distribution.exe (PUP.Optional.Somoto.A) -> Nessuna azione intrapresa.
C:\Documents and Settings\Utente\Impostazioni locali\Temp\IminentSetup.exe (PUP.Optional.Iminent.A) -> Nessuna azione intrapresa.
C:\Documents and Settings\Utente\Impostazioni locali\Temporary Internet Files\Content.IE5\26ZBNENH\iminent[1].msi (PUP.Optional.Iminent.A) -> Nessuna azione intrapresa.
C:\Documents and Settings\Utente\Impostazioni locali\Temporary Internet Files\Content.IE5\ICNRD7F5\minibar-core[1].exe (PUP.Optional.MiniBar.A) -> Nessuna azione intrapresa.

(fine)
shapiro
Inviato: Friday, December 27, 2013 10:58:21 AM

Rank: AiutAmico

Iscritto dal : 8/24/2008
Posts: 4,164



ripeti la scansione completa una volta terminata evidenzia gli elementi trovati da malwarebyts e premi "Rimuovi elementi selezionati"
latino70
Inviato: Monday, December 30, 2013 3:57:02 PM
Rank: AiutAmico

Iscritto dal : 6/18/2005
Posts: 103
Scusate il ritardo:

Malwarebytes Anti-Malware (Prova) 1.75.0.1300
www.malwarebytes.org

Versione database: v2013.12.26.05

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Utente :: YOUR-LSHU1MG1FC [amministratore]

Protezione: Attivata

30/12/2013 11.58.55
MBAM-log-2013-12-30 (15-55-06).txt

Tipo di scansione: Scansione completa (C:\|D:\|)
Opzioni di scansione attive: Memoria | Esecuzione automatica | Registro | File di sistema | Euristica/Extra | Euristica/Shuriken | PUP | PUM
Opzioni di scansione disattivate: P2P
Elementi esaminati: 251374
Tempo impiegato: 3 ore, 55 minuti, 51 secondi

Processi rilevati in memoria: 0
(non sono stati rilevati elementi nocivi)

Moduli di memoria rilevati: 0
(non sono stati rilevati elementi nocivi)

Chiavi di registro rilevate: 0
(non sono stati rilevati elementi nocivi)

Valori di registro rilevati: 0
(non sono stati rilevati elementi nocivi)

Voci rilevate nei dati di registro: 0
(non sono stati rilevati elementi nocivi)

Cartelle rilevate: 0
(non sono stati rilevati elementi nocivi)

File rilevati: 11
C:\System Volume Information\_restore{5CC85733-0BDE-45D6-9C06-EFAE5D89F6EC}\RP12\A0004608.exe (Trojan.Agent.ED) -> Nessuna azione intrapresa.
C:\System Volume Information\_restore{5CC85733-0BDE-45D6-9C06-EFAE5D89F6EC}\RP16\A0005561.exe (PUP.Optional.BundleInstaller.A) -> Nessuna azione intrapresa.
C:\System Volume Information\_restore{5CC85733-0BDE-45D6-9C06-EFAE5D89F6EC}\RP16\A0005575.dll (PUP.Optional.MiniBar.A) -> Nessuna azione intrapresa.
C:\System Volume Information\_restore{5CC85733-0BDE-45D6-9C06-EFAE5D89F6EC}\RP17\A0006068.msi (PUP.Optional.Iminent.A) -> Nessuna azione intrapresa.
C:\System Volume Information\_restore{5CC85733-0BDE-45D6-9C06-EFAE5D89F6EC}\RP3\A0000205.rbf (PUP.Optional.Iminent.A) -> Nessuna azione intrapresa.
C:\System Volume Information\_restore{5CC85733-0BDE-45D6-9C06-EFAE5D89F6EC}\RP3\A0001152.exe (PUP.Optional.Somoto.A) -> Nessuna azione intrapresa.
C:\System Volume Information\_restore{5CC85733-0BDE-45D6-9C06-EFAE5D89F6EC}\RP3\A0001153.exe (PUP.Optional.Somoto) -> Nessuna azione intrapresa.
C:\System Volume Information\_restore{5CC85733-0BDE-45D6-9C06-EFAE5D89F6EC}\RP3\A0001155.rbf (PUP.Optional.Iminent) -> Nessuna azione intrapresa.
C:\System Volume Information\_restore{5CC85733-0BDE-45D6-9C06-EFAE5D89F6EC}\RP3\A0001156.exe (PUP.Optional.Iminent.A) -> Nessuna azione intrapresa.
C:\System Volume Information\_restore{5CC85733-0BDE-45D6-9C06-EFAE5D89F6EC}\RP7\A0002179.dll (PUP.Optional.OpenCandy) -> Nessuna azione intrapresa.
C:\System Volume Information\_restore{5CC85733-0BDE-45D6-9C06-EFAE5D89F6EC}\RP7\A0002181.exe (PUP.Optional.OpenCandy.A) -> Nessuna azione intrapresa.

(fine)
Utenti presenti in questo topic
Guest


Salta al Forum
Aggiunta nuovi Topic disabilitata in questo forum.
Risposte disabilitate in questo forum.
Eliminazione tuoi Post disabilitata in questo forum.
Modifica dei tuoi post disabilitata in questo forum.
Creazione Sondaggi disabilitata in questo forum.
Voto ai sondaggi disabilitato in questo forum.

Main Forum RSS : RSS

Aiutamici Theme
Powered by Yet Another Forum.net versione 1.9.1.8 (NET v2.0) - 3/29/2008
Copyright © 2003-2008 Yet Another Forum.net. All rights reserved.