Aiutamici Forum
Benvenuto Ospite Cerca | Topic Attivi | Utenti | | Log In | Registra

Problema con Hijack. Opzioni
pinuccio53
Inviato: Saturday, July 19, 2014 12:26:27 PM

Rank: AiutAmico

Iscritto dal : 1/26/2010
Posts: 682
Buon giorno ragazzi/e,
come da titolo ho dei problemi con il programma Hijack.
Mi spiego meglio :
Volevo fare una scansione da mostrare ai vari competenti di questo Sito per vedere se nel mio Pc andava tutto bene oppure se c'era qualche schifezza da eliminare, ma dopo aver lanciato il programma sopracitato, mi appare questa scritta :
" For some reason your system denied write access to the Host file. If any hijacked domains are in this file, Hijack This may NOT be able to fix this.
If that happens, your need to edit the file yourself. To do this, click Start, Run and type:
notepad C:\Windows\System32\drivers\etc\hosts
and press Enter. Find the line(s) HijackThis reports and delete them.
Save the file as'hosts' (with quotes), and reboot.
"

Il mio inglese è molto superficiale, ma ad occhio direi che c'è qualcosa che non permette al programma di poter analizzare e salvare il " log " .
Qualcuno può aiutarmi ed eventualmente consigliarmi qualche altro tipo di scansione per poter controllare lo stato del mio Pc , ultimamente ho notato un po di rallentamenti.
Dimenticavo : Sistema operativo Windows7 Professional 32 bit SP1
Grazie ebuona gionata a voi tutti.
Pinuccio
Sponsor
Inviato: Saturday, July 19, 2014 12:26:27 PM

 
miticoalex
Inviato: Saturday, July 19, 2014 5:25:47 PM

Rank: AiutAmico

Iscritto dal : 10/19/2010
Posts: 14,635
Ciao Pinuccio:-)

Su vista e seven, hijacktis va eseguito come amministratore.

Leggi il mio post qui.

Su seven in verità, hijackthis restituisce dei falsi positivi in quanto non è proprio compatibile.



miticoalex
Inviato: Saturday, July 19, 2014 5:44:22 PM

Rank: AiutAmico

Iscritto dal : 10/19/2010
Posts: 14,635
Magari per seven potrebbero servirti queste scansioni.




pinuccio53
Inviato: Sunday, July 20, 2014 11:12:55 AM

Rank: AiutAmico

Iscritto dal : 1/26/2010
Posts: 682
Grazie della risposta Mitico,
questa mattina ho provveduto a fare le scansioni che mi hai consigliato, e adesso posto i risultati :

1° Log
Malwarebytes Anti-Malware
www.malwarebytes.org

Data scansione: 17/07/2014
Ora scansione: 14:24:50
File di log: log Malwarebit.txt
Amministratore: Si

Versione: 2.00.2.1012
Database malware: v2014.07.17.05
Database rootkit: v2014.07.14.01
Licenza: Free
Protezione da malware: Disattivata
Protezione da siti web nocivi: Disattivata
Self-protection: Disattivata

SO: Windows 7 Service Pack 1
CPU: x86
File system: NTFS
Utente: Pinuccio

Tipo di scansione: Scansione elementi nocivi
Risultati: Completata
Elementi analizzati: 282273
Tempo impiegato: 6 min, 29 sec

Memoria: Attivata
Esecuzioni automatiche: Attivata
File system: Attivata
Archivi compressi: Attivata
Rootkit: Disattivata
Heuristics: Attivata
PUP: Avviso
PUM: Attivata

Processi: 2
PUP.Optional.IePluginService.A, C:\ProgramData\IePluginServices\PluginService.exe, 2392, Elimina al riavvio, [a5f400a08dee62d45ca4e67805fc41bf]
PUP.Optional.VOPackage.A, C:\Users\Pinuccio\AppData\Roaming\VOPackage\VOPackage.exe, 5768, Elimina al riavvio, [40591e82d7a4f73fb27e458ad72b47b9]

Moduli: 1
PUP.Optional.Skytech.A, C:\Program Files\SupTab\DpInterface32.dll, Elimina al riavvio, [fc9dc4dc4d2e6dc9390cc2cbd62b936d],

Chiavi di registro: 7
PUP.Optional.IePluginService.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\IePluginServices, Spostato in quarantena, [a5f400a08dee62d45ca4e67805fc41bf],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, Spostato in quarantena, [9504910fd4a792a4ef1c6cedbc469a66],
PUP.Optional.WPM.A, HKLM\SOFTWARE\supWindowsMangerProtect, Spostato in quarantena, [45542b75bfbc3105ca9c54c86a9a758b],
PUP.Optional.SweetPage.A, HKLM\SOFTWARE\sweet-pageSoftware, Spostato in quarantena, [4851564aec8f9b9b54740f0119ebfc04],
PUP.Optional.SearchProtect.A, HKLM\SOFTWARE\SEARCHPROTECT, Spostato in quarantena, [2673a2fe0774da5c7b1b4b775aa8e21e],
PUP.Optional.InstallCore.A, HKU\S-1-5-21-510852219-2866974073-3208831270-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE\1I1T1Q1S, Spostato in quarantena, [e1b8fda3cbb067cf62c302e48c76f10f],
PUP.Optional.InstallCore.A, HKU\S-1-5-21-510852219-2866974073-3208831270-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE, Spostato in quarantena, [e2b7b5ebc2b9ec4a7faf708c6b98e51b],

Valori di registro: 4
PUP.Optional.VOPackage.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE|VOPackage, C:\Users\Pinuccio\AppData\Roaming\VOPackage\VOPackage.exe /runonce, Spostato in quarantena, [40591e82d7a4f73fb27e458ad72b47b9]
PUP.Optional.FirstSeenToday.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|fst_it_205, Spostato in quarantena, [3a5f623e3a4193a326abe8ea778b0ff1],
PUP.Optional.SearchProtect.A, HKLM\SOFTWARE\SEARCHPROTECT|InstallDir, C:\PROGRA~1\SearchProtect, Spostato in quarantena, [2673a2fe0774da5c7b1b4b775aa8e21e]
PUP.Optional.InstallCore.A, HKU\S-1-5-21-510852219-2866974073-3208831270-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE|tb, 0V1D1S1R1D0V1O, Spostato in quarantena, [e2b7b5ebc2b9ec4a7faf708c6b98e51b]

Dati di registro: 2
PUP.Optional.SweetPage.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, http://www.sweet-page.com/web/?type=ds&ts=1405598442&from=cor&uid=MAXTORXSTM3250820AS_6QE0P7WXXXXX6QE0P7WX&q={searchTerms}, Buono: (www.google.com), Cattivo (http://www.sweet-page.com/web/?type=ds&ts=1405598442&from=cor&uid=MAXTORXSTM3250820AS_6QE0P7WXXXXX6QE0P7WX&q={searchTerms}),Sostituito,[f9a03d630e6dca6c0106a9fc31d31ee2]
PUP.Optional.SweetPage.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, http://www.sweet-page.com/web/?type=ds&ts=1405598442&from=cor&uid=MAXTORXSTM3250820AS_6QE0P7WXXXXX6QE0P7WX&q={searchTerms}, Buono: (www.google.com), Cattivo (http://www.sweet-page.com/web/?type=ds&ts=1405598442&from=cor&uid=MAXTORXSTM3250820AS_6QE0P7WXXXXX6QE0P7WX&q={searchTerms}),Sostituito,[92075050215ab086766ff2a73bc9f010]

Cartelle: 2
PUP.Optional.IePluginServices.A, C:\ProgramData\IePluginServices, Elimina al riavvio, [c5d4960a205b69cdd1375d5a4db5ae52],
PUP.Optional.IePluginServices.A, C:\ProgramData\IePluginServices\update, Spostato in quarantena, [c5d4960a205b69cdd1375d5a4db5ae52],

File: 8
PUP.Optional.IePluginService.A, C:\ProgramData\IePluginServices\PluginService.exe, Elimina al riavvio, [a5f400a08dee62d45ca4e67805fc41bf],
PUP.Optional.Skytech.A, C:\Program Files\SupTab\DpInterface32.dll, Elimina al riavvio, [fc9dc4dc4d2e6dc9390cc2cbd62b936d],
PUP.Optional.InstallMonetizer, C:\Users\Pinuccio\AppData\Local\Temp\Installmanager.exe, Spostato in quarantena, [56437d231863a5916ca13b197e8433cd],
PUP.Optional.WPM.A, C:\Users\Pinuccio\AppData\Local\Temp\5152000\5152000.zipDir\tmp\wpm_v20.0.0.502.exe, Spostato in quarantena, [5b3e5f416a11c274a2503957f70a3ac6],
PUP.Optional.Gameo.A, C:\Users\Pinuccio\AppData\Local\Temp\is45637729\5061722_stp.EXE, Spostato in quarantena, [5148dcc483f83600f0fdf7866b96b34d],
PUP.Optional.VOPackage.A, C:\Users\Pinuccio\AppData\Roaming\VOPackage\VOPackage.exe, Elimina al riavvio, [40591e82d7a4f73fb27e458ad72b47b9],
PUP.Optional.IePluginServices.A, C:\ProgramData\IePluginServices\update\conf, Spostato in quarantena, [c5d4960a205b69cdd1375d5a4db5ae52],
PUP.Optional.SweetPage.A, C:\Users\Pinuccio\AppData\Local\Google\Chrome\User Data\Default\Preferences, Buono: (), Cattivo ( "startup_urls": [ "http://www.sweet-page.com/?type=hp&ts=1405598442&from=cor&uid=MAXTORXSTM3250820AS_6QE0P7WXXXXX6QE0P7WX" ],), Sostituito,[bedbaff1ff7cec4aa7470ec606feb54b]

Settori fisici: 0
(No malicious items detected)


(end)

2° Log

# AdwCleaner v3.216 - Rapporto creato 20/07/2014 in 10:44:33
# Aggiornato 17/07/2014 di Xplode
# Sistema operativo : Windows 7 Professional Service Pack 1 (32 bits)
# Nome utente : Pinuccio - PINUCCIO-PC
# In esecuzione da : C:\Users\Pinuccio\Desktop\adwcleaner_3.216.exe
# Opzione : Pulisci

***** [ Servizi ] *****


***** [ File / Cartelle ] *****

Cartella Eliminato : C:\Program Files\predm
Cartella Eliminato : C:\Program Files\SupTab
File Eliminato : C:\Users\Pinuccio\AppData\Local\AnyProtectScannerSetup.exe
File Eliminato : C:\Users\Pinuccio\AppData\Roaming\aps.uninstall.scan.results
File Eliminato : C:\Windows\Tasks\APSnotifierPP1.job
File Eliminato : C:\Windows\System32\Tasks\APSnotifierPP1
File Eliminato : C:\Windows\Tasks\APSnotifierPP2.job
File Eliminato : C:\Windows\System32\Tasks\APSnotifierPP2
File Eliminato : C:\Windows\Tasks\APSnotifierPP3.job
File Eliminato : C:\Windows\System32\Tasks\APSnotifierPP3

***** [ Collegamenti ] *****


***** [ Registro ] *****

[#] Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AB49A6AF-55B3-4B08-BD1B-71629228C9A9}
[#] Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AB49A6AF-55B3-4B08-BD1B-71629228C9A9}
[#] Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{15B62D38-822E-4B5A-ADD1-2ADFB1821932}
[#] Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{15B62D38-822E-4B5A-ADD1-2ADFB1821932}
[#] Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{589116EE-7EDE-42C1-8EA1-67A5A452283F}
[#] Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{589116EE-7EDE-42C1-8EA1-67A5A452283F}
[#] Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1EC9510D-A439-4950-9399-B6399EDF9EA7}
Chiave Eliminati : HKCU\Software\APN PIP
Chiave Eliminati : HKCU\Software\IM
Chiave Eliminati : HKCU\Software\ImInstaller
Chiave Eliminati : HKCU\Software\PIP
Chiave Eliminati : HKCU\Software\TutoTag
Chiave Eliminati : HKLM\Software\PIP
Chiave Eliminati : HKLM\Software\SupDp
Chiave Eliminati : HKLM\Software\SupTab
Chiave Eliminati : HKLM\Software\Tutorials
Dato Eliminati : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~1\SupTab\SEARCH~1.DLL

***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.17207


-\\ Mozilla Firefox v30.0 (it)

[ File : C:\Users\Pinuccio\AppData\Roaming\Mozilla\Firefox\Profiles\7hgl4250.default\prefs.js ]


-\\ Google Chrome v36.0.1985.125

[ File : C:\Users\Pinuccio\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Eliminati [Search Provider] : hxxp://www.trovi.com/Results.aspx?gd=&ctid=CT3325585&octid=EB_ORIGINAL_CTID&ISID=MA831DE90-E0CF-40B6-800D-F5429024BAD5&SearchSource=58&CUI=&UM=5&UP=SP9E6AAAD4-E11C-4DB0-ABDD-C9D1C6FD666C&q={searchTerms}&SSPV=&SSPV=

*************************

AdwCleaner[R0].txt - [3142 octets] - [20/07/2014 10:41:41]
AdwCleaner[R1].txt - [3202 octets] - [20/07/2014 10:43:59]
AdwCleaner[S0].txt - [3204 octets] - [20/07/2014 10:44:33]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3264 octets] ##########

3° Log

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Professional x86
Ran by Pinuccio on 20/07/2014 at 10:49:48,12
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ FireFox

Emptied folder: C:\Users\Pinuccio\AppData\Roaming\mozilla\firefox\profiles\7hgl4250.default\minidumps [28 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 20/07/2014 at 10:51:56,77
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

4° Log

OTL logfile created on: 20/07/2014 10:58:06 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Pinuccio\Desktop
Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17207)
Locale: 00000410 | Country: Italia | Language: ITA | Date Format: dd/MM/yyyy

3,00 Gb Total Physical Memory | 2,22 Gb Available Physical Memory | 73,99% Memory free
5,99 Gb Paging File | 5,15 Gb Available in Paging File | 85,96% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 232,88 Gb Total Space | 191,47 Gb Free Space | 82,22% Space Free | Partition Type: NTFS

Computer Name: PINUCCIO-PC | User Name: Pinuccio | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days

========== Processes (SafeList) ==========

PRC - C:\Users\Pinuccio\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Programmi\Glary Utilities 5\Integrator.exe (Glarysoft Ltd)
PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation)
PRC - C:\Programmi\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
PRC - c:\Programmi\Microsoft Security Client\NisSrv.exe (Microsoft Corporation)
PRC - c:\Programmi\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
PRC - C:\Programmi\Microsoft Security Client\msseces.exe (Microsoft Corporation)
PRC - C:\Programmi\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
PRC - C:\Programmi\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation)
PRC - C:\Programmi\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Programmi\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)
PRC - C:\Programmi\Windows Sidebar\sidebar.exe (Microsoft Corporation)
PRC - C:\Windows\vVX3000.exe (Microsoft Corporation)
PRC - C:\Programmi\Microsoft LifeCam\MSCamS32.exe (Microsoft Corporation)
PRC - C:\Programmi\Common Files\microsoft shared\VS7DEBUG\MDM.EXE (Microsoft Corporation)


========== Modules (No Company Name) ==========

MOD - C:\Programmi\Glary Utilities 5\zlib1.dll ()


========== Services (SafeList) ==========

SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (IEEtwCollectorService) -- C:\Windows\System32\IEEtwCollector.exe (Microsoft Corporation)
SRV - (MozillaMaintenance) -- C:\Programmi\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (WatAdminSvc) -- C:\Windows\System32\Wat\WatAdminSvc.exe (Microsoft Corporation)
SRV - (AdobeARMservice) -- C:\Programmi\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (SkypeUpdate) -- C:\Programmi\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (NisSrv) -- c:\Programmi\Microsoft Security Client\NisSrv.exe (Microsoft Corporation)
SRV - (MsMpSvc) -- c:\Programmi\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
SRV - (WinDefend) -- C:\Programmi\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (nvUpdatusService) -- C:\Programmi\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
SRV - (WMPNetworkSvc) -- C:\Programmi\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)
SRV - (MSCamSvc) -- C:\Programmi\Microsoft LifeCam\MSCamS32.exe (Microsoft Corporation)
SRV - (StorSvc) -- C:\Windows\System32\StorSvc.dll (Microsoft Corporation)
SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
SRV - (PeerDistSvc) -- C:\Windows\System32\PeerDistSvc.dll (Microsoft Corporation)
SRV - (HsfXAudioService) -- C:\Windows\System32\XAudio32.dll (Conexant Systems, Inc.)
SRV - (ose) -- C:\Programmi\Common Files\microsoft shared\Source Engine\OSE.EXE (Microsoft Corporation)
SRV - (MDM) -- C:\Programmi\Common Files\microsoft shared\VS7DEBUG\MDM.EXE (Microsoft Corporation)


========== Driver Services (SafeList) ==========

DRV - (GUBootStartup) -- C:\Windows\System32\drivers\GUBootStartup.sys (Glarysoft Ltd)
DRV - (BootDefragDriver) -- C:\Windows\System32\drivers\BootDefragDriver.sys (Glarysoft Ltd)
DRV - (NisDrv) -- C:\Windows\System32\drivers\NisDrvWFP.sys (Microsoft Corporation)
DRV - (TsUsbFlt) -- C:\Windows\System32\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV - (nvlddmkm) -- C:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation)
DRV - (RdpVideoMiniport) -- C:\Windows\System32\drivers\rdpvideominiport.sys (Microsoft Corporation)
DRV - (vmbus) -- C:\Windows\System32\drivers\vmbus.sys (Microsoft Corporation)
DRV - (dmvsc) -- C:\Windows\System32\drivers\dmvsc.sys (Microsoft Corporation)
DRV - (storflt) -- C:\Windows\System32\drivers\vmstorfl.sys (Microsoft Corporation)
DRV - (storvsc) -- C:\Windows\System32\drivers\storvsc.sys (Microsoft Corporation)
DRV - (TsUsbGD) -- C:\Windows\System32\drivers\TsUsbGD.sys (Microsoft Corporation)
DRV - (VMBusHID) -- C:\Windows\System32\drivers\VMBusHID.sys (Microsoft Corporation)
DRV - (s3cap) -- C:\Windows\System32\drivers\vms3cap.sys (Microsoft Corporation)
DRV - (VX3000) -- C:\Windows\System32\drivers\VX3000.sys (Microsoft Corporation)
DRV - (SrvHsfPCI) -- C:\Windows\System32\drivers\VSTBS23.SYS (Conexant Systems, Inc.)
DRV - (HSXHWBS2) -- C:\Windows\System32\drivers\HSXHWBS2.sys (Conexant Systems, Inc.)
DRV - (XAudio) -- C:\Windows\System32\drivers\XAudio32.sys (Conexant Systems, Inc.)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-21-510852219-2866974073-3208831270-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
IE - HKU\S-1-5-21-510852219-2866974073-3208831270-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.tiscali.it/
IE - HKU\S-1-5-21-510852219-2866974073-3208831270-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://it.msn.com/?ocid=iehp
IE - HKU\S-1-5-21-510852219-2866974073-3208831270-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = it
IE - HKU\S-1-5-21-510852219-2866974073-3208831270-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = DF 7C B9 C5 31 78 CF 01 [binary data]
IE - HKU\S-1-5-21-510852219-2866974073-3208831270-1000\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-510852219-2866974073-3208831270-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR
IE - HKU\S-1-5-21-510852219-2866974073-3208831270-1000\..\SearchScopes\{252C961E-22C7-4C47-B1E7-E72094FAA653}: "URL" = http://www.google.it/#hl=it&source=hp&q={searchTerms}&aq=f&aqi=g10&aql=&oq=&gs_rfai=&fp=9fca69c98b5d77d7
IE - HKU\S-1-5-21-510852219-2866974073-3208831270-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-510852219-2866974073-3208831270-1001\..\SearchScopes,DefaultScope =

========== FireFox ==========

FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.tiscali.it/"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:30.0
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 30.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 30.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 30.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 30.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins

[2014/05/26 09:26:00 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Pinuccio\AppData\Roaming\mozilla\Extensions
[2014/07/18 14:36:07 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Pinuccio\AppData\Roaming\mozilla\Firefox\Profiles\7hgl4250.default\extensions
[2014/06/11 16:47:34 | 000,000,000 | ---D | M] (No name found) -- C:\Programmi\Mozilla Firefox\browser\extensions
[2014/06/11 16:48:21 | 000,000,000 | ---D | M] (Default) -- C:\Programmi\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

========== Chrome ==========

CHR - plugin: Error reading preferences file
CHR - Extension: No name found = C:\Users\Pinuccio\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0\
CHR - Extension: No name found = C:\Users\Pinuccio\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\
CHR - Extension: No name found = C:\Users\Pinuccio\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: No name found = C:\Users\Pinuccio\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: No name found = C:\Users\Pinuccio\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: No name found = C:\Users\Pinuccio\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Google Wallet = C:\Users\Pinuccio\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: Google Wallet = C:\Users\Pinuccio\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_1\
CHR - Extension: No name found = C:\Users\Pinuccio\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
CHR - Extension: No name found = C:\Users\Pinuccio\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2009/06/10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [t4pc_en_9] File not found
O4 - HKLM..\Run: [VX3000] C:\Windows\vVX3000.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-510852219-2866974073-3208831270-1000..\Run: [GUDelayStartup] C:\Program Files\Glary Utilities 5\StartupManager.exe (Glarysoft Ltd)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-510852219-2866974073-3208831270-1001..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8 - Extra context menu item: E&sporta in Microsoft Excel - C:\Programmi\Microsoft Office\OFFICE11\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Ricerche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Programmi\Microsoft Office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254 213.205.32.70 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{13B7FD7E-1A9E-4AE8-8660-631A7C7BDAE9}: DhcpNameServer = 192.168.1.254 213.205.32.70 8.8.8.8
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Programmi\Common Files\microsoft shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Programmi\Common Files\microsoft shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Programmi\Common Files\microsoft shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Programmi\Common Files\microsoft shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (BootDefrag.exe)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 60 Days ==========

[2014/07/20 10:49:45 | 000,000,000 | ---D | C] -- C:\Windows\ERUNT
[2014/07/20 10:42:08 | 000,536,576 | ---- | C] (SQLite Development Team) -- C:\Windows\System32\sqlite3.dll
[2014/07/20 10:41:35 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2014/07/20 10:40:29 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Pinuccio\Desktop\OTL.exe
[2014/07/20 10:39:46 | 001,016,261 | ---- | C] (Thisisu) -- C:\Users\Pinuccio\Desktop\JRT.exe
[2014/07/19 11:58:22 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
[2014/07/19 11:58:21 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2014/07/17 14:23:48 | 000,110,296 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys
[2014/07/17 14:23:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
[2014/07/17 14:23:27 | 000,074,456 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamchameleon.sys
[2014/07/17 14:23:27 | 000,051,928 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mwac.sys
[2014/07/17 14:23:26 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes Anti-Malware
[2014/07/17 13:53:11 | 000,000,000 | ---D | C] -- C:\Program Files\Probit Software
[2014/07/10 14:26:23 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollector.exe
[2014/07/10 14:26:23 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwproxystub.dll
[2014/07/10 14:26:23 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\JavaScriptCollectionAgent.dll
[2014/07/10 14:26:22 | 000,646,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MsSpellCheckingFacility.exe
[2014/07/10 14:26:21 | 000,240,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2014/07/10 14:26:21 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2014/07/10 14:26:20 | 000,704,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2014/07/10 14:26:20 | 000,526,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2014/07/10 14:26:20 | 000,367,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2014/07/10 14:26:20 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2014/07/10 14:26:20 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2014/07/10 14:26:19 | 002,724,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2014/07/10 14:26:18 | 001,964,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2014/07/10 14:26:18 | 000,595,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2014/07/10 14:26:18 | 000,164,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll
[2014/07/10 14:26:17 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2014/07/10 14:26:17 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollectorres.dll
[2014/07/10 14:26:15 | 000,442,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2014/07/10 14:26:15 | 000,239,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2014/07/10 14:26:12 | 001,068,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmlmedia.dll
[2014/07/10 14:26:12 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MshtmlDac.dll
[2014/07/10 14:26:10 | 000,592,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9diag.dll
[2014/07/10 14:26:08 | 004,254,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2014/07/10 14:25:40 | 002,350,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2014/07/10 14:25:39 | 000,646,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\osk.exe
[2014/07/10 14:25:30 | 000,509,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qedit.dll
[2014/07/10 14:25:24 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
[2014/07/10 14:25:16 | 000,404,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aepdu.dll
[2014/07/10 14:25:15 | 000,302,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aeinv.dll
[2014/07/09 20:44:49 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\Documents\File vari da controllare
[2014/06/22 10:58:46 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\AppData\Local\QupZilla
[2014/06/21 14:14:32 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\AppData\Local\Diagnostics
[2014/06/12 12:15:23 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml6r.dll
[2014/06/12 12:15:23 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml3r.dll
[2014/06/12 12:15:17 | 000,187,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\FWPKCLNT.SYS
[2014/06/11 16:47:34 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2014/06/11 12:21:27 | 002,742,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpcorets.dll
[2014/06/11 12:21:27 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RdpGroupPolicyExtension.dll
[2014/06/03 19:35:55 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\Documents\Missione 12 13 Maggio 2014
[2014/06/03 19:12:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Creativity Suite
[2014/06/03 19:12:04 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2014/06/03 19:11:00 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2014/06/03 19:08:34 | 000,501,912 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\System32\PICSDK2.dll
[2014/06/03 19:08:34 | 000,120,992 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\System32\EpPicPrt.dll
[2014/06/03 19:08:34 | 000,108,704 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\System32\PICEntry.dll
[2014/06/03 19:08:34 | 000,080,024 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\System32\PICSDK.dll
[2014/06/03 19:08:34 | 000,071,840 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\System32\EPPicMgr.dll
[2014/06/03 19:08:27 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\AppData\Roaming\InstallShield
[2014/06/03 19:07:29 | 000,000,000 | ---D | C] -- C:\ProgramData\EPSON
[2014/06/03 19:07:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
[2014/06/03 19:03:54 | 000,049,152 | ---- | C] (SEIKO EPSON CORP.) -- C:\Windows\System32\E_DCINST.DLL
[2014/06/03 19:03:50 | 000,076,800 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\System32\E_FLBCAE.DLL
[2014/06/03 19:03:48 | 000,062,976 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\System32\E_FD4BCAE.DLL
[2014/06/03 19:02:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Scan
[2014/06/03 19:02:17 | 000,208,896 | ---- | C] (SEIKO EPSON CORP.) -- C:\Windows\System32\esint7e.dll
[2014/06/03 19:02:17 | 000,066,560 | ---- | C] (SEIKO EPSON CORP.) -- C:\Windows\System32\eswia7e.dll
[2014/06/03 19:02:17 | 000,003,584 | ---- | C] (SEIKO EPSON CORP.) -- C:\Windows\System32\eswiaml.dll
[2014/06/03 19:02:17 | 000,000,000 | ---D | C] -- C:\Program Files\epson
[2014/05/31 10:07:15 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\Nuova cartella
[2014/05/31 10:05:44 | 000,000,000 | ---D | C] -- C:\FFOutput
[2014/05/31 10:05:24 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
[2014/05/31 10:04:56 | 000,000,000 | ---D | C] -- C:\Program Files\FreeTime
[2014/05/30 21:36:45 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\AppData\Roaming\Malwarebytes
[2014/05/30 21:36:32 | 000,023,256 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2014/05/30 21:04:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2014/05/30 16:22:48 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\Documents\File Torrent
[2014/05/30 16:21:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bit Che
[2014/05/30 16:21:04 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\AppData\Roaming\Convivea
[2014/05/30 16:21:03 | 000,000,000 | ---D | C] -- C:\Program Files\Bit Che
[2014/05/30 16:18:00 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\AppData\Roaming\uTorrent
[2014/05/28 20:21:32 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
[2014/05/28 20:21:31 | 000,000,000 | ---D | C] -- C:\Program Files\VS Revo Group
[2014/05/27 16:10:56 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\AppData\Local\Skype
[2014/05/27 16:10:48 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\AppData\Roaming\Skype
[2014/05/27 16:10:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2014/05/27 16:10:42 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2014/05/27 16:10:40 | 000,000,000 | R--D | C] -- C:\Program Files\Skype
[2014/05/27 16:10:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2014/05/27 14:10:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft LifeCam
[2014/05/27 14:10:04 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft LifeCam
[2014/05/27 14:09:59 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_42.dll
[2014/05/27 14:09:59 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_42.dll
[2014/05/26 22:51:10 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\AppData\Roaming\Auslogics
[2014/05/26 22:51:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auslogics
[2014/05/26 22:51:07 | 000,000,000 | ---D | C] -- C:\Program Files\Auslogics
[2014/05/26 22:04:42 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\Documents\Icone del Desktop
[2014/05/26 21:37:38 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\AppData\Local\CrashRpt
[2014/05/26 21:37:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SIW
[2014/05/26 21:37:19 | 000,000,000 | ---D | C] -- C:\Program Files\SIW 2013 Home Edition
[2014/05/26 21:36:05 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\Documents\Programmi
[2014/05/26 19:55:00 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\AppData\Local\Macromedia
[2014/05/26 10:55:08 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\Application Data
[2014/05/26 10:51:54 | 000,028,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mdimon.dll
[2014/05/26 10:51:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2014/05/26 10:50:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2014/05/26 10:50:33 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Works
[2014/05/26 10:50:26 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio
[2014/05/26 10:50:12 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2014/05/26 10:50:12 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2014/05/26 10:48:58 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2014/05/26 10:39:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5
[2014/05/26 10:39:08 | 000,101,664 | ---- | C] (Glarysoft Ltd) -- C:\Windows\System32\BootDefrag.exe
[2014/05/26 10:39:08 | 000,017,088 | ---- | C] (Glarysoft Ltd) -- C:\Windows\System32\drivers\GUBootStartup.sys
[2014/05/26 10:39:08 | 000,016,064 | ---- | C] (Glarysoft Ltd) -- C:\Windows\System32\drivers\BootDefragDriver.sys
[2014/05/26 10:39:08 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\AppData\Roaming\GlarySoft
[2014/05/26 10:39:08 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\AppData\Roaming\DiskDefrag
[2014/05/26 10:38:56 | 000,000,000 | ---D | C] -- C:\Program Files\Glary Utilities 5
[2014/05/26 10:37:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Auslogics
[2014/05/26 10:37:06 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\AppData\Local\Programs
[2014/05/26 10:32:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2014/05/26 10:32:22 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2014/05/26 09:36:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe AIR
[2014/05/26 09:35:48 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\AppData\Roaming\Macromedia
[2014/05/26 09:35:36 | 000,699,056 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2014/05/26 09:35:36 | 000,071,344 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2014/05/26 09:35:32 | 000,000,000 | ---D | C] -- C:\Windows\System32\Macromed
[2014/05/26 09:25:55 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\AppData\Roaming\Mozilla
[2014/05/26 09:25:55 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\AppData\Local\Mozilla
[2014/05/25 20:35:59 | 000,000,000 | ---D | C] -- C:\Windows\System32\Wat
[2014/05/25 20:35:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2014/05/25 20:35:22 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2014/05/25 20:35:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2014/05/25 20:34:26 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\AppData\Local\Adobe
[2014/05/25 20:16:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2014/05/25 20:15:56 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2014/05/25 20:10:53 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMPhoto.dll
[2014/05/25 20:10:51 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fsutil.exe
[2014/05/25 20:10:43 | 002,616,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2014/05/25 20:10:42 | 003,419,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2014/05/25 20:10:42 | 001,987,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2014/05/25 20:06:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2014/05/25 20:05:17 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2014/05/25 20:05:13 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\AppData\Local\Google
[2014/05/25 20:04:55 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\AppData\Local\Apps
[2014/05/25 20:04:54 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\AppData\Local\Deployment
[2014/05/25 20:04:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2014/05/25 20:04:04 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2014/05/25 20:01:47 | 000,000,000 | -HSD | C] -- C:\Users\Pinuccio\AppData\Local\EmieUserList
[2014/05/25 20:01:47 | 000,000,000 | -HSD | C] -- C:\Users\Pinuccio\AppData\Local\EmieSiteList
[2014/05/25 20:00:00 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\AppData\Roaming\Adobe
[2014/05/25 19:52:16 | 000,000,000 | --SD | C] -- C:\Windows\System32\CompatTel
[2014/05/25 19:34:20 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\rdpvideominiport.sys
[2014/05/25 19:34:15 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpudd.dll
[2014/05/25 19:34:15 | 000,192,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpendp_winip.dll
[2014/05/25 19:07:42 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TsUsbGDCoInstaller.dll
[2014/05/25 19:07:40 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TsUsbRedirectionGroupPolicyControl.exe
[2014/05/25 19:07:39 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\TsUsbFlt.sys
[2014/05/25 19:07:38 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdvidcrl.dll
[2014/05/25 19:07:38 | 000,350,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wksprt.exe
[2014/05/25 19:07:38 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TSWbPrxy.exe
[2014/05/25 19:07:38 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tsgqec.dll
[2014/05/25 19:07:38 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MsRdpWebAccess.dll
[2014/05/25 19:07:38 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wksprtPS.dll
[2014/05/25 19:07:38 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TsUsbRedirectionGroupPolicyExtension.dll
[2014/05/25 18:56:01 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2014/05/25 18:55:59 | 000,000,000 | ---D | C] -- C:\Windows\Migration
[2014/05/25 18:48:20 | 000,000,000 | ---D | C] -- C:\Windows\System32\MRT
[2014/05/25 18:45:19 | 000,000,000 | ---D | C] -- C:\Program Files\CONEXANT
[2014/05/25 18:30:14 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WUDFPlatform.dll
[2014/05/25 18:30:13 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WUDFx.dll
[2014/05/25 18:30:13 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WUDFCoinstaller.dll
[2014/05/25 18:27:07 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\browserchoice.exe
[2014/05/25 18:16:01 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2014/05/25 18:15:47 | 003,970,848 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcpl.dll
[2014/05/25 18:15:47 | 002,859,296 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvsvc.dll
[2014/05/25 18:15:47 | 002,557,728 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvsvcr.dll
[2014/05/25 18:15:47 | 000,108,832 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvmctray.dll
[2014/05/25 18:15:47 | 000,062,752 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvshext.dll
[2014/05/25 18:15:20 | 000,053,024 | ---- | C] (Khronos Group) -- C:\Windows\System32\OpenCL.dll
[2014/05/25 18:15:02 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2014/05/25 18:14:23 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2014/05/25 18:14:01 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2014/05/25 18:05:22 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2014/05/25 18:05:08 | 000,000,000 | -HSD | C] -- C:\Boot
[2014/05/25 18:04:06 | 000,645,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsIntl.dll
[2014/05/25 18:04:06 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\elshyph.dll
[2014/05/25 18:04:06 | 000,182,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msls31.dll
[2014/05/25 18:04:06 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe
[2014/05/25 18:04:05 | 000,616,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat
[2014/05/25 18:04:05 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2014/05/25 18:04:05 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2014/05/25 18:04:05 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iexpress.exe
[2014/05/25 18:04:05 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wextract.exe
[2014/05/25 18:04:05 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inseng.dll
[2014/05/25 18:04:05 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll
[2014/05/25 18:04:05 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll
[2014/05/25 18:04:04 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2014/05/25 18:04:04 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IEAdvpack.dll
[2014/05/25 18:04:04 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2014/05/25 18:04:04 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SetIEInstalledDate.exe
[2014/05/25 18:04:04 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmler.dll
[2014/05/25 18:04:04 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2014/05/25 18:04:04 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imgutil.dll
[2014/05/25 18:04:04 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2014/05/25 18:03:33 | 000,619,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tdh.dll
[2014/05/25 18:03:33 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll
[2014/05/25 18:03:10 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
[2014/05/25 18:01:36 | 002,284,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msmpeg2vdec.dll
[2014/05/25 18:01:36 | 001,247,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2014/05/25 18:01:36 | 001,158,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.dll
[2014/05/25 18:01:36 | 001,080,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll
[2014/05/25 18:01:36 | 000,604,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10level9.dll
[2014/05/25 18:01:36 | 000,364,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2014/05/25 18:01:36 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll
[2014/05/25 18:01:36 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2014/05/25 18:01:36 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll
[2014/05/25 18:01:36 | 000,207,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecsExt.dll
[2014/05/25 18:01:36 | 000,187,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIAnimation.dll
[2014/05/25 18:01:36 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2014/05/25 18:01:36 | 000,010,752 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2014/05/25 18:01:36 | 000,009,728 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2014/05/25 18:01:36 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2014/05/25 18:01:36 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
[2014/05/25 18:01:36 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
[2014/05/25 18:01:36 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2014/05/25 18:01:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
[2014/05/25 18:01:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
[2014/05/25 18:01:36 | 000,002,560 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2014/05/25 18:00:27 | 001,505,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d11.dll
[2014/05/25 17:59:20 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2014/05/25 17:59:20 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2014/05/25 17:57:28 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\OxpsConverter.exe
[2014/05/25 17:56:54 | 003,969,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2014/05/25 17:56:54 | 003,914,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2014/05/25 17:56:53 | 000,538,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\objsel.dll
[2014/05/25 17:56:53 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cngprovider.dll
[2014/05/25 17:56:53 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adprovider.dll
[2014/05/25 17:56:53 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\capiprovider.dll
[2014/05/25 17:56:53 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpapiprovider.dll
[2014/05/25 17:56:53 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dimsroam.dll
[2014/05/25 17:56:52 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wincredprovider.dll
[2014/05/25 17:56:52 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sspisrv.dll
[2014/05/25 17:56:24 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netcorehc.dll
[2014/05/25 17:56:24 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncsi.dll
[2014/05/25 17:56:23 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll
[2014/05/25 17:56:06 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cscript.exe
[2014/05/25 17:56:04 | 000,792,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TSWorkspace.dll
[2014/05/25 17:55:55 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\RNDISMP.sys
[2014/05/25 17:55:52 | 001,796,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\authui.dll
[2014/05/25 17:55:51 | 000,152,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SmartcardCredentialProvider.dll
[2014/05/25 17:55:39 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidclass.sys
[2014/05/25 17:55:39 | 000,025,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidparse.sys
[2014/05/25 17:55:36 | 001,549,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tquery.dll
[2014/05/25 17:55:36 | 001,401,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssrch.dll
[2014/05/25 17:55:35 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssvp.dll
[2014/05/25 17:55:35 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssph.dll
[2014/05/25 17:55:35 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssphtb.dll
[2014/05/25 17:55:35 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscntrs.dll
[2014/05/25 17:55:32 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cryptdlg.dll
[2014/05/25 17:55:27 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usb8023.sys
[2014/05/25 17:55:24 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\timedate.cpl
[2014/05/25 17:55:24 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\prevhost.exe
[2014/05/25 17:55:23 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dnscacheugc.exe
[2014/05/25 17:55:22 | 000,376,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpnet.dll
[2014/05/25 17:55:19 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll
[2014/05/25 17:55:19 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisrndr.ax
[2014/05/25 17:55:18 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qdvd.dll
[2014/05/25 17:55:17 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbe.dll
[2014/05/25 17:55:17 | 000,642,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CPFilters.dll
[2014/05/25 17:55:17 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mpg2splt.ax
[2014/05/25 17:54:50 | 000,903,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certutil.exe
[2014/05/25 17:54:49 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certenc.dll
[2014/05/25 17:54:42 | 000,400,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srcore.dll
[2014/05/25 17:54:39 | 001,620,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVDECOD.DLL
[2014/05/25 17:54:38 | 000,149,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\storport.sys
[2014/05/25 17:54:38 | 000,027,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Diskdump.sys
[2014/05/25 17:54:38 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iologmsg.dll
[2014/05/25 17:54:29 | 000,434,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scavengeui.dll
[2014/05/25 17:54:28 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDec.dll
[2014/05/25 17:54:27 | 000,295,424 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2014/05/25 17:54:27 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2014/05/25 17:54:27 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll
[2014/05/25 17:54:26 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2014/05/25 17:54:25 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdosys.dll
[2014/05/25 17:54:22 | 000,218,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxgmms1.sys
[2014/05/25 17:54:17 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\browcli.dll
[2014/05/25 17:54:15 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2014/05/25 17:54:12 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\synceng.dll
[2014/05/25 17:54:11 | 000,102,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2014/05/25 17:54:10 | 000,177,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\portcls.sys
[2014/05/25 17:54:10 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\drmk.sys
[2014/05/25 17:54:07 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wwanprotdim.dll
[2014/05/25 17:54:06 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\packager.dll
[2014/05/25 17:54:02 | 001,328,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2014/05/25 17:54:01 | 000,191,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FXSCOVER.exe
[2014/05/25 17:53:33 | 002,576,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll
[2014/05/25 17:53:33 | 000,046,592 | ---- | C] (Microsoft) -- C:\Windows\System32\fpb.rs
[2014/05/25 17:53:33 | 000,045,568 | ---- | C] (Microsoft) -- C:\Windows\System32\oflc-nz.rs
[2014/05/25 17:53:33 | 000,044,544 | ---- | C] (Microsoft) -- C:\Windows\System32\pegibbfc.rs
[2014/05/25 17:53:33 | 000,043,520 | ---- | C] (Microsoft) -- C:\Windows\System32\csrr.rs
[2014/05/25 17:53:33 | 000,040,960 | ---- | C] (Microsoft) -- C:\Windows\System32\cob-au.rs
[2014/05/25 17:53:33 | 000,030,720 | ---- | C] (Microsoft) -- C:\Windows\System32\usk.rs
[2014/05/25 17:53:33 | 000,021,504 | ---- | C] (Microsoft) -- C:\Windows\System32\grb.rs
[2014/05/25 17:53:33 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\System32\pegi-pt.rs
[2014/05/25 17:53:33 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\System32\pegi.rs
[2014/05/25 17:53:33 | 000,015,360 | ---- | C] (Microsoft) -- C:\Windows\System32\djctq.rs
[2014/05/25 17:53:32 | 000,308,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Wpc.dll
[2014/05/25 17:53:32 | 000,055,296 | ---- | C] (Microsoft) -- C:\Windows\System32\cero.rs
[2014/05/25 17:53:32 | 000,051,712 | ---- | C] (Microsoft) -- C:\Windows\System32\esrb.rs
[2014/05/25 17:53:32 | 000,023,552 | ---- | C] (Microsoft) -- C:\Windows\System32\oflc.rs
[2014/05/25 17:53:32 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\System32\pegi-fi.rs
[2014/05/25 17:53:25 | 000,271,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
[2014/05/25 17:53:25 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2014/05/25 17:53:25 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
[2014/05/25 17:53:25 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll
[2014/05/25 17:53:25 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
[2014/05/25 17:53:25 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
[2014/05/25 17:53:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
[2014/05/25 17:53:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll
[2014/05/25 17:53:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll
[2014/05/25 17:53:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
[2014/05/25 17:53:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll
[2014/05/25 17:53:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll
[2014/05/25 17:53:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
[2014/05/25 17:53:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
[2014/05/25 17:53:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll
[2014/05/25 17:53:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2014/05/25 17:53:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
[2014/05/25 17:53:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll
[2014/05/25 17:53:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll
[2014/05/25 17:53:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll
[2014/05/25 17:53:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
[2014/05/25 17:53:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll
[2014/05/25 17:53:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll
[2014/05/25 17:53:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll
[2014/05/25 17:53:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll
[2014/05/25 17:53:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
[2014/05/25 17:53:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll
[2014/05/25 17:53:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll
[2014/05/25 17:53:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll
[2014/05/25 17:53:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll
[2014/05/25 17:53:23 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\webio.dll
[2014/05/25 17:53:16 | 001,164,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42u.dll
[2014/05/25 17:53:16 | 001,137,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42.dll
[2014/05/25 17:53:13 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wer.dll
[2014/05/25 17:53:11 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dhcpcore6.dll
[2014/05/25 17:53:11 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc6.dll
[2014/05/25 17:52:58 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpcorekmts.dll
[2014/05/25 17:52:58 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpwsx.dll
[2014/05/25 17:52:58 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdrmemptylst.exe
[2014/05/25 17:52:51 | 000,656,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nshwfp.dll
[2014/05/25 17:52:51 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FWPUCLNT.DLL
[2014/05/25 17:52:43 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\AppData\Local\Microsoft Games
[2014/05/25 17:52:06 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Games
[2014/05/25 17:50:47 | 000,231,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2014/05/25 17:46:56 | 000,047,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\WdfLdr.sys
[2014/05/25 17:46:56 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Wdfres.dll
[2014/05/25 17:46:55 | 000,240,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\netio.sys
[2014/05/25 17:46:43 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\poqexec.exe
[2014/05/25 17:46:40 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbcjt32.dll
[2014/05/25 17:46:40 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbctrac.dll
[2014/05/25 17:46:40 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccp32.dll
[2014/05/25 17:46:40 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccu32.dll
[2014/05/25 17:46:40 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccr32.dll
[2014/05/25 17:46:33 | 000,133,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ataport.sys
[2014/05/25 17:46:18 | 000,284,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbport.sys
[2014/05/25 17:46:18 | 000,006,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbd.sys
[2014/05/25 17:43:55 | 000,594,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_isv.exe
[2014/05/25 17:43:55 | 000,572,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate.exe
[2014/05/25 17:43:55 | 000,510,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp.exe
[2014/05/25 17:43:55 | 000,508,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp_isv.exe
[2014/05/25 17:43:55 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc.dll
[2014/05/25 17:43:55 | 000,423,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_isv.dll
[2014/05/25 17:43:55 | 000,390,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdrm.dll
[2014/05/25 17:43:55 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp_isv.dll
[2014/05/25 17:43:55 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp.dll
[2014/05/25 17:41:06 | 000,101,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\consent.exe
[2014/05/25 17:36:47 | 000,826,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpcore.dll
[2014/05/25 17:29:39 | 002,422,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2014/05/25 17:29:39 | 000,045,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
[2014/05/25 17:29:31 | 000,577,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2014/05/25 17:29:31 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2014/05/25 17:29:31 | 000,035,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
[2014/05/25 17:29:23 | 000,171,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2014/05/25 17:29:23 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2014/05/25 17:29:16 | 000,000,000 | R--D | C] -- C:\Users\Pinuccio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2014/05/25 17:29:16 | 000,000,000 | R--D | C] -- C:\Users\Pinuccio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2014/05/25 17:29:15 | 000,000,000 | R--D | C] -- C:\Users\Pinuccio\Searches
[2014/05/25 17:29:06 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\AppData\Roaming\Identities
[2014/05/25 17:29:04 | 000,000,000 | R--D | C] -- C:\Users\Pinuccio\Contacts
[2014/05/25 17:28:58 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\AppData\Local\VirtualStore
[2014/05/25 17:28:57 | 000,000,000 | --SD | C] -- C:\Users\Pinuccio\AppData\Roaming\Microsoft
[2014/05/25 17:28:57 | 000,000,000 | R--D | C] -- C:\Users\Pinuccio\Videos
[2014/05/25 17:28:57 | 000,000,000 | R--D | C] -- C:\Users\Pinuccio\Saved Games
[2014/05/25 17:28:57 | 000,000,000 | R--D | C] -- C:\Users\Pinuccio\Pictures
[2014/05/25 17:28:57 | 000,000,000 | R--D | C] -- C:\Users\Pinuccio\Music
[2014/05/25 17:28:57 | 000,000,000 | R--D | C] -- C:\Users\Pinuccio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2014/05/25 17:28:57 | 000,000,000 | R--D | C] -- C:\Users\Pinuccio\Links
[2014/05/25 17:28:57 | 000,000,000 | R--D | C] -- C:\Users\Pinuccio\Favorites
[2014/05/25 17:28:57 | 000,000,000 | R--D | C] -- C:\Users\Pinuccio\Downloads
[2014/05/25 17:28:57 | 000,000,000 | R--D | C] -- C:\Users\Pinuccio\Documents
[2014/05/25 17:28:57 | 000,000,000 | R--D | C] -- C:\Users\Pinuccio\Desktop
[2014/05/25 17:28:57 | 000,000,000 | R--D | C] -- C:\Users\Pinuccio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2014/05/25 17:28:57 | 000,000,000 | -HSD | C] -- C:\Users\Pinuccio\Documents\Video
[2014/05/25 17:28:57 | 000,000,000 | -HSD | C] -- C:\Users\Pinuccio\AppData\Local\Temporary Internet Files
[2014/05/25 17:28:57 | 000,000,000 | -HSD | C] -- C:\Users\Pinuccio\SendTo
[2014/05/25 17:28:57 | 000,000,000 | -HSD | C] -- C:\Users\Pinuccio\Risorse di stampa
[2014/05/25 17:28:57 | 000,000,000 | -HSD | C] -- C:\Users\Pinuccio\Risorse di rete
[2014/05/25 17:28:57 | 000,000,000 | -HSD | C] -- C:\Users\Pinuccio\Recenti
[2014/05/25 17:28:57 | 000,000,000 | -HSD | C] -- C:\Users\Pinuccio\Documents\Musica
[2014/05/25 17:28:57 | 000,000,000 | -HSD | C] -- C:\Users\Pinuccio\Modelli
[2014/05/25 17:28:57 | 000,000,000 | -HSD | C] -- C:\Users\Pinuccio\Menu Avvio
[2014/05/25 17:28:57 | 000,000,000 | -HSD | C] -- C:\Users\Pinuccio\Impostazioni locali
[2014/05/25 17:28:57 | 000,000,000 | -HSD | C] -- C:\Users\Pinuccio\Documents\Immagini
[2014/05/25 17:28:57 | 000,000,000 | -HSD | C] -- C:\Users\Pinuccio\Documenti
[2014/05/25 17:28:57 | 000,000,000 | -HSD | C] -- C:\Users\Pinuccio\Dati applicazioni
[2014/05/25 17:28:57 | 000,000,000 | -HSD | C] -- C:\Users\Pinuccio\AppData\Local\Dati applicazioni
[2014/05/25 17:28:57 | 000,000,000 | -HSD | C] -- C:\Users\Pinuccio\AppData\Local\Cronologia
[2014/05/25 17:28:57 | 000,000,000 | -HSD | C] -- C:\Users\Pinuccio\Cookies
[2014/05/25 17:28:57 | 000,000,000 | -H-D | C] -- C:\Users\Pinuccio\AppData
[2014/05/25 17:28:57 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\AppData\Local\Temp
[2014/05/25 17:28:57 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\AppData\Local\Microsoft
[2014/05/25 17:28:57 | 000,000,000 | ---D | C] -- C:\Users\Pinuccio\AppData\Roaming\Media Center Programs
[2014/05/25 17:28:45 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Video
[2014/05/25 17:28:45 | 000,000,000 | -HSD | C] -- C:\Recovery
[2014/05/25 17:28:45 | 000,000,000 | -HSD | C] -- C:\Programmi
[2014/05/25 17:28:45 | 000,000,000 | -HSD | C] -- C:\ProgramData\Preferiti
[2014/05/25 17:28:45 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Musica
[2014/05/25 17:28:45 | 000,000,000 | -HSD | C] -- C:\ProgramData\Modelli
[2014/05/25 17:28:45 | 000,000,000 | -HSD | C] -- C:\ProgramData\Menu Avvio
[2014/05/25 17:28:45 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Immagini
[2014/05/25 17:28:45 | 000,000,000 | -HSD | C] -- C:\Program Files\File comuni
[2014/05/25 17:28:45 | 000,000,000 | -HSD | C] -- C:\ProgramData\Documenti
[2014/05/25 17:28:45 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dati applicazioni
[2014/05/25 17:09:11 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2014/05/25 17:07:00 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2014/05/25 17:06:12 | 000,000,000 | -HSD | C] -- C:\System Volume Information

========== Files - Modified Within 60 Days ==========

[2014/07/20 10:47:10 | 000,000,326 | ---- | M] () -- C:\Windows\tasks\GlaryInitialize 5.job
[2014/07/20 10:46:07 | 000,001,138 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014/07/20 10:45:38 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014/07/20 10:45:34 | 2415,370,240 | -HS- | M] () -- C:\hiberfil.sys
[2014/07/20 10:44:57 | 000,032,240 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014/07/20 10:44:57 | 000,032,240 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014/07/20 10:40:10 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Pinuccio\Desktop\OTL.exe
[2014/07/20 10:39:20 | 001,016,261 | ---- | M] (Thisisu) -- C:\Users\Pinuccio\Desktop\JRT.exe
[2014/07/20 10:38:08 | 001,354,223 | ---- | M] () -- C:\Users\Pinuccio\Desktop\adwcleaner_3.216.exe
[2014/07/20 10:35:13 | 000,110,296 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys
[2014/07/20 10:31:27 | 000,408,672 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2014/07/19 23:39:50 | 000,001,142 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014/07/19 23:39:42 | 000,000,978 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014/07/19 11:58:22 | 000,002,979 | ---- | M] () -- C:\Users\Pinuccio\Desktop\HiJackThis.lnk
[2014/07/17 14:23:40 | 000,001,060 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2014/07/17 13:51:27 | 000,000,408 | RHS- | M] () -- C:\ProgramData\ntuser.pol
[2014/07/17 13:50:52 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_webinstr_01009.Wdf
[2014/07/09 22:11:14 | 000,699,056 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2014/07/09 22:11:14 | 000,071,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2014/07/09 20:44:19 | 000,000,965 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2014/07/04 12:58:01 | 000,001,038 | ---- | M] () -- C:\Users\Public\Desktop\Glary Utilities 5.lnk
[2014/07/04 12:57:58 | 000,017,088 | ---- | M] (Glarysoft Ltd) -- C:\Windows\System32\drivers\GUBootStartup.sys
[2014/06/30 03:40:16 | 000,404,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aepdu.dll
[2014/06/30 03:36:00 | 000,302,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aeinv.dll
[2014/06/28 09:18:30 | 000,740,658 | ---- | M] () -- C:\Windows\System32\perfh010.dat
[2014/06/28 09:18:30 | 000,653,526 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2014/06/28 09:18:30 | 000,146,712 | ---- | M] () -- C:\Windows\System32\perfc010.dat
[2014/06/28 09:18:30 | 000,121,398 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2014/06/24 15:08:00 | 000,000,857 | ---- | M] () -- C:\Users\Pinuccio\Desktop\µTorrent.lnk
[2014/06/20 21:39:54 | 000,240,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2014/06/19 01:56:37 | 002,724,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2014/06/19 01:56:03 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollectorres.dll
[2014/06/19 01:37:23 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2014/06/19 01:36:35 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieetwproxystub.dll
[2014/06/19 01:35:55 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MshtmlDac.dll
[2014/06/19 01:28:45 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2014/06/19 01:28:16 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2014/06/19 01:25:38 | 000,442,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2014/06/19 01:23:27 | 000,112,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2014/06/19 01:23:24 | 000,108,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollector.exe
[2014/06/19 01:22:40 | 000,592,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9diag.dll
[2014/06/19 01:16:33 | 000,646,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MsSpellCheckingFacility.exe
[2014/06/19 01:12:01 | 000,367,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2014/06/19 01:06:10 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\JavaScriptCollectionAgent.dll
[2014/06/19 01:01:50 | 000,164,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll
[2014/06/19 00:58:08 | 000,239,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2014/06/19 00:52:58 | 000,595,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2014/06/19 00:52:18 | 004,254,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2014/06/19 00:49:52 | 000,526,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2014/06/19 00:46:23 | 001,068,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtmlmedia.dll
[2014/06/19 00:45:59 | 001,964,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2014/06/19 00:07:42 | 000,704,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2014/06/18 03:51:32 | 000,646,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\osk.exe
[2014/06/18 02:52:00 | 002,350,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2014/06/03 19:33:42 | 000,000,012 | ---- | M] () -- C:\Users\Pinuccio\intlname.ols
[2014/06/03 19:02:19 | 000,000,930 | ---- | M] () -- C:\Users\Public\Desktop\EPSON Scan.lnk
[2014/06/01 12:37:52 | 000,005,165 | ---- | M] () -- C:\Users\Pinuccio\Desktop\Poker3d - collegamento.lnk
[2014/05/31 10:05:24 | 000,001,156 | ---- | M] () -- C:\Users\Pinuccio\Desktop\Format Factory.lnk
[2014/05/30 16:21:07 | 000,000,951 | ---- | M] () -- C:\Users\Pinuccio\Desktop\Bit Che.lnk
[2014/05/30 09:52:41 | 000,220,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
[2014/05/28 20:21:32 | 000,001,222 | ---- | M] () -- C:\Users\Pinuccio\Desktop\Revo Uninstaller.lnk
[2014/05/27 20:36:27 | 000,004,278 | ---- | M] () -- C:\Users\Pinuccio\Desktop\DXBall2 - collegamento.lnk
[2014/05/27 17:11:46 | 000,002,805 | ---- | M] () -- C:\Users\Pinuccio\Desktop\Microsoft Office Outlook 2003.lnk
[2014/05/27 16:10:42 | 000,002,503 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2014/05/26 22:51:10 | 000,001,204 | ---- | M] () -- C:\Users\Pinuccio\Desktop\Auslogics Disk Defrag.lnk
[2014/05/26 22:10:13 | 000,002,184 | ---- | M] () -- C:\Users\Pinuccio\Desktop\CCleaner Veloce.lnk
[2014/05/26 21:37:27 | 000,001,025 | ---- | M] () -- C:\Users\Pinuccio\Desktop\SIW Home Edition.lnk
[2014/05/26 10:51:57 | 000,000,424 | ---- | M] () -- C:\Windows\ODBC.INI
[2014/05/25 20:35:38 | 000,001,989 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader XI.lnk
[2014/05/25 20:04:06 | 000,001,105 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2014/05/25 18:05:10 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
[2014/05/25 18:04:06 | 000,645,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jsIntl.dll
[2014/05/25 18:04:06 | 000,194,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\elshyph.dll
[2014/05/25 18:04:06 | 000,182,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msls31.dll
[2014/05/25 18:04:06 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe
[2014/05/25 18:04:05 | 000,616,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat
[2014/05/25 18:04:05 | 000,337,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2014/05/25 18:04:05 | 000,233,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2014/05/25 18:04:05 | 000,151,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iexpress.exe
[2014/05/25 18:04:05 | 000,139,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wextract.exe
[2014/05/25 18:04:05 | 000,083,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inseng.dll
[2014/05/25 18:04:05 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll
[2014/05/25 18:04:05 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll
[2014/05/25 18:04:05 | 000,016,284 | ---- | M] () -- C:\Windows\System32\ieuinit.inf
[2014/05/25 18:04:04 | 000,116,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2014/05/25 18:04:04 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IEAdvpack.dll
[2014/05/25 18:04:04 | 000,086,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2014/05/25 18:04:04 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SetIEInstalledDate.exe
[2014/05/25 18:04:04 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtmler.dll
[2014/05/25 18:04:04 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2014/05/25 18:04:04 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imgutil.dll
[2014/05/25 18:04:04 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2014/05/25 18:03:33 | 000,619,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tdh.dll
[2014/05/25 18:03:33 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll
[2014/05/25 18:03:10 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
[2014/05/25 18:01:36 | 002,284,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msmpeg2vdec.dll
[2014/05/25 18:01:36 | 001,247,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2014/05/25 18:01:36 | 001,158,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.dll
[2014/05/25 18:01:36 | 001,080,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll
[2014/05/25 18:01:36 | 000,604,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10level9.dll
[2014/05/25 18:01:36 | 000,364,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2014/05/25 18:01:36 | 000,293,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll
[2014/05/25 18:01:36 | 000,249,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2014/05/25 18:01:36 | 000,220,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll
[2014/05/25 18:01:36 | 000,207,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecsExt.dll
[2014/05/25 18:01:36 | 000,187,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UIAnimation.dll
[2014/05/25 18:01:36 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2014/05/25 18:01:36 | 000,010,752 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2014/05/25 18:01:36 | 000,009,728 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2014/05/25 18:01:36 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2014/05/25 18:01:36 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
[2014/05/25 18:01:36 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
[2014/05/25 18:01:36 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2014/05/25 18:01:36 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
[2014/05/25 18:01:36 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
[2014/05/25 18:01:36 | 000,002,560 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2014/05/25 18:00:27 | 001,505,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d11.dll
[2014/05/25 17:59:58 | 000,001,912 | ---- | M] () -- C:\Windows\epplauncher.mif
[2014/05/25 17:09:55 | 000,052,640 | ---- | M] () -- C:\Windows\System32\license.rtf
[2014/05/25 17:08:10 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf

========== Files Created - No Company Name ==========

[2014/07/20 10:38:42 | 001,354,223 | ---- | C] () -- C:\Users\Pinuccio\Desktop\adwcleaner_3.216.exe
[2014/07/20 10:31:02 | 000,408,672 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2014/07/19 11:58:22 | 000,002,979 | ---- | C] () -- C:\Users\Pinuccio\Desktop\HiJackThis.lnk
[2014/07/17 13:50:52 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_webinstr_01009.Wdf
[2014/07/17 13:50:50 | 000,000,408 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2014/07/02 12:23:37 | 000,001,038 | ---- | C] () -- C:\Users\Public\Desktop\Glary Utilities 5.lnk
[2014/06/24 15:08:00 | 000,000,857 | ---- | C] () -- C:\Users\Pinuccio\Desktop\µTorrent.lnk
[2014/06/03 19:08:34 | 000,111,932 | ---- | C] () -- C:\Windows\System32\EPPICPrinterDB.dat
[2014/06/03 19:08:34 | 000,031,053 | ---- | C] () -- C:\Windows\System32\EPPICPattern131.dat
[2014/06/03 19:08:34 | 000,027,417 | ---- | C] () -- C:\Windows\System32\EPPICPattern121.dat
[2014/06/03 19:08:34 | 000,026,154 | ---- | C] () -- C:\Windows\System32\EPPICPattern1.dat
[2014/06/03 19:08:34 | 000,024,903 | ---- | C] () -- C:\Windows\System32\EPPICPattern3.dat
[2014/06/03 19:08:34 | 000,021,390 | ---- | C] () -- C:\Windows\System32\EPPICPattern5.dat
[2014/06/03 19:08:34 | 000,020,148 | ---- | C] () -- C:\Windows\System32\EPPICPattern2.dat
[2014/06/03 19:08:34 | 000,013,732 | ---- | C] () -- C:\Windows\System32\EPPICLocal_EN.cfg
[2014/06/03 19:08:34 | 000,011,811 | ---- | C] () -- C:\Windows\System32\EPPICPattern4.dat
[2014/06/03 19:08:34 | 000,006,442 | ---- | C] () -- C:\Windows\System32\EPPICLocal_IT.cfg
[2014/06/03 19:08:34 | 000,006,335 | ---- | C] () -- C:\Windows\System32\EPPICLocal_GE.cfg
[2014/06/03 19:08:34 | 000,006,195 | ---- | C] () -- C:\Windows\System32\EPPICLocal_FR.cfg
[2014/06/03 19:08:34 | 000,006,195 | ---- | C] () -- C:\Windows\System32\EPPICLocal_CF.cfg
[2014/06/03 19:08:34 | 000,006,122 | ---- | C] () -- C:\Windows\System32\EPPICLocal_DU.cfg
[2014/06/03 19:08:34 | 000,006,103 | ---- | C] () -- C:\Windows\System32\EPPICLocal_ES.cfg
[2014/06/03 19:08:34 | 000,005,817 | ---- | C] () -- C:\Windows\System32\EPPICLocal_KO.cfg
[2014/06/03 19:08:34 | 000,005,436 | ---- | C] () -- C:\Windows\System32\EPPICLocal_SC.cfg
[2014/06/03 19:08:34 | 000,004,943 | ---- | C] () -- C:\Windows\System32\EPPICPattern6.dat
[2014/06/03 19:08:34 | 000,002,889 | ---- | C] () -- C:\Windows\System32\EPPICLocal_RU.cfg
[2014/06/03 19:08:34 | 000,002,426 | ---- | C] () -- C:\Windows\System32\EPPICLocal_TC.cfg
[2014/06/03 19:08:34 | 000,001,146 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_DU.dat
[2014/06/03 19:08:34 | 000,001,139 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_PT.dat
[2014/06/03 19:08:34 | 000,001,139 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_BP.dat
[2014/06/03 19:08:34 | 000,001,136 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_ES.dat
[2014/06/03 19:08:34 | 000,001,129 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_FR.dat
[2014/06/03 19:08:34 | 000,001,129 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_CF.dat
[2014/06/03 19:08:34 | 000,001,120 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_IT.dat
[2014/06/03 19:08:34 | 000,001,107 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_GE.dat
[2014/06/03 19:08:34 | 000,001,104 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_EN.dat
[2014/06/03 19:08:34 | 000,000,097 | ---- | C] () -- C:\Windows\System32\PICSDK.ini
[2014/06/03 19:08:33 | 000,006,347 | ---- | C] () -- C:\Windows\System32\EPPICLocal_PT.cfg
[2014/06/03 19:08:33 | 000,006,347 | ---- | C] () -- C:\Windows\System32\EPPICLocal_BP.cfg
[2014/06/03 19:02:19 | 000,000,930 | ---- | C] () -- C:\Users\Public\Desktop\EPSON Scan.lnk
[2014/06/03 16:15:00 | 000,000,012 | ---- | C] () -- C:\Users\Pinuccio\intlname.ols
[2014/06/01 12:37:52 | 000,005,165 | ---- | C] () -- C:\Users\Pinuccio\Desktop\Poker3d - collegamento.lnk
[2014/05/31 10:05:24 | 000,001,156 | ---- | C] () -- C:\Users\Pinuccio\Desktop\Format Factory.lnk
[2014/05/30 21:36:37 | 000,001,060 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2014/05/30 16:21:07 | 000,000,951 | ---- | C] () -- C:\Users\Pinuccio\Desktop\Bit Che.lnk
[2014/05/28 20:21:32 | 000,001,222 | ---- | C] () -- C:\Users\Pinuccio\Desktop\Revo Uninstaller.lnk
[2014/05/27 20:36:27 | 000,004,278 | ---- | C] () -- C:\Users\Pinuccio\Desktop\DXBall2 - collegamento.lnk
[2014/05/27 16:10:42 | 000,002,503 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2014/05/26 22:51:10 | 000,001,204 | ---- | C] () -- C:\Users\Pinuccio\Desktop\Auslogics Disk Defrag.lnk
[2014/05/26 22:09:08 | 000,002,184 | ---- | C] () -- C:\Users\Pinuccio\Desktop\CCleaner Veloce.lnk
[2014/05/26 21:37:27 | 000,001,025 | ---- | C] () -- C:\Users\Pinuccio\Desktop\SIW Home Edition.lnk
[2014/05/26 19:33:40 | 000,002,805 | ---- | C] () -- C:\Users\Pinuccio\Desktop\Microsoft Office Outlook 2003.lnk
[2014/05/26 10:51:57 | 000,000,424 | ---- | C] () -- C:\Windows\ODBC.INI
[2014/05/26 10:39:10 | 000,001,050 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
[2014/05/26 10:39:09 | 000,000,326 | ---- | C] () -- C:\Windows\tasks\GlaryInitialize 5.job
[2014/05/26 10:32:26 | 000,000,965 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2014/05/26 09:35:37 | 000,000,978 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014/05/25 20:35:38 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
[2014/05/25 20:35:38 | 000,001,989 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader XI.lnk
[2014/05/25 20:05:22 | 000,001,142 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014/05/25 20:05:21 | 000,001,138 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014/05/25 20:04:06 | 000,001,117 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2014/05/25 20:04:06 | 000,001,105 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2014/05/25 18:30:13 | 000,000,003 | ---- | C] () -- C:\Windows\System32\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2014/05/25 18:05:10 | 000,008,192 | RHS- | C] () -- C:\BOOTSECT.BAK
[2014/05/25 18:05:08 | 000,383,786 | RHS- | C] () -- C:\bootmgr
[2014/05/25 18:04:05 | 000,016,284 | ---- | C] () -- C:\Windows\System32\ieuinit.inf
[2014/05/25 17:59:58 | 000,001,912 | ---- | C] () -- C:\Windows\epplauncher.mif
[2014/05/25 17:59:36 | 000,002,117 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
[2014/05/25 17:46:56 | 000,000,003 | ---- | C] () -- C:\Windows\System32\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2014/05/25 17:29:19 | 000,001,393 | ---- | C] () -- C:\Users\Pinuccio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2014/05/25 17:09:43 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2014/05/25 17:09:36 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2014/05/25 17:08:10 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2014/05/25 17:06:12 | 2415,370,240 | -HS- | C] () -- C:\hiberfil.sys

========== ZeroAccess Check ==========

[2009/07/14 06:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014/03/25 04:09:54 | 012,874,240 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 23:29:20 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/14 03:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2014/05/26 22:51:10 | 000,000,000 | ---D | M] -- C:\Users\Pinuccio\AppData\Roaming\Auslogics
[2014/05/30 16:21:04 | 000,000,000 | ---D | M] -- C:\Users\Pinuccio\AppData\Roaming\Convivea
[2014/07/17 09:05:11 | 000,000,000 | ---D | M] -- C:\Users\Pinuccio\AppData\Roaming\DiskDefrag
[2014/05/26 10:39:08 | 000,000,000 | ---D | M] -- C:\Users\Pinuccio\AppData\Roaming\GlarySoft
[2014/07/14 13:34:46 | 000,000,000 | ---D | M] -- C:\Users\Pinuccio\AppData\Roaming\uTorrent

========== Purity Check ==========



< End of report >

5° Log

OTL Extras logfile created on: 20/07/2014 10:58:06 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Pinuccio\Desktop
Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17207)
Locale: 00000410 | Country: Italia | Language: ITA | Date Format: dd/MM/yyyy

3,00 Gb Total Physical Memory | 2,22 Gb Available Physical Memory | 73,99% Memory free
5,99 Gb Paging File | 5,15 Gb Available in Paging File | 85,96% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 232,88 Gb Total Space | 191,47 Gb Free Space | 82,22% Space Free | Partition Type: NTFS

Computer Name: PINUCCIO-PC | User Name: Pinuccio | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0C858367-547C-428F-847A-5FDC16286CC0}" = lport=139 | protocol=6 | dir=in | app=system |
"{10244D67-AA01-4497-83F7-C15F02DA50ED}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{13901568-BB69-4A9D-8238-F505EF1F04CA}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{142710CE-90AD-4633-9763-8DF98C8AA9C3}" = rport=445 | protocol=6 | dir=out | app=system |
"{20C4E132-2273-44A5-8DC2-41D78EE0D3F6}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{3C1AEFBC-EF46-4194-BBFF-A7AD374FA043}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{426947C8-8871-4A3C-872C-32584DA4012C}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{4B6CC60B-AED4-4C44-914E-070378ABD2A9}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{61959B2D-B7C9-44EA-81A4-9E81EC5BEC73}" = lport=2869 | protocol=6 | dir=in | app=system |
"{7C51E4F1-548E-4B8C-A157-E9450E5DE3C8}" = rport=139 | protocol=6 | dir=out | app=system |
"{83925AA9-4046-4F02-BE2B-1DD29B044FFE}" = rport=137 | protocol=17 | dir=out | app=system |
"{977792F7-07A7-4506-B4C4-DB1F3777BA50}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{979DC419-F275-4205-B2EE-75957F461FE1}" = rport=10243 | protocol=6 | dir=out | app=system |
"{A218E062-BB37-4805-8FFF-64CF147AFC04}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{A47EF9A2-4574-4DE0-9282-E8F227DCDCE1}" = lport=10243 | protocol=6 | dir=in | app=system |
"{ACEBEEA9-4E48-4797-85D4-212206BA4960}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{B1F4FA67-88B6-469B-A4B0-C753ACA62834}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\google\chrome\application\chrome.exe |
"{C203E7CA-19B8-4F94-94E2-21092B860E34}" = lport=445 | protocol=6 | dir=in | app=system |
"{C72FE567-1452-460D-82E2-EB9B9714FAB7}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{D22AF779-79EE-44F4-A4A2-FCBCAB2EB480}" = lport=138 | protocol=17 | dir=in | app=system |
"{DEC79F0E-07DC-4B59-BEBA-22FC0FC2B0CD}" = rport=138 | protocol=17 | dir=out | app=system |
"{EC8BEBBC-3FF5-45B9-B3A0-58598A3C443E}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{EF6A83E9-90DB-4A7C-BABF-38B59A032573}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{F2D5E1EF-BEF8-432F-90B4-7913D6CF7243}" = lport=137 | protocol=17 | dir=in | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{012C7739-E2E1-4DC7-AE3C-9839D37C26BF}" = protocol=17 | dir=in | app=c:\program files\microsoft lifecam\lifeexp.exe |
"{19FA6E9D-E255-4B9E-810F-54CB771D3A1E}" = protocol=17 | dir=in | app=c:\users\pinuccio\appdata\roaming\utorrent\utorrent.exe |
"{1C906BF5-B218-4F30-9C5B-2965C9057C49}" = protocol=6 | dir=in | app=c:\program files\microsoft lifecam\lifecam.exe |
"{2987E075-F026-4199-9F84-802E4F9400B7}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{2AFE4154-93B8-4337-B6D2-BF93C13B20CB}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{2CA48BAE-26CE-43E8-845F-26A0F919B713}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{35E58529-3D11-4C72-A103-89F793215A8B}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{360E3558-D950-43BA-94D4-DF8314ED5DB0}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{3B7C74E7-FD4B-44B0-98BF-123EFEC45C4F}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{3CB6A201-0545-4F0E-A335-E4C077E9A00C}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{411719F7-81D6-4AF6-9C77-B6ABC40FF60B}" = protocol=17 | dir=in | app=c:\program files\microsoft lifecam\lifecam.exe |
"{47C33DAB-FE3B-4E8D-BAEA-0FBE46D4DC38}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{4A2DA991-BD87-4741-BD72-FE96544346C0}" = protocol=58 | dir=out | name=@iphlpsvc.dll,-503 |
"{50828FF6-7A7B-4876-9F1A-083E53DD3DCA}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{79F03633-1009-4263-988E-B9FCC66F6BF2}" = protocol=6 | dir=in | app=c:\program files\microsoft lifecam\lifetray.exe |
"{9408F747-4489-4CF2-A6FF-D4A57917CD06}" = protocol=58 | dir=in | app=system |
"{941DC8BE-A547-4447-8067-E22052F009B2}" = protocol=6 | dir=out | app=system |
"{97E8CAA9-A348-4B7C-A84C-56C842242419}" = protocol=6 | dir=in | app=c:\program files\microsoft lifecam\lifeexp.exe |
"{98792C5B-0B66-47DA-B27F-DA3A9A8B834B}" = protocol=17 | dir=in | app=c:\program files\microsoft lifecam\lifeenc2.exe |
"{9F142521-6D08-49ED-AFAD-EF9CD3FE1DAF}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{B07AA710-3009-41C0-9458-B52C40985693}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{B265AFAD-E7E7-401E-8581-3759B2E91421}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{CBEFDA5A-D5B2-4443-B52A-F9DE6A5C1BDB}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{CC829057-C29D-4E64-B43C-7929DC59E683}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{E46B0444-9C14-473E-BFCA-271C342E7209}" = protocol=6 | dir=in | app=c:\program files\microsoft lifecam\lifeenc2.exe |
"{E5F3B96D-6DB9-4641-94B6-710E8CB3B8BF}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{E72F1F4A-1996-4518-A461-37B3747E1869}" = protocol=6 | dir=in | app=c:\users\pinuccio\appdata\roaming\utorrent\utorrent.exe |
"{F9C10C0C-78B7-4BDA-AC14-D4E07D186FF1}" = protocol=17 | dir=in | app=c:\program files\microsoft lifecam\lifetray.exe |
"{FE1BE2E6-B13F-4094-AC8C-EB0C8AE87D40}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0A3925EA-5B0E-401B-A189-7419149747B2}" = Adobe AIR
"{36A345C9-0691-45A1-AEEF-29ECEC8B5014}" = Microsoft Security Client
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{4903D172-DCCB-392F-93A3-34CA9D47FE3D}" = Microsoft .NET Framework 4.5.1
"{5FC7AB5C-61FC-42DF-A923-5139BCF10D42}" = Microsoft LifeCam
"{6317BB68-0331-355B-864F-A92A26952B22}" = Microsoft .NET Framework 4.5.1 (ITA)
"{67EDD823-135A-4D59-87BD-950616D6E857}" = EPSON Copy Utility 3
"{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}" = Skype™ 6.16
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90110410-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.1
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1040" = Microsoft .NET Framework 4.5.1 (Italiano)
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AB67580-257C-45FF-B8F4-C8C30682091A}_is1" = SIW 2013 Home Edition
"{AC76BA86-7AD7-1040-7B44-AB0000000001}" = Adobe Reader XI (11.0.07) - Italiano
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Pannello di controllo NVIDIA 307.83
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Driver grafico 307.83
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aggiornamenti NVIDIA 1.10.8
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B3BC9DB1-0B0A-48B0-B86B-EA77CAA7F800}" = Microsoft Corporation
"{D9DA5C41-964F-455F-B5E7-3664519440E8}_is1" = Bit Che
"{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1" = Auslogics Disk Defrag
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 14 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 14 Plugin
"CCleaner" = CCleaner
"CNXT_MODEM_PCI_HSF" = PCI SoftV92 Modem
"EPSON Printer and Utilities" = Software per stampante EPSON
"EPSON Scanner" = EPSON Scan
"FormatFactory" = FormatFactory 3.0.1
"Glary Utilities 5" = Glary Utilities 5.3
"Google Chrome" = Google Chrome
"Malwarebytes Anti-Malware_is1" = Malwarebytes Anti-Malware versione 2.0.2.1012
"Microsoft Security Client" = Microsoft Security Essentials
"Mozilla Firefox 30.0 (x86 it)" = Mozilla Firefox 30.0 (x86 it)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Revo Uninstaller" = Revo Uninstaller 1.95

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-510852219-2866974073-3208831270-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"uTorrent" = µTorrent

< End of report >


E questo è tutto.
Adesso attendo che chi di compeetenza faccia le sue valutazioni.

NB:
Il Log di Malwarb risale all'altro giorno perchè volevo evidenziare le schifezze ( credo ) che ha trovato e che ho spostato in quarantena, se dovesse servire ditemelo e faccio un'ulteriore scansione.
Grazie sin da adeso.

Pinuccio
miticoalex
Inviato: Monday, July 21, 2014 9:07:03 PM

Rank: AiutAmico

Iscritto dal : 10/19/2010
Posts: 14,635
Pinuccio. Per analizzare il log di OTL dovrai aspettare r16.

Di suo, malwarebytes ha già effettuato qualche pulizia.

Riscontri problemi in particolare?






pinuccio53
Inviato: Tuesday, July 22, 2014 2:36:20 PM

Rank: AiutAmico

Iscritto dal : 1/26/2010
Posts: 682
Ciao Mitico,
ti rispondo solamente adesso perchè..... il lavoro innanzi tutto.
Al momento nessun problema in particolare, però un controllino dopo quello che ha eliminato MB non farebbe male. Magari qualche schifezza è ancora rimasta in circolo.
Attenderò pazientemente che R16 dia il suo responso.
Grazie ancora e buna serata.

Pinuccio

NB:
Ovviamente il " forza Juve " vale anche per quest'anno. Speriamo bene.
r16
Inviato: Tuesday, July 22, 2014 7:48:13 PM
Rank: AiutAmico

Iscritto dal : 8/7/2007
Posts: 11,016
Ciao.
Fai una pulizia al registro con CCleaner.
Dovrebbe eliminare una chiave:
HKLM..\Run: [t4pc_en_9] File not found
Per il resto il log non presenta infezioni attive.
pinuccio53
Inviato: Tuesday, July 22, 2014 8:39:57 PM

Rank: AiutAmico

Iscritto dal : 1/26/2010
Posts: 682
Ciao R16, innanzi tutto grazie per la solerte risposta.
Fatto pulizia con ccleaner, pulito il registro, ma la chiave di registro da te menzionata non la evidenzia, probabilmente perchè dopo le scasioni avevo già dato una passata con ccleaner e sicuramente quella chiave l'ha eliminata in quell'occasione.
Comunque per adesso tutto bene.
Se avrò ancora bisogno verrò a bussare alla vs sempre diponibile porta di Aiutamici.
Cia e buona serata a tutti voi.

Pinuccio
r16
Inviato: Tuesday, July 22, 2014 9:38:13 PM
Rank: AiutAmico

Iscritto dal : 8/7/2007
Posts: 11,016
Se vuoi avere la certezza che sia stata eliminata fai una scansione con HijackThis.
Se c'è la trovi nelle voci 04.
O4 - HKLM..\Run: [t4pc_en_9] File not found
Se la vedi, la elimini.
Ciao.
Utenti presenti in questo topic
Guest


Salta al Forum
Aggiunta nuovi Topic disabilitata in questo forum.
Risposte disabilitate in questo forum.
Eliminazione tuoi Post disabilitata in questo forum.
Modifica dei tuoi post disabilitata in questo forum.
Creazione Sondaggi disabilitata in questo forum.
Voto ai sondaggi disabilitato in questo forum.

Main Forum RSS : RSS

Aiutamici Theme
Powered by Yet Another Forum.net versione 1.9.1.8 (NET v2.0) - 3/29/2008
Copyright © 2003-2008 Yet Another Forum.net. All rights reserved.