Solved Unable to run -thoroughly- Combo fix_am I hacked?

SPasini · Jun 13, 2014

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.3 (03.23.2014:1)
OS: Microsoft Windows XP x86
Ran by SergioPasini on 13/06/2014 at 1.43.29,93
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\driverscanner
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{c2f8ca82-2bd9-4513-b2d1-08a47914c1da}_is1

~~~ Files

~~~ Folders

Successfully deleted: [Folder] "C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\software informer"
Successfully deleted: [Folder] "C:\Programmi\software informer"

~~~ FireFox

Successfully deleted the following from C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\mozilla\firefox\profiles\k16p1aht.default\prefs.js

user_pref("browser.search.defaultenginename", "SecureSearch");
user_pref("browser.search.selectedEngine", "SecureSearch");
user_pref("browser.startup.homepage", "hxxp://securedsearch2.lavasoft.com/index.php?pr=vmn&id=adawaretb&v=3_8&idate=2014-05-09&ent=hp&u=E89840DCFCA64E798F170A536D57ECA1");
user_pref("extensions.XI7mQwUok.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\")
user_pref("keyword.URL", "hxxp://securedsearch2.lavasoft.com/results.php?pr=vmn&id=adawaretb&v=3_8&idate=__installtime__&hsimp=yhs-lavasoft&ent=bs&q=");

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 13/06/2014 at 2.25.20,93
Computer was rebooted
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

SPasini · Jun 13, 2014

Additional scan result of Farbar Recovery Scan Tool (x86) Version:12-06-2014
Ran by SergioPasini at 2014-06-13 09:29:51
Running from C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Documenti\Downloads
Boot Mode: Normal
==========================================================

==================== Security Center ========================

AV: avast! Antivirus (Disabled - Up to date) {7591DB91-41F0-48A3-B128-1A293FD8233D}

==================== Installed Programs ======================

µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.31633 - BitTorrent Inc.)
AdAwareInstaller (Version: 11.1.5354.0 - Lavasoft) Hidden
AdAwareUpdater (Version: 11.1.5354.0 - Lavasoft) Hidden
Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe AIR (Version: 3.1.0.4880 - Adobe Systems Incorporated) Hidden
Adobe Dreamweaver CS6 (HKLM\...\{A4ED5E53-7AA0-11E1-BF04-B2D4D4A5360E}) (Version: 12 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 14.0.0.125 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Help Manager (Version: 4.0.244 - Adobe Systems Incorporated) Hidden
Adobe Reader XI (11.0.07) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
Adobe Widget Browser (HKLM\...\com.adobe.WidgetBrowser) (Version: 2.0 Build 348 - Adobe Systems Incorporated.)
Adobe Widget Browser (Version: 2.0.348 - Adobe Systems Incorporated.) Hidden
Aggiornamento della protezione per Windows Internet Explorer 8 (KB2510531) (HKLM\...\KB2510531-IE8) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows Internet Explorer 8 (KB2909210) (HKLM\...\KB2909210-IE8) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows Internet Explorer 8 (KB2936068) (HKLM\...\KB2936068-IE8) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows Internet Explorer 8 (KB2964358) (HKLM\...\KB2964358-IE8) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows Media Player (KB2378111) (Version: - Microsoft Corporation) Hidden
Aggiornamento della protezione per Windows Media Player (KB2803821-v2) (Version: - Microsoft Corporation) Hidden
Aggiornamento della protezione per Windows Media Player (KB2834904-v2) (HKLM\...\KB2834904-v2_WM11) (Version: - Microsoft Corporation)
Aggiornamento della protezione per Windows Media Player (KB952069) (Version: - Microsoft Corporation) Hidden
Aggiornamento della protezione per Windows Media Player (KB954155) (Version: - Microsoft Corporation) Hidden
Aggiornamento della protezione per Windows Media Player (KB973540) (Version: - Microsoft Corporation) Hidden
Aggiornamento della protezione per Windows Media Player (KB975558) (Version: - Microsoft Corporation) Hidden
Aggiornamento della protezione per Windows Media Player (KB978695) (Version: - Microsoft Corporation) Hidden
Aggiornamento della protezione per Windows Media Player 11 (KB954154) (HKLM\...\KB954154_WM11) (Version: - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2115168) (HKLM\...\KB2115168) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2229593) (HKLM\...\KB2229593) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2296011) (HKLM\...\KB2296011) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2347290) (HKLM\...\KB2347290) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2387149) (HKLM\...\KB2387149) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2393802) (HKLM\...\KB2393802) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2419632) (HKLM\...\KB2419632) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2423089) (HKLM\...\KB2423089) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2443105) (HKLM\...\KB2443105) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2478960) (HKLM\...\KB2478960) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2478971) (HKLM\...\KB2478971) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2479943) (HKLM\...\KB2479943) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2481109) (HKLM\...\KB2481109) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2483185) (HKLM\...\KB2483185) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2485663) (HKLM\...\KB2485663) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2506212) (HKLM\...\KB2506212) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2507938) (HKLM\...\KB2507938) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2508429) (HKLM\...\KB2508429) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2509553) (HKLM\...\KB2509553) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2510581) (Version: 1 - Microsoft Corporation) Hidden
Aggiornamento della protezione per Windows XP (KB2535512) (HKLM\...\KB2535512) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2536276-v2) (HKLM\...\KB2536276-v2) (Version: 2 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2544893-v2) (HKLM\...\KB2544893-v2) (Version: 2 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2566454) (HKLM\...\KB2566454) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2570947) (HKLM\...\KB2570947) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2584146) (HKLM\...\KB2584146) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2585542) (HKLM\...\KB2585542) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2592799) (HKLM\...\KB2592799) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2598479) (HKLM\...\KB2598479) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2603381) (HKLM\...\KB2603381) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2619339) (HKLM\...\KB2619339) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2620712) (HKLM\...\KB2620712) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2631813) (HKLM\...\KB2631813) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2653956) (HKLM\...\KB2653956) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2655992) (HKLM\...\KB2655992) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2659262) (HKLM\...\KB2659262) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2661637) (HKLM\...\KB2661637) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2676562) (HKLM\...\KB2676562) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2686509) (HKLM\...\KB2686509) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2691442) (HKLM\...\KB2691442) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2698365) (HKLM\...\KB2698365) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2705219-v2) (HKLM\...\KB2705219-v2) (Version: 2 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2712808) (HKLM\...\KB2712808) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2719985) (HKLM\...\KB2719985) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2723135-v2) (HKLM\...\KB2723135-v2) (Version: 2 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2727528) (HKLM\...\KB2727528) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2757638) (HKLM\...\KB2757638) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2770660) (HKLM\...\KB2770660) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2780091) (HKLM\...\KB2780091) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2802968) (HKLM\...\KB2802968) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2807986) (HKLM\...\KB2807986) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2813345) (HKLM\...\KB2813345) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2820917) (HKLM\...\KB2820917) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2834886) (HKLM\...\KB2834886) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2847311) (HKLM\...\KB2847311) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2850869) (HKLM\...\KB2850869) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2859537) (HKLM\...\KB2859537) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2862152) (HKLM\...\KB2862152) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2862330) (HKLM\...\KB2862330) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2862335) (HKLM\...\KB2862335) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2864063) (HKLM\...\KB2864063) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2868626) (HKLM\...\KB2868626) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2876217) (HKLM\...\KB2876217) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2876331) (HKLM\...\KB2876331) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2892075) (HKLM\...\KB2892075) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2893294) (HKLM\...\KB2893294) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2898715) (HKLM\...\KB2898715) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2900986) (HKLM\...\KB2900986) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2909212) (Version: 1 - Microsoft Corporation) Hidden
Aggiornamento della protezione per Windows XP (KB2914368) (HKLM\...\KB2914368) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2916036) (HKLM\...\KB2916036) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2922229) (HKLM\...\KB2922229) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2929961) (HKLM\...\KB2929961) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2930275) (HKLM\...\KB2930275) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB2936068) (Version: 1 - Microsoft Corporation) Hidden
Aggiornamento della protezione per Windows XP (KB2964358) (Version: 1 - Microsoft Corporation) Hidden
Aggiornamento della protezione per Windows XP (KB923561) (HKLM\...\KB923561) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB923789) (HKLM\...\KB923789) (Version: - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB941569) (HKLM\...\KB941569) (Version: - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB946648) (HKLM\...\KB946648) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB950762) (HKLM\...\KB950762) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB950974) (HKLM\...\KB950974) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB951376-v2) (HKLM\...\KB951376-v2) (Version: 2 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB952004) (HKLM\...\KB952004) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB952954) (HKLM\...\KB952954) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB956572) (HKLM\...\KB956572) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB956844) (HKLM\...\KB956844) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB959426) (HKLM\...\KB959426) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB960803) (HKLM\...\KB960803) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB960859) (HKLM\...\KB960859) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB969059) (HKLM\...\KB969059) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB970430) (HKLM\...\KB970430) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB971657) (HKLM\...\KB971657) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB972270) (HKLM\...\KB972270) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB973507) (HKLM\...\KB973507) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB973869) (HKLM\...\KB973869) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB973904) (HKLM\...\KB973904) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB974112) (HKLM\...\KB974112) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB974318) (HKLM\...\KB974318) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB974392) (HKLM\...\KB974392) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB974571) (HKLM\...\KB974571) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB975025) (HKLM\...\KB975025) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB975467) (HKLM\...\KB975467) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB975560) (HKLM\...\KB975560) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB975713) (Version: 1 - Microsoft Corporation) Hidden
Aggiornamento della protezione per Windows XP (KB977816) (HKLM\...\KB977816) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB977914) (HKLM\...\KB977914) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB978338) (HKLM\...\KB978338) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB978542) (HKLM\...\KB978542) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB978706) (HKLM\...\KB978706) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB979309) (HKLM\...\KB979309) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB979482) (HKLM\...\KB979482) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB979687) (HKLM\...\KB979687) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB981997) (HKLM\...\KB981997) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB982132) (HKLM\...\KB982132) (Version: 1 - Microsoft Corporation)
Aggiornamento della protezione per Windows XP (KB982665) (HKLM\...\KB982665) (Version: 1 - Microsoft Corporation)
Aggiornamento della sicurezza per Microsoft Windows (KB2564958) (HKLM\...\KB2564958) (Version: - Microsoft Corporation)
Aggiornamento per Windows Internet Explorer 8 (KB2598845) (HKLM\...\KB2598845-IE8) (Version: 1 - Microsoft Corporation)
Aggiornamento per Windows Internet Explorer 8 (KB2632503) (HKLM\...\KB2632503-IE8) (Version: 1 - Microsoft Corporation)
Aggiornamento per Windows XP (KB2345886) (HKLM\...\KB2345886) (Version: 1 - Microsoft Corporation)
Aggiornamento per Windows XP (KB2492386) (HKLM\...\KB2492386) (Version: 1 - Microsoft Corporation)
Aggiornamento per Windows XP (KB2749655) (HKLM\...\KB2749655) (Version: 1 - Microsoft Corporation)
Aggiornamento per Windows XP (KB2808679) (HKLM\...\KB2808679) (Version: 1 - Microsoft Corporation)
Aggiornamento per Windows XP (KB2904266) (HKLM\...\KB2904266) (Version: 1 - Microsoft Corporation)
Aggiornamento per Windows XP (KB2934207) (HKLM\...\KB2934207) (Version: 1 - Microsoft Corporation)
Aggiornamento per Windows XP (KB898461) (HKLM\...\KB898461) (Version: 1 - Microsoft Corporation)
Aggiornamento per Windows XP (KB951978) (Version: 1 - Microsoft Corporation) Hidden
Aggiornamento per Windows XP (KB955759) (HKLM\...\KB955759) (Version: 1 - Microsoft Corporation)
Aggiornamento per Windows XP (KB968389) (HKLM\...\KB968389) (Version: 1 - Microsoft Corporation)
Aggiornamento per Windows XP (KB971029) (HKLM\...\KB971029) (Version: 1 - Microsoft Corporation)
Aggiornamento per Windows XP (KB973815) (HKLM\...\KB973815) (Version: 1 - Microsoft Corporation)
Aggiornamento rapido per Windows Media Player 11 (KB939683) (HKLM\...\KB939683) (Version: - Microsoft Corporation)
Aggiornamento rapido per Windows XP (KB942288-v3) (HKLM\...\KB942288-v3) (Version: 3 - Microsoft Corporation)
Aggiornamento rapido per Windows XP (KB952287) (HKLM\...\KB952287) (Version: 1 - Microsoft Corporation)
Aggiornamento rapido per Windows XP (KB961118) (HKLM\...\KB961118) (Version: 1 - Microsoft Corporation)
AntimalwareEngine (Version: 2.6.0.0 - Lavasoft) Hidden
avast! Free Antivirus (HKLM\...\Avast) (Version: 9.0.2018 - Avast Software)
BitTorrent (HKCU\...\BitTorrent) (Version: 7.9.2.31638 - BitTorrent Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.14 - Piriform)
Cheat Engine 6.3 (HKLM\...\Cheat Engine 6.3_is1) (Version: - Cheat Engine)
Claro Internet (HKLM\...\Claro Internet) (Version: 23.003.07.00.252 - Huawei Technologies Co.,Ltd)
Commview for Wifi (HKLM\...\{021602B7-7BF4-4D32-88F1-82D62371F2CF}) (Version: 6.0.581 - FiSTiNG4FUN)
CommView for WiFi (HKLM\...\{CDED9EF0-D072-11DF-2EA6-0104A00B0BB3}) (Version: 7.0 - TamoSoft)
Core Temp version 0.99.8 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 0.99.8 - Arthur Liberman)
Defraggler (HKLM\...\Defraggler) (Version: 2.18 - Piriform)
DriverIdentifier 4.2.7 (HKLM\...\{40A3E5DB-5EF8-4F04-BF3E-7AB87C4AE85A}_is1) (Version: - DriverIdentifier)
Free Download Manager 3.9.4 (HKLM\...\Free Download Manager_is1) (Version: - FreeDownloadManager.ORG)
Google Chrome (HKLM\...\Google Chrome) (Version: 35.0.1916.114 - Google Inc.)
Google Earth (HKLM\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (Version: 1.3.24.7 - Google Inc.) Hidden
Intel(R) Graphics Media Accelerator Driver (HKLM\...\{8A708DD8-A5E6-11D4-A706-000629E95E20}) (Version: 6.14.10.4497 - )
iSkysoft DRM Removal(Build 1.0.4.0) (HKLM\...\iSkysoft DRM Removal_is1) (Version: - iSkysoft Software)
Java 7 Update 55 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217055FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
mCore (Version: 5.45.0000 - Intel Corporation) Hidden
mDriver (Version: 5.45.0000 - Intel) Hidden
mDrWiFi (Version: 5.45.0000 - Intel Corporation) Hidden
mEoU (Version: 5.45.0000 - Intel Corporation) Hidden
mGina (Version: 5.45.0000 - Intel Corporation) Hidden
mHelp (Version: 5.45.0000 - Intel) Hidden
Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft .NET Framework 1.1 (Version: 1.1.4322 - Microsoft) Hidden
Microsoft .NET Framework 1.1 Italian Language Pack (HKLM\...\{F2D2B58B-B2FD-46D1-8319-DCE564079934}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version: - )
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft Compression Client Pack 1.0 for Windows XP (HKLM\...\MSCompPackV1) (Version: 1 - Microsoft Corporation)
Microsoft Kernel-Mode Driver Framework Feature Pack 1.7 (Version: - Microsoft Corporation) Hidden
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9 (Version: - Microsoft Corporation) Hidden
Microsoft User-Mode Driver Framework Feature Pack 1.0 (HKLM\...\Wudf01000) (Version: - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
mIWA (Version: 5.45.0000 - Intel Corporation) Hidden
mLogView (Version: 5.45.0000 - Intel Corporation) Hidden
mMHouse (Version: 5.45.0000 - Intel Corporation) Hidden
Motorola Device Manager (HKLM\...\{28DB8373-C1BB-444F-A427-A55585A12ED7}) (Version: 2.4.5 - Motorola Mobility)
Motorola Device Software Update (Version: 13.09.3001 - Motorola Mobility) Hidden
Motorola Mobile Drivers Installation 6.3.0 (HKLM\...\{A55747C1-4651-433D-B082-478874FF7516}) (Version: 6.3.0 - Motorola Mobility LLC)
Motorola SM56 Speakerphone Modem (HKLM\...\SMSERIAL) (Version: 6.12.25.06 - Motorola Inc)
Mozilla Firefox 29.0.1 (x86 en-US) (HKLM\...\Mozilla Firefox 29.0.1 (x86 en-US)) (Version: 29.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 29.0 - Mozilla)
mPfMgr (Version: 5.45.0000 - Intel Corporation) Hidden
mPfWiz (Version: 5.45.0000 - Intel Corporation) Hidden
mProSafe (Version: 9.00.0000 - Intel) Hidden
mSSO (Version: 5.45.0000 - Intel Corporation) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
mToolkit (Version: 5.45.0000 - Intel Corporation) Hidden
mWlsSafe (Version: 9.00.0000 - Intel) Hidden
mWMI (Version: 5.45.0000 - Intel Corporation) Hidden
mXML (Version: 5.45.0000 - Intel Corporation) Hidden
mZConfig (Version: 5.45.0000 - Intel Corporation) Hidden
Norton Utilities 16 (HKLM\...\Norton Utilities 16_is1) (Version: 16.0 - Symantec Corporation)
O2Micro Flash Memory Card Windows Driver V1.9 (HKLM\...\InstallShield_{1AB0745A-FB6D-4E0F-8121-2D9FAB399F3A}) (Version: 1.9 - O2Micro International LTD.)
O2Micro Flash Memory Card Windows Driver V1.9 (Version: 1.9 - O2Micro International LTD.) Hidden
OverDrive Media Console (HKLM\...\{D07205E7-F6D3-4333-AFCC-782A07685B72}) (Version: 3.2.20 - OverDrive, Inc.)
Pacchetto provider Microsoft servizio crittografia smart card di base (HKLM\...\KB909520) (Version: - Microsoft Corporation)
PFConfig 1.0.296 (HKLM\...\PFConfig) (Version: 1.0.296 - Portforward.com)
PFPortChecker 1.0.40 (HKLM\...\PFPortChecker) (Version: 1.0.40 - Portforward.com)
REALTEK GbE & FE Ethernet NIC Driver (HKLM\...\{ACCA20B0-C4D1-4BF5-BF21-0A0EB5EF9730}) (Version: 1.00.0000 - Realtek)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 5.10.0.7076 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.51 - Piriform)
SanityCheck 3.00 (HKLM\...\SanityCheck_is1) (Version: - Resplendence Software Projects Sp.)
Skype™ 6.14 (HKLM\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.14.104 - Skype Technologies S.A.)
Software Intel(R) PROSet/Wireless (HKLM\...\ProInst) (Version: 10.1.0.3 - Intel Corporation)
Speccy (HKLM\...\Speccy) (Version: 1.26 - Piriform)
Spybot - Search & Destroy (HKLM\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.2.25 - Safer-Networking Ltd.)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 5.7.1018 - SUPERAntiSpyware.com)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 8.2.20.0 - Synaptics)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation)
VLC media player 2.1.3 (HKLM\...\VLC media player) (Version: 2.1.3 - VideoLAN)
VT Hash Check 1.41 (HKLM\...\{1E579B65-503B-4184-B481-5138124BEE1D}_is1) (Version: 1.31 - Boredom Software)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
WhoCrashed 5.01 (HKLM\...\WhoCrashed_is1) (Version: - Resplendence Software Projects Sp.)
Windows Genuine Advantage Notifications (KB905474) (HKLM\...\WgaNotify) (Version: 1.9.0040.0 - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\KB892130) (Version: - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\WGA) (Version: 1.7.0069.2 - Microsoft Corporation)
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Management Framework Core (HKLM\...\KB968930) (Version: - Microsoft Corporation)
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version: - )
Windows Media Format 11 runtime (Version: - Microsoft Corporation) Hidden
Windows Media Player 11 (HKLM\...\Windows Media Player) (Version: - )
Windows Media Player 11 (Version: - Microsoft Corporation) Hidden
Windows Search 4.0 (HKLM\...\KB940157) (Version: 04.00.6001.503 - Microsoft Corporation)
WinRAR 5.01 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)

==================== Restore Points =========================

11-06-2014 23:59:05 Punto di arresto del sistema
12-06-2014 00:00:31 DriverScanner - 6/11/2014 9:00:25 PM
13-06-2014 03:42:04 Created by Norton Utilities

==================== Hosts content: ==========================

2008-04-14 09:00 - 2014-06-11 00:35 - 00450626 ____R C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 123haustiereundmehr.com
127.0.0.1 www.123haustiereundmehr.com

There are 1000 more lines.

==================== Scheduled Tasks (whitelisted) =============

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\AdobeAAMUpdater-1.0-SPASINI-S-PLACE-SergioPasini.job => C:\programmi\file comuni\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => C:\Programmi\AVAST Software\Avast\AvastEmUpdate.exe
Task: C:\WINDOWS\Tasks\Check for updates (Spybot - Search & Destroy).job => C:\Programmi\Spybot - Search & Destroy 2\SDUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Programmi\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Programmi\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Motorola Device Manager Engine.job => C:\programmi\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe
Task: C:\WINDOWS\Tasks\Motorola Device Manager Update.job => C:\programmi\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe
Task: C:\WINDOWS\Tasks\Notifica di interruzione del servizio per Microsoft Windows XP - Accesso.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Notifica di interruzione del servizio per Microsoft Windows XP - Mensile.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\NUAutoUpdate.job => C:\Program Files\Symantec\Norton Utilities 16\SULauncher.exe
Task: C:\WINDOWS\Tasks\Refresh immunization (Spybot - Search & Destroy).job => C:\Programmi\Spybot - Search & Destroy 2\SDImmunize.exe
Task: C:\WINDOWS\Tasks\Scan the system (Spybot - Search & Destroy).job => C:\Programmi\Spybot - Search & Destroy 2\SDScan.exe

==================== Loaded Modules (whitelisted) =============

2014-06-12 10:10 - 2014-06-12 10:10 - 02775040 _____ () C:\Programmi\AVAST Software\Avast\defs\14061200\algo.dll
2014-05-08 21:39 - 2011-12-23 07:03 - 00655712 _____ () C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Claro Internet\OnlineUpdate\ouc.exe
2014-05-08 21:39 - 2009-01-10 07:32 - 00011362 _____ () C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Claro Internet\OnlineUpdate\mingwm10.dll
2014-05-08 21:39 - 2009-06-22 15:42 - 00043008 _____ () C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Claro Internet\OnlineUpdate\libgcc_s_dw2-1.dll
2014-05-08 21:39 - 2010-05-14 06:57 - 02415104 _____ () C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Claro Internet\OnlineUpdate\QtCore4.dll
2014-05-08 21:39 - 2010-02-10 11:10 - 01148416 _____ () C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Claro Internet\OnlineUpdate\QtNetwork4.dll
2014-05-08 21:39 - 2011-12-23 04:52 - 00843264 _____ () C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Claro Internet\OnlineUpdate\QueryStrategy.dll
2014-05-08 21:39 - 2010-02-10 11:06 - 00398336 _____ () C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Claro Internet\OnlineUpdate\QtXml4.dll
2011-03-14 12:27 - 2011-03-14 12:27 - 00271712 _____ () C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\DatacardService\HWDeviceService.exe
2013-10-31 12:05 - 2013-10-31 12:05 - 00172032 _____ () C:\Programmi\Motorola Mobility\Motorola Device Manager\css_core.dll
2014-05-08 23:24 - 2012-08-23 10:38 - 00574840 _____ () C:\Programmi\Spybot - Search & Destroy 2\sqlite3.dll
2014-05-08 23:24 - 2013-05-16 10:55 - 00113496 _____ () C:\Programmi\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-05-08 23:24 - 2013-05-16 10:55 - 00416600 _____ () C:\Programmi\Spybot - Search & Destroy 2\DEC150.bpl
2014-05-08 23:24 - 2013-05-16 10:55 - 00161112 _____ () C:\Programmi\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2014-05-08 23:24 - 2012-04-03 17:06 - 00565640 _____ () C:\Programmi\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2014-05-09 19:07 - 2014-05-09 19:08 - 00515072 _____ () C:\Programmi\Claro Internet\Claro Internet.exe
2014-05-09 19:07 - 2012-04-01 03:10 - 00513024 _____ () C:\Programmi\Claro Internet\core.dll
2014-05-09 19:07 - 2012-04-01 03:09 - 00281088 _____ () C:\Programmi\Claro Internet\sdk.dll
2014-05-09 19:07 - 2009-01-10 07:32 - 00011362 _____ () C:\Programmi\Claro Internet\mingwm10.dll
2014-05-09 19:07 - 2009-06-22 15:42 - 00043008 _____ () C:\Programmi\Claro Internet\libgcc_s_dw2-1.dll
2014-05-09 19:07 - 2010-05-14 06:57 - 02415104 _____ () C:\Programmi\Claro Internet\QtCore4.dll
2014-05-09 19:07 - 2010-02-10 11:43 - 09515520 _____ () C:\Programmi\Claro Internet\QtGui4.dll
2014-05-09 19:07 - 2012-04-01 03:06 - 00401408 _____ () C:\Programmi\Claro Internet\Proxy.dll
2014-05-09 19:07 - 2012-04-01 03:05 - 00627712 _____ () C:\Programmi\Claro Internet\Common.dll
2014-05-09 19:07 - 2012-04-01 03:05 - 00157184 _____ () C:\Programmi\Claro Internet\Trace.dll
2014-05-09 19:07 - 2012-04-01 03:06 - 00583168 _____ () C:\Programmi\Claro Internet\PluginContainer.dll
2014-05-09 19:07 - 2012-04-01 03:06 - 00646144 _____ () C:\Programmi\Claro Internet\AtCodec.dll
2014-05-09 19:07 - 2012-04-01 03:08 - 00726528 _____ () C:\Programmi\Claro Internet\DeviceSrvPlugin.dll
2014-05-09 19:07 - 2012-04-01 03:06 - 00195584 _____ () C:\Programmi\Claro Internet\XCodec.dll
2014-05-09 19:07 - 2012-04-01 03:07 - 00240128 _____ () C:\Programmi\Claro Internet\NetSrvPlugin.dll
2014-05-09 19:07 - 2012-04-01 03:06 - 00158208 _____ () C:\Programmi\Claro Internet\OSDialup.dll
2014-05-09 19:07 - 2012-04-01 03:06 - 00155136 _____ () C:\Programmi\Claro Internet\DataServicePlugin.dll
2014-05-09 19:07 - 2012-04-01 03:09 - 00176128 _____ () C:\Programmi\Claro Internet\CallSrvPlugin.dll
2014-05-09 19:07 - 2012-04-01 03:07 - 00672768 _____ () C:\Programmi\Claro Internet\AddrBookSrvPlugin.dll
2014-05-09 19:07 - 2012-04-01 03:07 - 00219648 _____ () C:\Programmi\Claro Internet\SmsSrvPlugin.dll
2014-05-09 19:07 - 2012-04-01 03:07 - 00142336 _____ () C:\Programmi\Claro Internet\USSDSrvPlugin.dll
2014-05-09 19:07 - 2012-04-01 03:07 - 00157184 _____ () C:\Programmi\Claro Internet\STKSrvPlugin.dll
2014-05-09 19:07 - 2012-04-01 03:08 - 00155648 _____ () C:\Programmi\Claro Internet\GpsSrvPlugin.dll
2014-05-09 19:07 - 2012-04-01 03:08 - 00730624 _____ () C:\Programmi\Claro Internet\DeviceAppPlugin.dll
2014-05-09 19:07 - 2012-04-01 03:06 - 00065536 _____ () C:\Programmi\Claro Internet\OSPowerMgr.dll
2014-05-09 19:07 - 2011-12-05 23:09 - 00155648 _____ () C:\Programmi\Claro Internet\Win7Support.dll
2014-05-09 19:07 - 2012-04-01 03:07 - 01124352 _____ () C:\Programmi\Claro Internet\AddrBookPlugin.dll
2014-05-09 19:07 - 2012-04-01 03:08 - 00700416 _____ () C:\Programmi\Claro Internet\SmsAppPlugin.dll
2014-05-09 19:07 - 2012-04-01 03:09 - 00187392 _____ () C:\Programmi\Claro Internet\CallAppPlugin.dll
2014-05-09 19:07 - 2012-04-01 03:09 - 00569344 _____ () C:\Programmi\Claro Internet\CallLogSrvPlugin.dll
2014-05-09 19:07 - 2012-04-01 03:06 - 00158720 _____ () C:\Programmi\Claro Internet\NetConnectSrvPlugin.dll
2014-05-09 19:07 - 2012-04-01 03:07 - 00235520 _____ () C:\Programmi\Claro Internet\DialUpPlugin.dll
2014-05-09 19:07 - 2012-04-01 03:06 - 00102400 _____ () C:\Programmi\Claro Internet\OSAdapt.dll
2014-05-09 19:07 - 2012-04-01 03:09 - 00798208 _____ () C:\Programmi\Claro Internet\WLANPlugin.dll
2014-05-09 19:07 - 2012-04-01 03:09 - 00207360 _____ () C:\Programmi\Claro Internet\WiFiMan.dll
2014-05-09 19:07 - 2012-04-01 03:07 - 00200704 _____ () C:\Programmi\Claro Internet\NDISPlugin.dll
2014-05-09 19:07 - 2012-04-01 03:06 - 00131584 _____ () C:\Programmi\Claro Internet\OSNDIS.dll
2014-05-09 19:07 - 2011-12-05 23:09 - 01105920 _____ () C:\Programmi\Claro Internet\NDISAPI.dll
2014-05-09 19:07 - 2012-04-01 03:08 - 00701952 _____ () C:\Programmi\Claro Internet\NetInfoSrvPlugin.dll
2014-05-09 19:07 - 2012-04-01 03:09 - 00062976 _____ () C:\Programmi\Claro Internet\OSCall.dll
2014-05-09 19:07 - 2011-12-05 23:09 - 00224256 _____ () C:\Programmi\Claro Internet\tdpcvoice.dll
2014-05-09 19:07 - 2012-04-01 03:19 - 00574976 _____ () C:\Programmi\Claro Internet\DeviceMgrUIPlugin.dll
2014-05-09 19:07 - 2010-02-10 11:06 - 00398336 _____ () C:\Programmi\Claro Internet\QtXml4.dll
2014-05-09 19:07 - 2012-04-01 03:08 - 00168960 _____ () C:\Programmi\Claro Internet\ATR2SMgr.dll
2014-05-09 19:07 - 2012-04-01 03:21 - 00257536 _____ () C:\Programmi\Claro Internet\XFramePlugin.dll
2014-05-09 19:07 - 2012-04-01 03:20 - 00316416 _____ () C:\Programmi\Claro Internet\StatusBarMgrPlugin.dll
2014-05-09 19:07 - 2012-04-01 03:23 - 00359424 _____ () C:\Programmi\Claro Internet\NetConnectPlugin.dll
2014-05-09 19:07 - 2012-04-01 03:12 - 00571392 _____ () C:\Programmi\Claro Internet\DialupUIPlugin.dll
2014-05-09 19:07 - 2012-04-01 03:16 - 00097792 _____ () C:\Programmi\Claro Internet\NotifyServicePlugin.dll
2014-05-09 19:07 - 2012-04-01 03:22 - 00117248 _____ () C:\Programmi\Claro Internet\LayoutPlugin.dll
2014-05-09 19:07 - 2012-04-01 03:37 - 00119296 _____ () C:\Programmi\Claro Internet\ConnectMgrUIPlugin.dll
2014-05-09 19:07 - 2012-04-01 03:24 - 00327168 _____ () C:\Programmi\Claro Internet\MenuMgrPlugin.dll
2014-05-09 19:07 - 2012-04-01 03:28 - 00390656 _____ () C:\Programmi\Claro Internet\USSDUIPlugin.dll
2014-05-09 19:07 - 2012-04-01 03:26 - 00302080 _____ () C:\Programmi\Claro Internet\DiagnosisPlugin.dll
2014-05-09 19:07 - 2012-04-01 03:26 - 00492032 _____ () C:\Programmi\Claro Internet\NetInfoUIExPlugin.dll
2014-05-09 19:07 - 2012-04-01 03:14 - 00845824 _____ () C:\Programmi\Claro Internet\SMSUIPlugin.dll
2014-05-09 19:07 - 2012-04-01 03:17 - 00809472 _____ () C:\Programmi\Claro Internet\AddrBookUIPlugin.dll
2014-05-09 19:07 - 2012-04-01 03:24 - 00219136 _____ () C:\Programmi\Claro Internet\ToolBarMgrPlugin.dll
2014-05-09 19:07 - 2011-08-23 05:27 - 00693760 _____ () C:\Programmi\Claro Internet\LiveUpdateInterface.dll
2014-05-09 19:07 - 2010-02-10 11:10 - 01148416 _____ () C:\Programmi\Claro Internet\QtNetwork4.dll
2014-05-09 19:07 - 2011-12-05 23:08 - 00082944 _____ () C:\Programmi\Claro Internet\plugins\imageformats\qgif4.dll
2014-05-09 19:07 - 2011-12-05 23:08 - 00081920 _____ () C:\Programmi\Claro Internet\plugins\imageformats\qico4.dll
2014-05-09 19:07 - 2011-12-05 23:08 - 00192000 _____ () C:\Programmi\Claro Internet\plugins\imageformats\qjpeg4.dll
2014-05-09 19:07 - 2011-12-05 23:08 - 00350720 _____ () C:\Programmi\Claro Internet\plugins\imageformats\qmng4.dll
2014-05-09 19:07 - 2011-12-05 23:08 - 00370176 _____ () C:\Programmi\Claro Internet\plugins\imageformats\qtiff4.dll
2014-05-08 21:33 - 2014-05-08 21:33 - 19336120 _____ () C:\Programmi\AVAST Software\Avast\libcef.dll
2005-12-28 12:11 - 2005-12-28 12:11 - 00876544 _____ () C:\Programmi\Intel\Wireless\bin\LIBEAY32.dll
2005-12-28 12:11 - 2005-12-28 12:11 - 00053322 _____ () C:\Programmi\Intel\Wireless\bin\IntStngs.dll
2005-12-28 12:11 - 2005-12-28 12:11 - 00876544 _____ () C:\Programmi\Intel\Wireless\Bin\LIBEAY32.dll
2005-12-28 12:11 - 2005-12-28 12:11 - 00053322 _____ () C:\Programmi\Intel\Wireless\Bin\IntStngs.dll
2014-05-09 00:51 - 2010-10-03 01:13 - 00470544 _____ () C:\programmi\Core Temp\Core Temp.exe
2014-05-25 12:47 - 2014-05-13 20:40 - 04217672 _____ () C:\programmi\Google\Chrome\Application\35.0.1916.114\pdf.dll
2014-05-25 12:47 - 2014-05-13 20:40 - 00414536 _____ () C:\programmi\Google\Chrome\Application\35.0.1916.114\ppGoogleNaClPluginChrome.dll
2014-05-25 12:47 - 2014-05-13 20:40 - 01732424 _____ () C:\programmi\Google\Chrome\Application\35.0.1916.114\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\WINDOWS:{4B9A1497-0817-47C4-9612-D6A1C53ACF57}
AlternateDataStreams: C:\WINDOWS\system32:{4B9A1497-0817-47C4-9612-D6A1C53ACF57}
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\TEMP:792D4CF1

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\02012513.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\02077419.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\12065157.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\26570407.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\31643467.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\51223013.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\58043682.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\63393830.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\69385106.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\77076994.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\98443611.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\02012513.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\02077419.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\12065157.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\26570407.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\31643467.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\51223013.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\58043682.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\63393830.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\69385106.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\77076994.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\98443611.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\procexp90.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== EXE Association (whitelisted) =============

================
=========================

SPasini · Jun 13, 2014

==================== MSCONFIG/TASK MANAGER disabled items =========

MSCONFIG\startupfolder: C:^Documents and Settings^All Users.WINDOWS^Menu Avvio^Programmi^Esecuzione automatica^Windows Search.lnk => C:\WINDOWS\pss\Windows Search.lnkCommon Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Programmi\File comuni\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\programmi\file comuni\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeCS6ServiceManager => "C:\programmi\file comuni\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: BitTorrent => "C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\BitTorrent\BitTorrent.exe" /MINIMIZED
MSCONFIG\startupreg: Mobile Partner => C:\programmi\Claro Internet\Claro Internet.exe
MSCONFIG\startupreg: Skype => "C:\Programmi\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Programmi\File comuni\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: uTorrent => "C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\uTorrent\uTorrent.exe" /MINIMIZED
MSCONFIG\startupreg: Xvid => C:\programmi\Xvid\CheckUpdate.exe

==================== Faulty Device Manager Devices =============

Name: Intel(R) Extended Thermal Model MCH Temperature Sensor Driver
Description: Intel(R) Extended Thermal Model MCH Temperature Sensor Driver
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: Intel
Service: EtmTempSense
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

==================== Event log errors: =========================

Application errors:
==================
Error: (06/13/2014 00:34:23 AM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Impossibile aggiornare la voce <C:\DOCUMENTS AND SETTINGS\SERGIOPASINI.SPASINI-S-PLACE\RECENT\DESKTOP.INI> nella mappa di hash.

Contesto: applicazione , catalogo SystemIndex

Dettagli:
Una periferica collegata al sistema non è in funzione. (0x8007001f)

Error: (06/12/2014 07:15:17 PM) (Source: MsiInstaller) (EventID: 11714) (User: SPASINI-S-PLACE)
Description: Product: Adobe AIR -- Error 1714. The older version of Adobe AIR cannot be removed. Contact your technical support group. System Error 1612.

Error: (06/12/2014 02:04:29 AM) (Source: MsiInstaller) (EventID: 11714) (User: SPASINI-S-PLACE)
Description: Product: Adobe AIR -- Error 1714. The older version of Adobe AIR cannot be removed. Contact your technical support group. System Error 1612.

Error: (06/10/2014 06:32:48 PM) (Source: Application Hang) (EventID: 1001) (User: )
Description: Bucket 247610333 errato.

Error: (06/10/2014 06:31:54 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Applicazione in stallo chrome.exe, versione 35.0.1916.114, modulo in stallo hungapp, versione 0.0.0.0, indirizzo stallo 0x00000000.

Error: (06/10/2014 05:06:25 PM) (Source: COM+) (EventID: 4691) (User: )
Description: L'ambiente di runtime non è in grado di inizializzare le transazioni necessarie per supportare I componenti di transazione. Assicurarsi che MS-DTC sia in esecuzione.(DtcGetTransactionManagerEx(): hr = 0x8004d01b)

Error: (06/10/2014 00:44:47 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Impossibile aggiornare la voce <C:\DOCUMENTS AND SETTINGS\SERGIOPASINI.SPASINI-S-PLACE\RECENT\DESKTOP.INI> nella mappa di hash.

Contesto: applicazione , catalogo SystemIndex

Dettagli:
Una periferica collegata al sistema non è in funzione. (0x8007001f)

Error: (06/10/2014 08:35:14 AM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Impossibile aggiornare la voce <C:\DOCUMENTS AND SETTINGS\SERGIOPASINI.SPASINI-S-PLACE\RECENT\DESKTOP.INI> nella mappa di hash.

Contesto: applicazione , catalogo SystemIndex

Dettagli:
Una periferica collegata al sistema non è in funzione. (0x8007001f)

Error: (06/10/2014 00:16:06 AM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Impossibile aggiornare la voce <C:\DOCUMENTS AND SETTINGS\SERGIOPASINI.SPASINI-S-PLACE\RECENT\DESKTOP.INI> nella mappa di hash.

Contesto: applicazione , catalogo SystemIndex

Dettagli:
Una periferica collegata al sistema non è in funzione. (0x8007001f)

Error: (06/09/2014 06:52:36 PM) (Source: Application Hang) (EventID: 1001) (User: )
Description: Bucket 12223254 errato.

System errors:
=============
Error: (06/13/2014 09:14:44 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Servizio Acquisizione di immagini di Windows (WIA) bloccato in partenza.

Error: (06/13/2014 09:14:21 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Timout (30000 millisecondi) durante l'attesa della risposta alla transazione dal servizio MBAMService.

Error: (06/13/2014 09:13:49 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Timout (30000 millisecondi) durante l'attesa della risposta alla transazione dal servizio MBAMService.

Error: (06/13/2014 09:13:09 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Il servizio Spybot-S&D 2 Security Center Service non è stato avviato per il seguente errore:
%%1053

Error: (06/13/2014 09:13:09 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Timeout (30000 millisecondi) durante l'attesa della connessione del servizio Spybot-S&D 2 Security Center Service.

Error: (06/13/2014 09:13:09 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Servizio Accesso periferica Human Interface terminato con l'errore:
%%126

Error: (06/13/2014 09:13:09 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Il servizio Claro Internet. OUC non è stato avviato per il seguente errore:
%%1053

Error: (06/13/2014 09:13:09 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Timeout (30000 millisecondi) durante l'attesa della connessione del servizio Claro Internet. OUC.

Error: (06/13/2014 09:13:09 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Servizio Windows Driver Foundation - User-mode Driver Framework terminato con l'errore:
%%31

Error: (06/13/2014 09:12:18 AM) (Source: NETLOGON) (EventID: 3095) (User: )
Description: Il computer è configurato come membro di un gruppo di lavoro, non
come membro di un dominio. Non è necessario che il servizio Accesso rete sia
eseguito in questa configurazione.

Microsoft Office Sessions:
=========================
Error: (06/13/2014 00:34:23 AM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Contesto: applicazione , catalogo SystemIndex

Dettagli:
Una periferica collegata al sistema non è in funzione. (0x8007001f)
C:\DOCUMENTS AND SETTINGS\SERGIOPASINI.SPASINI-S-PLACE\RECENT\DESKTOP.INI

Error: (06/12/2014 07:15:17 PM) (Source: MsiInstaller) (EventID: 11714) (User: SPASINI-S-PLACE)
Description: Product: Adobe AIR -- Error 1714. The older version of Adobe AIR cannot be removed. Contact your technical support group. System Error 1612.(NULL)(NULL)(NULL)(NULL)

Error: (06/12/2014 02:04:29 AM) (Source: MsiInstaller) (EventID: 11714) (User: SPASINI-S-PLACE)
Description: Product: Adobe AIR -- Error 1714. The older version of Adobe AIR cannot be removed. Contact your technical support group. System Error 1612.(NULL)(NULL)(NULL)(NULL)

Error: (06/10/2014 06:32:48 PM) (Source: Application Hang) (EventID: 1001) (User: )
Description: 247610333

Error: (06/10/2014 06:31:54 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: chrome.exe35.0.1916.114hungapp0.0.0.000000000

Error: (06/10/2014 05:06:25 PM) (Source: COM+) (EventID: 4691) (User: )
Description: (DtcGetTransactionManagerEx(): hr = 0x8004d01b)

Error: (06/10/2014 00:44:47 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Contesto: applicazione , catalogo SystemIndex

Dettagli:
Una periferica collegata al sistema non è in funzione. (0x8007001f)
C:\DOCUMENTS AND SETTINGS\SERGIOPASINI.SPASINI-S-PLACE\RECENT\DESKTOP.INI

Error: (06/10/2014 08:35:14 AM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Contesto: applicazione , catalogo SystemIndex

Dettagli:
Una periferica collegata al sistema non è in funzione. (0x8007001f)
C:\DOCUMENTS AND SETTINGS\SERGIOPASINI.SPASINI-S-PLACE\RECENT\DESKTOP.INI

Error: (06/10/2014 00:16:06 AM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Contesto: applicazione , catalogo SystemIndex

Dettagli:
Una periferica collegata al sistema non è in funzione. (0x8007001f)
C:\DOCUMENTS AND SETTINGS\SERGIOPASINI.SPASINI-S-PLACE\RECENT\DESKTOP.INI

Error: (06/09/2014 06:52:36 PM) (Source: Application Hang) (EventID: 1001) (User: )
Description: 12223254

==================== Memory info ===========================

Percentage of memory in use: 79%
Total physical RAM: 1015.3 MB
Available physical RAM: 211.75 MB
Total Pagefile: 2442.88 MB
Available Pagefile: 1266.31 MB
Total Virtual: 2047.88 MB
Available Virtual: 1924.84 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:149.04 GB) (Free:21.05 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive e: (Claro Internet) (CDROM) (Total:0.05 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149 GB) (Disk ID: 5BC53D8B)
Partition 1: (Active) - (Size=149 GB) - (Type=07 NTFS)

==================== End Of Log ===========

SPasini · Jun 13, 2014

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:12-06-2014
Ran by SergioPasini (administrator) on SPASINI-S-PLACE on 13-06-2014 09:26:54
Running from C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Documenti\Downloads
Platform: Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Italian Standard
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: https://www.techspot.com/downloads/6731-farbar-recovery-scan-tool.html
Download link for 64-Bit Version: https://www.techspot.com/downloads/6731-farbar-recovery-scan-tool.html
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST:

==================== Processes (Whitelisted) =================

(AVAST Software) C:\programmi\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\WINDOWS\system32\scardsvr.exe
(Microsoft Corporation) C:\WINDOWS\system32\netdde.exe
(SUPERAntiSpyware.com) C:\programmi\SUPERAntiSpyware\SASCore.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
() C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Claro Internet\OnlineUpdate\ouc.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\programmi\Google\Update\1.3.24.7\GoogleCrashHandler.exe
() C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\DatacardService\HWDeviceService.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
(Oracle Corporation) C:\programmi\Java\jre7\bin\jqs.exe
(Malwarebytes Corporation) C:\programmi\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\programmi\Malwarebytes Anti-Malware\mbamservice.exe
(Motorola Mobility LLC) C:\programmi\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
(Symantec) C:\Program Files\Symantec\Norton Utilities 16\sMonitor\StartManSvc.exe
(Microsoft Corporation) C:\WINDOWS\system32\locator.exe
(Safer-Networking Ltd.) C:\programmi\Spybot - Search & Destroy 2\SDFSSvc.exe
(Microsoft Corp., Veritas Software) C:\WINDOWS\system32\dmadmin.exe
(Safer-Networking Ltd.) C:\programmi\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Malwarebytes Corporation) C:\programmi\Malwarebytes Anti-Malware\mbam.exe
() C:\programmi\Claro Internet\Claro Internet.exe
(Motorola Mobility LLC) C:\programmi\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
(AVAST Software) C:\programmi\AVAST Software\Avast\avastui.exe
(Safer-Networking Ltd.) C:\programmi\Spybot - Search & Destroy 2\SDTray.exe
(Intel Corporation) C:\programmi\Intel\Wireless\Bin\ZCfgSvc.exe
(Intel Corporation) C:\programmi\Intel\Wireless\Bin\iFrmewrk.exe
(Intel Corporation) C:\programmi\Intel\Wireless\Bin\EOUWiz.exe
(Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(Motorola Inc.) C:\programmi\Motorola\SMSERIAL\sm56hlpr.exe
(Synaptics, Inc.) C:\programmi\Synaptics\SynTP\SynTPEnh.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
() C:\programmi\Core Temp\Core Temp.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(SUPERAntiSpyware) C:\programmi\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
(Google Inc.) C:\programmi\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\programmi\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [AvastUI.exe] => C:\Programmi\AVAST Software\Avast\AvastUI.exe [3890208 2014-06-06] (AVAST Software)
HKLM\...\Run: [SDTray] => C:\Programmi\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
HKLM\...\Run: [AzMixerSel] => C:\programmi\Realtek\InstallShield\AzMixerSel.exe [53248 2005-08-25] (Realtek Semiconductor Corp.)
HKLM\...\Run: [IntelZeroConfig] => C:\Programmi\Intel\Wireless\bin\ZCfgSvc.exe [667718 2005-12-28] (Intel Corporation)
HKLM\...\Run: [IntelWireless] => C:\Programmi\Intel\Wireless\Bin\ifrmewrk.exe [602182 2005-12-28] (Intel Corporation)
HKLM\...\Run: [EOUApp] => C:\Programmi\Intel\Wireless\Bin\EOUWiz.exe [569413 2005-12-28] (Intel Corporation)
HKLM\...\Run: [igfxhkcmd] => C:\WINDOWS\system32\hkcmd.exe [77824 2006-02-06] (Intel Corporation)
HKLM\...\Run: [igfxpers] => C:\WINDOWS\system32\igfxpers.exe [118784 2006-02-06] (Intel Corporation)
HKLM\...\Run: [SMSERIAL] => C:\Programmi\Motorola\SMSERIAL\sm56hlpr.exe [1458176 2014-05-14] (Motorola Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Programmi\Synaptics\SynTP\SynTPEnh.exe [761946 2006-03-09] (Synaptics, Inc.)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [Synchronization Manager] => C:\WINDOWS\system32\mobsync.exe [143872 2008-04-14] (Microsoft Corporation)
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [20145368 2014-05-14] (Realtek Semiconductor Corp.)
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
HKU\S-1-5-21-57989841-796845957-1644491937-1003\...\Run: [Core Temp] => C:\programmi\Core Temp\Core Temp.exe [470544 2010-10-03] ()
HKU\S-1-5-21-57989841-796845957-1644491937-1003\...\Run: [SUPERAntiSpyware] => C:\Programmi\SUPERAntiSpyware\SUPERAntiSpyware.exe [5626136 2014-06-10] (SUPERAntiSpyware)
HKU\S-1-5-21-57989841-796845957-1644491937-1003\...\Policies\Explorer: [NoInstrumentation] 1
HKU\S-1-5-21-57989841-796845957-1644491937-1003\...\MountPoints2: {0f21d6b0-d7c2-11e3-a5ec-001f3c9025e7} - E:\AutoRun.exe
HKU\S-1-5-21-57989841-796845957-1644491937-1003\...\MountPoints2: {c5ad2773-d70f-11e3-a5e1-004045336f64} - E:\AutoRun.exe

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://securedsearch2.lavasoft.com/...-09&ent=hp&u=E89840DCFCA64E798F170A536D57ECA1
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM - DefaultScope value is missing.
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programmi\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Free Download Manager - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\programmi\Free Download Manager\iefdm2.dll (FreeDownloadManager.ORG)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programmi\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - &Indirizzo - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU - Co&llegamenti - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft.com/fwlink/?linkid=39204
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://windowsupdate.microsoft.com/...ls/en/x86/client/wuweb_site.cab?1399602363171
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\OLE DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\OLE DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\OLE DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\OLE DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\OLE DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\OLE DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\OLE DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Programmi\File comuni\Skype\SKYPE4~1.DLL (Skype Technologies)
ShellExecuteHooks: Hook per l'esecuzione degli URL - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - C:\WINDOWS\system32\shell32.dll [8492032 2012-06-08] (Microsoft Corporation)
ShellExecuteHooks: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\programmi\Windows Desktop Search\MsnlNamespaceMgr.dll [304128 2009-05-24] (Microsoft Corporation)
ShellExecuteHooks: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\programmi\SUPERAntiSpyware\SASSEH.DLL [115440 2013-05-07] (SuperAdBlocker.com)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt

FireFox:
========
FF ProfilePath: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\Mozilla\Firefox\Profiles\k16p1aht.default
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_14_0_0_125.dll ()
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Programmi\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.55.2 - C:\Programmi\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.55.2 - C:\Programmi\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Programmi\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Programmi\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.3 - C:\Programmi\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Programmi\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Programmi\File comuni\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin: adobe.com/AdobeExManDetect - C:\Programmi\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll (Adobe Systems)
FF Extension: savE on - C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\Mozilla\Firefox\Profiles\k16p1aht.default\Extensions\xh454eyoi@lrjwwaqn.co.uk [2014-06-01]
FF Extension: avast! Online Security - C:\Programmi\AVAST Software\Avast\WebRep\FF [2014-05-08]
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2014-04-30]
FF Extension: Free Download Manager plugin - C:\Programmi\Free Download Manager\Firefox\Extension [2014-05-09]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Programmi\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Programmi\AVAST Software\Avast\WebRep\FF [2014-05-08]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []

Chrome:
=======
CHR DefaultSearchKeyword: google.com.uy
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-22]
CHR Extension: (avast! Online Security) - C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-05-09]
CHR Extension: (Google Wallet) - C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-09]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Programmi\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-05-08]

========================== Services (Whitelisted) =================

R2 !SASCORE; C:\Programmi\SUPERAntiSpyware\SASCORE.EXE [120088 2013-10-10] (SUPERAntiSpyware.com)
R2 6to4; C:\WINDOWS\System32\6to4svc.dll [100864 2010-02-12] (Microsoft Corporation)
R2 avast! Antivirus; C:\Programmi\AVAST Software\Avast\AvastSvc.exe [50344 2014-05-08] (AVAST Software)
S2 Claro Internet. RunOuc; C:\Programmi\Claro Internet\UpdateDog\ouc.exe [655712 2011-12-23] ()
S3 DiskDoctorService; C:\Program Files\Symantec\Norton Utilities 16\Tools\Disk Doctor\DiskDoctorSrv.exe [1147424 2012-09-29] (Symantec Corporation)
S2 gupdate; C:\Programmi\Google\Update\GoogleUpdate.exe [116648 2014-05-08] (Google Inc.)
S2 gupdatem; C:\Programmi\Google\Update\GoogleUpdate.exe [116648 2014-05-08] (Google Inc.)
R2 HWDeviceService.exe; C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\DatacardService\HWDeviceService.exe [271712 2011-03-14] ()
R2 JavaQuickStarterService; C:\Programmi\Java\jre7\bin\jqs.exe [182696 2014-05-11] (Oracle Corporation)
R2 MBAMScheduler; C:\Programmi\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Programmi\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 Motorola Device Manager; C:\Programmi\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [137528 2013-11-15] (Motorola Mobility LLC)
S2 MozillaMaintenance; C:\Programmi\Mozilla Maintenance Service\maintenanceservice.exe [119408 2014-04-22] (Mozilla Foundation)
R2 NU16StartManagerSvc; C:\Program Files\Symantec\Norton Utilities 16\sMonitor\StartManSvc.exe [792608 2012-09-29] (Symantec)
R2 SDScannerService; C:\Programmi\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Programmi\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
S2 SDWSCService; C:\Programmi\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.)
S2 SkypeUpdate; C:\Programmi\Skype\Updater\Updater.exe [172192 2013-10-23] (Skype Technologies)
S3 SpeedDiskService; C:\Program Files\Symantec\Norton Utilities 16\Tools\SpeedDisk\SpeedDiskSrv.exe [1160224 2012-09-29] (Symantec Corporation)
S3 WMPNetworkSvc; C:\Programmi\Windows Media Player\WMPNetwk.exe [918528 2006-11-02] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2014-05-14] (Creative)
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24184 2014-05-08] ()
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [67824 2014-05-08] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [54832 2014-05-15] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49944 2014-05-08] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [777488 2014-05-15] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [411680 2014-05-15] (AVAST Software)
R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57672 2014-05-08] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [180632 2014-05-08] ()
S3 EtmTempSense; C:\WINDOWS\System32\DRIVERS\EtmTempSense.sys [12288 2014-06-11] (Intel Corporation)
R3 ew_usbenumfilter; C:\WINDOWS\System32\DRIVERS\ew_usbenumfilter.sys [12160 2014-05-14] (MBB Technologies Co., Ltd.)
R3 huawei_cdcacm; C:\WINDOWS\System32\DRIVERS\ew_jucdcacm.sys [95744 2011-11-24] (Huawei Technologies Co., Ltd.)
R3 huawei_cdcecm; C:\WINDOWS\System32\DRIVERS\ew_jucdcecm.sys [67584 2011-11-24] (Huawei Technologies Co., Ltd.)
R3 huawei_ext_ctrl; C:\WINDOWS\System32\DRIVERS\ew_juextctrl.sys [27520 2011-11-24] (Huawei Technologies Co., Ltd.)
R1 mbamchameleon; C:\WINDOWS\system32\drivers\mbamchameleon.sys [53208 2014-05-12] (Malwarebytes Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [23256 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [110296 2014-06-13] (Malwarebytes Corporation)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2014-05-14] (Creative Technology Ltd.)
R3 NETwLx32; C:\WINDOWS\System32\DRIVERS\NETwLx32.sys [6609920 2014-05-14] (Intel Corporation)
S3 rspSanity; C:\WINDOWS\System32\DRIVERS\rspSanity32XP.sys [27232 2012-10-29] (Resplendence Software Projects Sp.)
S3 rtl8139; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [20992 2008-04-13] (Realtek Semiconductor Corporation)
R1 SASDIFSV; C:\Programmi\SUPERAntiSpyware\SASDIFSV.SYS [12880 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Programmi\SUPERAntiSpyware\SASKUTIL.SYS [67664 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 Tcpip6; C:\WINDOWS\System32\DRIVERS\tcpip6.sys [226880 2010-02-11] (Microsoft Corporation)
S3 w39n51; C:\WINDOWS\System32\DRIVERS\w39n51.sys [1428096 2005-12-05] (Intel® Corporation)
R3 WsAudio_DeviceS(1); C:\WINDOWS\System32\drivers\WsAudio_DeviceS(1).sys [25704 2010-09-14] (Wondershare)
R3 WsAudio_DeviceS(2); C:\WINDOWS\System32\drivers\WsAudio_DeviceS(2).sys [25704 2010-09-14] (Wondershare)
R3 WsAudio_DeviceS(3); C:\WINDOWS\System32\drivers\WsAudio_DeviceS(3).sys [25704 2010-09-14] (Wondershare)
R3 WsAudio_DeviceS(4); C:\WINDOWS\System32\drivers\WsAudio_DeviceS(4).sys [25704 2010-09-14] (Wondershare)
R3 WsAudio_DeviceS(5); C:\WINDOWS\System32\drivers\WsAudio_DeviceS(5).sys [25704 2010-09-14] (Wondershare)
R3 ALSysIO; \??\C:\DOCUME~1\SERGIO~1.SPA\IMPOST~1\Temp\ALSysIO.sys [X]
S3 catchme; \??\C:\DOCUME~1\SERGIO~1.SPA\IMPOST~1\Temp\catchme.sys [X]
U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [245376 2011-12-30] (Huawei Technologies Co., Ltd.)
S4 IntelIde; No ImagePath
S3 MEMSWEEP2; \??\C:\WINDOWS\system32\112.tmp [X]
S3 Trufos; system32\DRIVERS\Trufos.sys [X]

========================== Drivers MD5 =======================

C:\WINDOWS\System32\DRIVERS\ACPI.sys D766E636187B8F240BBFBABCD51EB2C6
C:\WINDOWS\System32\DRIVERS\ACPIEC.sys 49AC5CD87FBDDA62F3E25190019E7627
C:\WINDOWS\System32\drivers\aec.sys 8BED39E3C35D6A489438B8141717A557
C:\WINDOWS\System32\drivers\afd.sys 1E44BC1E83D8FD2305F8D452DB109CF9
C:\WINDOWS\System32\drivers\Ambfilt.sys 267FC636801EDC5AB28E14036349E3BE
C:\WINDOWS\System32\DRIVERS\arp1394.sys B5B8A80875C1DEDEDA8B02765642C32F
C:\WINDOWS\system32\drivers\aswHwid.sys 4D6C6E0505A8E5A0656DCB223497D37C
C:\WINDOWS\system32\drivers\aswMonFlt.sys 1A2CC93BBD77C2D95A7567938D7D7239
C:\WINDOWS\system32\drivers\aswRdr.sys FFB1BDC9CAF255019D678DB5BEDAF0F0
C:\WINDOWS\system32\Drivers\aswRvrt.sys 24B3BDA01DB3A704E33A5266C7B52DAF
C:\WINDOWS\system32\drivers\aswSnx.sys D13182758BAC9B4996D592E7684C9267
C:\WINDOWS\system32\drivers\aswSP.sys D1A68A33B082FA1C7087CE54A7923D90
C:\WINDOWS\system32\drivers\aswTdi.sys AF01CD260A9EF60B09029C9F5EF99040
C:\WINDOWS\system32\Drivers\aswVmm.sys B2D7EE52633CA8831DDAFCA81C2D46C3
C:\WINDOWS\System32\DRIVERS\asyncmac.sys B153AFFAC761E7F5FCFA822B9C4E97BC
C:\WINDOWS\System32\DRIVERS\atapi.sys 9F3A2F5AA6875C72BF062C712CFA2674
C:\WINDOWS\System32\DRIVERS\atmarpc.sys 9916C1225104BA14794209CFA8012159
C:\WINDOWS\System32\DRIVERS\audstub.sys D9F724AA26C010A217C97606B160ED68
C:\WINDOWS\system32\Drivers\Beep.sys DA1F27D85E0D1525F6621372E7B685E9
C:\WINDOWS\system32\Drivers\cbidf2k.sys 90A673FC8E12A79AFBED2576F6A7AAF9
C:\WINDOWS\system32\Drivers\Cdaudio.sys C1B486A7658353D33A10CC15211A873B
C:\WINDOWS\system32\Drivers\Cdfs.sys C885B02847F5D2FD45A24E219ED93B32
C:\WINDOWS\System32\DRIVERS\cdrom.sys 1F4260CC5B42272D71F79E570A27A4FE
C:\WINDOWS\System32\DRIVERS\CmBatt.sys 0F6C187D38D98F8DF904589A5F94D411
C:\WINDOWS\System32\DRIVERS\compbatt.sys 6E4C9F21F0FAE8940661144F41B13203
C:\WINDOWS\System32\DRIVERS\disk.sys 044452051F3E02E7963599FC8F4F3E25
C:\WINDOWS\System32\drivers\dmboot.sys 82BC125A8ED33F5F0E75F2AAC1065323
C:\WINDOWS\System32\drivers\dmio.sys E959DDC0EA7AC11EE5E5602E2A364310
C:\WINDOWS\System32\drivers\dmload.sys E9317282A63CA4D188C0DF5E09C6AC5F
C:\WINDOWS\System32\drivers\DMusic.sys 8A208DFCF89792A484E76C40E5F50B45
C:\WINDOWS\System32\drivers\drmkaud.sys 8F5FCFF8E8848AFAC920905FBD9D33C8
C:\WINDOWS\System32\DRIVERS\EtmTempSense.sys 698E3DBAD5443FB828FEC5A14B17DAAB
C:\WINDOWS\System32\DRIVERS\ew_hwusbdev.sys 57C171EA22F0A7F068FCB0CAEDD1E8E7
C:\WINDOWS\System32\DRIVERS\ew_usbenumfilter.sys E17514688C465F636280E883E089B712
C:\WINDOWS\system32\Drivers\Fastfat.sys 38D332A6D56AF32635675F132548343E
C:\WINDOWS\system32\Drivers\Fdc.sys 92CDD60B6730B9F50F6A1A0C1F8CDC81
C:\WINDOWS\system32\Drivers\Fips.sys 2CFEA3326981A18C6BAF2BD9BE76225B
C:\WINDOWS\system32\Drivers\Flpydisk.sys 9D27E7B80BFCDF1CDD9B555862D5E7F0
C:\WINDOWS\System32\DRIVERS\fltMgr.sys B2CF4B0786F8212CB92ED2B50C6DB6B0
C:\WINDOWS\system32\Drivers\Fs_Rec.sys 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A
C:\WINDOWS\System32\DRIVERS\ftdisk.sys F3269A6EE547EA87B949A1CEA4816B38
C:\WINDOWS\System32\DRIVERS\msgpc.sys 0A02C63C8B144BD8C86B103DEE7C86A2
C:\WINDOWS\System32\DRIVERS\HDAudBus.sys 573C7D0A32852B48F3058CFD8026F511
C:\WINDOWS\System32\Drivers\HTTP.sys F80A415EF82CD06FFAF0D971528EAD38
C:\WINDOWS\System32\DRIVERS\ew_jucdcacm.sys 568A34809E3C4AFB26E0D3B2ED79495A
C:\WINDOWS\System32\DRIVERS\ew_jucdcecm.sys 73093E73236B1A248EEBB52ACC009DEB
C:\WINDOWS\System32\DRIVERS\ew_jubusenum.sys EEF867E6D8252475991B41F5C67CF31D
C:\WINDOWS\System32\DRIVERS\ew_juextctrl.sys C0A80E0CDA941F732026193D2EA6E62A
C:\WINDOWS\System32\DRIVERS\i8042prt.sys 610726E28AF55B95043C5C35A727E320
C:\WINDOWS\System32\DRIVERS\ialmnt5.sys DA91F5385CFC8BA0F110F2FDE112B563
C:\WINDOWS\System32\DRIVERS\imapi.sys 083A052659F5310DD8B6A6CB05EDCF8E
C:\WINDOWS\System32\drivers\RtkHDAud.sys D2B3E586BF9DC8EB118605E4BB01B434
C:\WINDOWS\System32\DRIVERS\intelppm.sys EBD830A0970C438047006A49C23E287F
C:\WINDOWS\System32\DRIVERS\Ip6Fw.sys 3BB22519A194418D5FEC05D800A19AD0
C:\WINDOWS\System32\DRIVERS\ipfltdrv.sys 731F22BA402EE4B62748ADAF6363C182
C:\WINDOWS\System32\DRIVERS\ipinip.sys B87AB476DCF76E72010632B5550955F5
C:\WINDOWS\System32\DRIVERS\ipnat.sys CC748EA12C6EFFDE940EE98098BF96BB
C:\WINDOWS\System32\DRIVERS\ipsec.sys 23C74D75E36E7158768DD63D92789A91
C:\WINDOWS\System32\DRIVERS\irenum.sys C93C9FF7B04D772627A3646D89F7BF89
C:\WINDOWS\System32\DRIVERS\isapnp.sys 0953594BEB81CC72FCC62D37921B25A6
C:\WINDOWS\System32\DRIVERS\kbdclass.sys 28B6EACE513CA7EABA3B809AD4BC274D
C:\WINDOWS\System32\drivers\kmixer.sys 692BCF44383D056AED41B045A323D378
C:\WINDOWS\system32\Drivers\KSecDD.sys B467646C54CC746128904E1654C750C1
C:\WINDOWS\system32\drivers\mbamchameleon.sys AED25CDB09FB4E56F45DAF6C9A1D3ED3
C:\WINDOWS\system32\drivers\mbam.sys 8683C1B450F4B3872839308D836E0F92
C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys 12E71DA845D76665B56753AD149E32B3
C:\WINDOWS\system32\Drivers\mnmdd.sys 4AE068242760A1FB6E1A44BF4E16AFA6
C:\WINDOWS\system32\Drivers\Modem.sys 8CB6636806D76B85FAFAEE94D75F5129
C:\WINDOWS\System32\drivers\MODEMCSA.sys 1992E0D143B09653AB0F9C5E04B0FD65
C:\WINDOWS\System32\drivers\Monfilt.sys C7D9F9717916B34C1B00DD4834AF485C
C:\WINDOWS\System32\DRIVERS\motmodem.sys E267AF6C31952CA1F7D4872DFA23FE82
C:\WINDOWS\System32\DRIVERS\mouclass.sys E904EBED608055A2BFB824C07F59766C
C:\WINDOWS\system32\Drivers\MountMgr.sys A80B9A0BAD1B73637DBCBBA7DF72D3FD
C:\WINDOWS\System32\DRIVERS\mrxdav.sys 11D42BB6206F33FBB3BA0288D3EF81BD
C:\WINDOWS\System32\DRIVERS\mrxsmb.sys 7D304A5EB4344EBEEAB53A2FE3FFB9F0
C:\WINDOWS\system32\Drivers\Msfs.sys C941EA2454BA8350021D774DAF0F1027
C:\WINDOWS\System32\drivers\MSKSSRV.sys D1575E71568F4D9E14CA56B7B0453BF1
C:\WINDOWS\System32\drivers\MSPCLOCK.sys 325BB26842FC7CCC1FCCE2C457317F3E
C:\WINDOWS\System32\drivers\MSPQM.sys BAD59648BA099DA4A17680B39730CB3D
C:\WINDOWS\System32\DRIVERS\mssmbios.sys AF5F4F3F14A8EA2C26DE30F7A1E17136
C:\WINDOWS\system32\Drivers\Mup.sys DE6A75F5C270E756C5508D94B6CF68F5
C:\WINDOWS\system32\Drivers\NDIS.sys 1DF7F42665C94B825322FAE71721130D
C:\WINDOWS\System32\DRIVERS\ndistapi.sys 0109C4F3850DFBAB279542515386AE22
C:\WINDOWS\System32\DRIVERS\ndisuio.sys F927A4434C5028758A842943EF1A3849
C:\WINDOWS\System32\DRIVERS\ndiswan.sys EDC1531A49C80614B2CFDA43CA8659AB
C:\WINDOWS\system32\Drivers\NDProxy.sys 2F597BB467E05B1FE3830EABD821B8E0
C:\WINDOWS\System32\DRIVERS\netbios.sys 5D81CF9A2F1A3A756B66CF684911CDF0
C:\WINDOWS\System32\DRIVERS\netbt.sys 74B2B2F5BEA5E9A3DC021D685551BD3D
C:\WINDOWS\System32\DRIVERS\NETwLx32.sys 72062B53186E4A3F5FCBC41EBB62B905
C:\WINDOWS\System32\DRIVERS\nic1394.sys E9E47CFB2D461FA0FC75B7A74C6383EA
C:\WINDOWS\system32\Drivers\Npfs.sys 3182D64AE053D6FB034F44B6DEF8034A
C:\WINDOWS\system32\Drivers\Ntfs.sys 78A08DD6A8D65E697C18E1DB01C5CDCA
C:\WINDOWS\system32\Drivers\Null.sys 73C1E1F395918BC2C6DD67AF7591A3AD
C:\WINDOWS\System32\DRIVERS\nwlnkflt.sys B305F3FAD35083837EF46A0BBCE2FC57
C:\WINDOWS\System32\DRIVERS\nwlnkfwd.sys C99B3415198D1AAB7227F2C88FD664B9
C:\WINDOWS\System32\DRIVERS\o2media.sys 634FF60F418792906887B3D6CEECB431
C:\WINDOWS\System32\DRIVERS\o2sd.sys 9186C533230BE6BA9217149E824F00E1
C:\WINDOWS\System32\DRIVERS\ohci1394.sys CA33832DF41AFB202EE7AEB05145922F
C:\WINDOWS\system32\Drivers\Parport.sys 4E9408A178B2D955871C2CDD278DE3C3
C:\WINDOWS\system32\Drivers\PartMgr.sys BEB3BA25197665D82EC7065B724171C6
C:\WINDOWS\system32\Drivers\ParVdm.sys 0DABEF655A444CB1E193626FB1D24B9F
C:\WINDOWS\System32\DRIVERS\pci.sys F40A46892AFEBB0314536B849D57C11E
C:\WINDOWS\System32\DRIVERS\pciide.sys B2DF00D650FD6C4EE781740ED3C8E67F
C:\WINDOWS\system32\Drivers\Pcmcia.sys 815C50F2B1D1562800BDCE8BE895000E
C:\WINDOWS\System32\DRIVERS\raspptp.sys EFEEC01B1D3CF84F16DDD24D9D9D8F99
C:\WINDOWS\System32\DRIVERS\ptilink.sys 80D317BD1C3DBC5D4FE7B1678C60CADD
C:\WINDOWS\System32\DRIVERS\rasacd.sys FE0D99D6F31E4FAD8159F690D68DED9C
C:\WINDOWS\System32\DRIVERS\rasl2tp.sys 11B4A627BC9614B885C4969BFA5FF8A6
C:\WINDOWS\System32\DRIVERS\raspppoe.sys 5BC962F2654137C9909C3D4603587DEE
C:\WINDOWS\System32\DRIVERS\raspti.sys FDBB1D60066FCFBB7452FD8F9829B242
C:\WINDOWS\System32\DRIVERS\rdbss.sys 7AD224AD1A1437FE28D89CF22B17780A
C:\WINDOWS\System32\DRIVERS\RDPCDD.sys 4912D5B403614CE99C28420F75353332
C:\WINDOWS\System32\DRIVERS\rdpdr.sys 15CABD0F7C00C47C70124907916AF3F1
C:\WINDOWS\system32\Drivers\RDPWD.sys 43AF5212BD8FB5BA6EED9754358BD8F7
C:\WINDOWS\System32\DRIVERS\redbook.sys 393FC252593323B624B230ECA6B85E63
C:\WINDOWS\System32\DRIVERS\rspSanity32XP.sys 707E28D1B910910644FF38888E11F957
C:\WINDOWS\System32\DRIVERS\Rtnicxp.sys CF84B1F0E8B14D4120AAF9CF35CBB265
C:\WINDOWS\System32\DRIVERS\RTL8139.SYS D507C1400284176573224903819FFDA3
C:\Programmi\SUPERAntiSpyware\SASDIFSV.SYS 39763504067962108505BFF25F024345
C:\Programmi\SUPERAntiSpyware\SASKUTIL.SYS 77B9FC20084B48408AD3E87570EB4A85
C:\WINDOWS\System32\DRIVERS\sdbus.sys 8D04819A3CE51B9EB47E5689B44D43C4
C:\WINDOWS\System32\DRIVERS\secdrv.sys ==> MD5 is legit
C:\WINDOWS\system32\Drivers\Serial.sys FDBD9D64E2E03270021D424F0DCCF79D
C:\WINDOWS\system32\Drivers\Sfloppy.sys 8E6B8C671615D126FDC553D1E2DE5562
C:\WINDOWS\System32\DRIVERS\smserial.sys 859E3ADC59D1C89A66AA6492C14D379E
C:\WINDOWS\System32\drivers\splitter.sys AB8B92451ECB048A4D1DE7C3FFCB4A9F
C:\WINDOWS\System32\DRIVERS\sr.sys 618718CAE288BF7CBD8FCBAB2577D932
C:\WINDOWS\System32\DRIVERS\srv.sys 47DDFC2F003F7F9F0592C6874962A2E7
C:\WINDOWS\System32\DRIVERS\serscan.sys A95D6F47807301FCC940896B9EB45408
C:\WINDOWS\System32\DRIVERS\swenum.sys 3941D127AEF12E93ADDF6FE6EE027E0F
C:\WINDOWS\System32\drivers\swmidi.sys 8CE882BCC6CF8A62F2B2323D95CB3D01
C:\WINDOWS\System32\DRIVERS\SynTP.sys 02A7F6F7489399FD73028173945FE55B
C:\WINDOWS\System32\drivers\sysaudio.sys 8B83F3ED0F1688B4958F77CD6D2BF290
C:\WINDOWS\System32\DRIVERS\tcpip.sys 9AEFA14BD6B182D61E3119FA5F436D3D
C:\WINDOWS\System32\DRIVERS\tcpip6.sys 4E53BBCC4BE37D7A4BD6EF1098C89FF7
C:\WINDOWS\system32\Drivers\TDPIPE.sys 6471A66807F5E104E4885F5B67349397
C:\WINDOWS\system32\Drivers\TDTCP.sys C56B6D0402371CF3700EB322EF3AAF61
C:\WINDOWS\System32\DRIVERS\termdd.sys 88155247177638048422893737429D9E
C:\WINDOWS\System32\DRIVERS\tunmp.sys 8F861EDA21C05857EB8197300A92501C
C:\WINDOWS\system32\Drivers\Udfs.sys 5787B80C2E3C5E2F56C2A233D91FA2C9
C:\WINDOWS\System32\DRIVERS\update.sys 402DDC88356B1BAC0EE3DD1580C76A31
C:\WINDOWS\System32\DRIVERS\usbccgp.sys 1B611611C28D2DF25BC057D79C6F13FC
C:\WINDOWS\System32\DRIVERS\usbehci.sys 4BAC8DF07F1D8434FC640E677A62204E
C:\WINDOWS\System32\DRIVERS\usbhub.sys 1AB3CDDE553B6E064D2E754EFE20285C
C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS A32426D9B14A089EAA1D922E0C5801A9
C:\WINDOWS\System32\DRIVERS\usbuhci.sys 26496F9DEE2D787FC3E61AD54821FFE6
C:\WINDOWS\System32\drivers\vga.sys 0D3A8FAFCEACD8B7625CD549757A7DF1
C:\WINDOWS\system32\Drivers\VolSnap.sys E46C1B5A56DA7DA603D09DFCC79EC59E
C:\WINDOWS\System32\DRIVERS\w39n51.sys B1F126E7E28877106D60E6FF3998D033
C:\WINDOWS\System32\DRIVERS\wanarp.sys E20B95BAEDB550F32DD489265C1DA1F6
C:\WINDOWS\System32\Drivers\wdf01000.sys D918617B46457B9AC28027722E30F647
C:\WINDOWS\System32\drivers\wdmaud.sys 6768ACF64B18196494413695F0C3A00F
C:\WINDOWS\System32\DRIVERS\wmiacpi.sys C42584FD66CE9E17403AEBCA199F7BDB
C:\WINDOWS\System32\drivers\ws2ifsl.sys 6ABE6E225ADB5A751622A9CC3BC19CE8
C:\WINDOWS\System32\drivers\WsAudio_DeviceS(1).sys 4160CBE59D9B5BE22E4C3897E8DB9D56
C:\WINDOWS\System32\drivers\WsAudio_DeviceS(2).sys 4160CBE59D9B5BE22E4C3897E8DB9D56
C:\WINDOWS\System32\drivers\WsAudio_DeviceS(3).sys 4160CBE59D9B5BE22E4C3897E8DB9D56
C:\WINDOWS\System32\drivers\WsAudio_DeviceS(4).sys 4160CBE59D9B5BE22E4C3897E8DB9D56
C:\WINDOWS\System32\drivers\WsAudio_DeviceS(5).sys 4160CBE59D9B5BE22E4C3897E8DB9D56
C:\WINDOWS\System32\DRIVERS\WudfPf.sys F15FEAFFFBB3644CCC80C5DA584E6311
C:\WINDOWS\System32\DRIVERS\wudfrd.sys 28B524262BCE6DE1F7EF9F510BA3985B

==================== NetSvcs (Whitelisted) ===================

SPasini · Jun 13, 2014

==================== One Month Created Files and Folders ========

2014-06-13 09:25 - 2014-06-13 09:27 - 00000000 ____D () C:\FRST
2014-06-13 09:12 - 2014-06-13 09:12 - 00094272 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-06-13 02:26 - 2014-06-13 02:25 - 00001864 _____ () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Documenti\JRT.txt
2014-06-13 01:34 - 2014-06-13 01:34 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-06-13 01:13 - 2014-06-13 01:31 - 00000000 ____D () C:\AdwCleaner
2014-06-12 19:59 - 2014-06-12 20:03 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\TopApp soft
2014-06-11 21:00 - 2014-06-11 21:00 - 00012288 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\EtmTempSense.sys
2014-06-11 16:48 - 2014-06-13 02:34 - 00032606 _____ () C:\WINDOWS\SchedLgU.Txt
2014-06-11 16:20 - 2014-06-13 02:34 - 00064200 _____ () C:\Documents and Settings\LocalService.NT AUTHORITY.005\Impostazioni locali\Dati applicazioni\FontCache3.0.0.0.dat
2014-06-11 10:59 - 2014-06-11 11:00 - 00000000 _RSHD () C:\cmdcons
2014-06-11 10:44 - 2014-06-11 11:02 - 00000000 ___SD () C:\ComboFix
2014-06-11 00:35 - 2014-06-09 19:12 - 00000741 ____R () C:\WINDOWS\system32\Drivers\etc\hosts.20140611-003535.backup
2014-06-10 10:45 - 2014-06-11 11:00 - 00000311 __RSH () C:\boot.ini
2014-06-10 10:45 - 2014-06-10 10:45 - 00297072 _____ () C:\ntldr
2014-06-10 10:45 - 2014-06-10 10:45 - 00047772 _____ () C:\ntdetect.com
2014-06-10 10:41 - 2014-06-03 19:38 - 27000832 _____ () C:\WINDOWS\system32\config\SOFTWARE.TPBAK
2014-06-10 10:41 - 2014-06-03 19:38 - 04980736 _____ () C:\WINDOWS\system32\config\SYSTEM.TPBAK
2014-06-10 10:41 - 2014-06-03 19:38 - 00262144 _____ () C:\WINDOWS\system32\config\SECURITY.TPBAK
2014-06-10 10:41 - 2014-06-03 19:38 - 00262144 _____ () C:\WINDOWS\system32\config\SAM.TPBAK
2014-06-09 01:21 - 2014-06-09 01:21 - 00000000 ____D () C:\programmi\Xvid
2014-06-09 01:21 - 2014-06-09 01:21 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Xvid
2014-06-09 01:21 - 2014-04-08 17:50 - 00632320 _____ () C:\WINDOWS\system32\xvidcore.dll
2014-06-09 01:21 - 2014-04-08 17:50 - 00235520 _____ () C:\WINDOWS\system32\xvidvfw.dll
2014-06-08 20:31 - 2014-06-08 21:14 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Malwarebytes' Anti-Malware (portable)
2014-06-05 17:54 - 2014-06-05 18:26 - 00013816 _____ () C:\WINDOWS\system32\unikey.sys
2014-06-05 00:53 - 2014-06-05 00:53 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Lavasoft
2014-06-01 10:37 - 2014-06-12 19:03 - 00001876 _____ () C:\Documents and Settings\All Users.WINDOWS\Desktop\CommView for WiFi.lnk
2014-06-01 10:37 - 2014-06-02 20:40 - 00000000 ____D () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Documenti\CommView for WiFi
2014-06-01 10:37 - 2014-06-01 10:37 - 00001058 _____ () C:\Documents and Settings\All Users.WINDOWS\Desktop\WEP Key Recovery.lnk
2014-06-01 10:37 - 2014-06-01 10:37 - 00000000 ____D () C:\programmi\FiSTiNG4FUN
2014-06-01 10:37 - 2014-06-01 10:37 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\CommView for WiFi
2014-06-01 02:56 - 2014-06-01 02:56 - 00000000 ____D () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\Boredom Software
2014-06-01 02:49 - 2014-06-01 02:49 - 00000000 ____D () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\Dati applicazioni\Torch
2014-06-01 02:49 - 2014-06-01 02:49 - 00000000 ____D () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\Dati applicazioni\Comodo
2014-06-01 02:49 - 2014-06-01 02:49 - 00000000 ____D () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\Dati applicazioni\Chromatic Browser
2014-06-01 02:49 - 2014-06-01 02:49 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\f3d8f0d1a680598
2014-06-01 02:46 - 2014-06-12 20:03 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\InstallMate
2014-05-31 20:28 - 2014-05-31 20:49 - 00000000 ____D () C:\programmi\Driver Identifier
2014-05-31 20:28 - 2014-05-31 20:41 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Driver Identifier
2014-05-31 20:27 - 2014-06-01 02:03 - 00000000 ____D () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\TempDIR
2014-05-29 20:34 - 2014-06-13 09:15 - 00110296 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-05-29 20:34 - 2014-05-29 20:34 - 00000765 _____ () C:\Documents and Settings\All Users.WINDOWS\Desktop\Malwarebytes Anti-Malware.lnk
2014-05-29 20:34 - 2014-05-29 20:34 - 00000000 ____D () C:\programmi\Malwarebytes Anti-Malware
2014-05-29 20:34 - 2014-05-29 20:34 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Malwarebytes Anti-Malware
2014-05-29 20:34 - 2014-05-12 07:26 - 00053208 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-05-29 20:34 - 2014-05-12 07:25 - 00023256 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-05-28 16:34 - 2014-05-28 16:36 - 170728397 _____ () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\Dati applicazioni\ACCCx2_6_0_393.zip.aamdownload
2014-05-28 16:34 - 2014-05-28 16:36 - 00001984 _____ () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\Dati applicazioni\ACCCx2_6_0_393.zip.aamdownload.aamd
2014-05-28 16:27 - 2014-05-28 16:27 - 00001100 _____ () C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Adobe Application Manager.lnk
2014-05-28 16:27 - 2014-05-28 16:27 - 00001094 _____ () C:\Documents and Settings\All Users.WINDOWS\Desktop\Adobe AppManager.lnk
2014-05-27 18:58 - 2014-05-27 18:59 - 04509165 _____ () C:\WINDOWS\system32\MVKMC
2014-05-27 17:46 - 2014-05-27 17:45 - 00450626 ____R () C:\WINDOWS\system32\Drivers\etc\hosts.20140527-174633.backup
2014-05-27 17:45 - 2014-05-25 18:51 - 00450626 ____R () C:\WINDOWS\system32\Drivers\etc\hosts.20140527-174553.backup
2014-05-26 18:07 - 2014-06-02 18:52 - 00000346 _____ () C:\WINDOWS\Tasks\AdobeAAMUpdater-1.0-SPASINI-S-PLACE-SergioPasini.job
2014-05-26 17:51 - 2014-05-26 17:51 - 00000864 _____ () C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Adobe Dreamweaver CS6.lnk
2014-05-26 17:49 - 2014-05-26 17:49 - 00001156 _____ () C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Adobe ExtendScript Toolkit CS6.lnk
2014-05-26 17:49 - 2014-05-26 17:49 - 00001008 _____ () C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Adobe Extension Manager CS6.lnk
2014-05-26 17:39 - 2014-06-12 19:15 - 00000000 ____D () C:\programmi\Adobe
2014-05-26 17:34 - 2014-06-02 02:00 - 00000000 ____D () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\Dati applicazioni\Adobe
2014-05-26 17:34 - 2014-05-26 18:14 - 00000000 ____D () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\Adobe
2014-05-26 17:34 - 2014-05-26 17:59 - 00000000 ____D () C:\programmi\file comuni\Adobe
2014-05-26 17:32 - 2014-05-26 17:33 - 00000000 ____D () C:\programmi\Adobe Dreamweaver CS6
2014-05-25 18:51 - 2014-05-23 18:54 - 00000741 ____R () C:\WINDOWS\system32\Drivers\etc\hosts.20140525-185150.backup
2014-05-25 17:23 - 2014-06-13 09:14 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-05-25 17:22 - 2014-06-13 09:12 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2014-05-25 17:22 - 2014-06-13 02:33 - 00000000 _____ () C:\WINDOWS\Sti_Trace.log
2014-05-25 17:04 - 2014-06-13 09:15 - 01430039 _____ () C:\WINDOWS\WindowsUpdate.log
2014-05-25 12:47 - 2014-05-25 12:47 - 00001777 _____ () C:\Documents and Settings\All Users.WINDOWS\Desktop\Google Chrome.lnk
2014-05-25 12:47 - 2014-05-25 12:47 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Google Chrome
2014-05-24 21:14 - 2014-05-24 21:14 - 00000000 ____D () C:\Documents and Settings\NetworkService.NT AUTHORITY.005\Menu Avvio\Programmi
2014-05-24 21:14 - 2014-05-24 21:14 - 00000000 ____D () C:\Documents and Settings\NetworkService.NT AUTHORITY.005\Menu Avvio
2014-05-24 02:42 - 2014-05-24 02:42 - 00006434 _____ () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\Temp20.html
2014-05-23 22:15 - 2014-05-23 22:19 - 00000000 ____D () C:\170787f18cf2ea828ff7b7dde070376f
2014-05-23 21:05 - 2014-05-23 21:17 - 00000000 ____D () C:\3ba941fa4d2a0ab9782e6fae
2014-05-23 01:18 - 2014-05-23 01:18 - 00000000 ____D () C:\programmi\Microsoft.NET
2014-05-23 01:13 - 2006-06-29 13:07 - 00014048 ____N (Microsoft Corporation) C:\WINDOWS\system32\spmsg2.dll
2014-05-22 21:44 - 2014-05-22 21:44 - 00000732 _____ () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Desktop\Start Tor Browser.lnk
2014-05-22 14:24 - 2014-05-22 14:24 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Sophos
2014-05-22 14:21 - 2014-05-23 16:32 - 00002601 _____ () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Desktop\Sophos Virus Removal Tool.lnk
2014-05-22 14:21 - 2014-05-22 14:21 - 00000000 ____D () C:\programmi\Sophos
2014-05-22 14:21 - 2014-05-22 14:21 - 00000000 ____D () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Menu Avvio\Programmi\Sophos
2014-05-20 12:55 - 2014-05-20 12:55 - 00000858 _____ () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Desktop\Dream weaver.lnk
2014-05-20 12:43 - 2014-05-20 12:43 - 00000712 _____ () C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Adobe Help.lnk
2014-05-20 12:42 - 2014-06-12 19:15 - 00000000 ____D () C:\programmi\file comuni\Adobe AIR
2014-05-20 12:42 - 2014-05-20 12:42 - 00000832 _____ () C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Adobe Widget Browser.lnk
2014-05-20 12:42 - 2014-05-20 12:42 - 00000000 ____D () C:\Documents and Settings\Default User.WINDOWS\Dati applicazioni\Macromedia
2014-05-20 12:26 - 2014-05-26 18:00 - 00001714 _____ () C:\Documents and Settings\All Users.WINDOWS\Desktop\Adobe Reader XI.lnk
2014-05-19 18:58 - 2009-04-20 01:56 - 00060416 _____ (NirSoft) C:\WINDOWS\NIRCMD.exe
2014-05-19 18:46 - 2014-06-10 10:45 - 00000194 _____ () C:\Boot.bak
2014-05-19 13:47 - 2014-05-19 13:56 - 00065536 _____ () C:\WINDOWS\system32\config\WindowsPowerShell.evt
2014-05-19 13:46 - 2014-05-19 13:56 - 00065536 _____ () C:\WINDOWS\system32\config\EventForwarding-Operational.Evt
2014-05-19 12:45 - 2014-05-19 12:45 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\regid.1986-12.com.adobe
2014-05-18 19:10 - 2014-06-10 20:49 - 00000472 _____ () C:\WINDOWS\wininit.ini
2014-05-18 18:58 - 2014-05-14 00:29 - 00450647 ____R () C:\WINDOWS\system32\Drivers\etc\hosts.20140518-185816.backup
2014-05-17 20:33 - 2014-05-30 20:22 - 00005632 _____ () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\Dati applicazioni\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-05-17 19:31 - 2014-06-12 16:59 - 00000934 _____ () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Menu Avvio\BitTorrent.lnk
2014-05-17 19:31 - 2014-06-12 16:59 - 00000934 _____ () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Desktop\BitTorrent.lnk
2014-05-17 19:31 - 2014-05-17 19:31 - 01639760 _____ (BitTorrent Inc.) C:\programmi\BitTorrent.exe
2014-05-17 19:29 - 2014-06-13 02:33 - 00000000 ____D () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\BitTorrent
2014-05-16 13:07 - 2014-06-13 01:41 - 00000978 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-05-16 13:07 - 2014-06-12 02:32 - 00699056 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-05-16 13:07 - 2014-06-12 02:32 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-05-16 13:07 - 2014-05-16 13:07 - 00000000 ____D () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\Macromedia
2014-05-16 01:34 - 2014-05-16 01:34 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Informer Technologies, Inc
2014-05-16 01:13 - 2014-05-16 01:13 - 00000702 _____ () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Desktop\PFConfig.lnk
2014-05-15 20:12 - 2014-05-15 20:12 - 00000000 ____D () C:\WINDOWS\pss
2014-05-14 19:31 - 2014-05-14 19:31 - 00000000 __SHD () C:\Documents and Settings\LocalService.NT AUTHORITY.005\IETldCache
2014-05-14 18:44 - 2014-05-14 18:44 - 06609920 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\NETwLx32.sys
2014-05-14 18:44 - 2014-05-14 18:44 - 02756608 _____ (Intel Corporation) C:\WINDOWS\system32\NETwLr32.dll
2014-05-14 18:44 - 2014-05-14 18:44 - 00675840 _____ (Intel Corporation) C:\WINDOWS\system32\NETwLc32.dll
2014-05-14 14:16 - 2014-05-14 14:16 - 00739872 _____ (O2Micro) C:\WINDOWS\system32\O2Icon.dll
2014-05-14 14:09 - 2001-08-17 21:57 - 00016128 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\modemcsa.sys
2014-05-14 14:09 - 2001-08-17 21:57 - 00016128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MODEMCSA.sys
2014-05-14 14:08 - 2014-05-14 14:08 - 00000000 ____D () C:\programmi\Motorola
2014-05-14 14:07 - 2014-05-14 14:07 - 00516096 _____ (Motorola Inc.) C:\WINDOWS\system32\sm56co85.dll
2014-05-14 14:01 - 2014-05-14 14:01 - 01691480 _____ (Creative) C:\WINDOWS\system32\Drivers\Ambfilt.sys
2014-05-14 14:01 - 2014-05-14 14:01 - 01395800 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\Drivers\Monfilt.sys
2014-05-14 14:01 - 2014-05-14 14:01 - 00359016 _____ (Realtek Semiconductor Crop.) C:\WINDOWS\vncutil.exe
2014-05-14 14:01 - 2014-05-14 14:01 - 00129640 _____ (Realtek Semiconductor) C:\WINDOWS\RtkAudioService.exe
2014-05-14 14:01 - 2014-05-14 14:01 - 00086232 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoInstIIXP.dll
2014-05-14 14:01 - 2014-05-14 14:01 - 00026084 _____ () C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2014-05-14 14:01 - 2014-05-14 14:01 - 00011368 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDRXP.dll
2014-05-14 13:33 - 2014-05-14 13:33 - 00073728 _____ () C:\WINDOWS\system32\RtNicProp32.dll
2014-05-14 00:29 - 2014-05-14 00:29 - 00000000 ____D () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Documenti\ProcAlyzer Dumps
2014-05-14 00:29 - 2014-05-10 21:23 - 00450577 ____R () C:\WINDOWS\system32\Drivers\etc\hosts.20140514-002917.backup

==================== One Month Modified Files and Folders =======

2014-06-13 09:28 - 2014-05-08 21:20 - 00000000 ____D () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\Temp
2014-06-13 09:27 - 2014-06-13 09:25 - 00000000 ____D () C:\FRST
2014-06-13 09:16 - 2014-05-09 00:51 - 00000000 ____D () C:\programmi\Core Temp
2014-06-13 09:15 - 2014-05-29 20:34 - 00110296 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-06-13 09:15 - 2014-05-25 17:04 - 01430039 _____ () C:\WINDOWS\WindowsUpdate.log
2014-06-13 09:15 - 2014-05-08 21:35 - 00000368 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job
2014-06-13 09:15 - 2014-04-27 02:10 - 00000000 ____D () C:\WINDOWS\Registration
2014-06-13 09:14 - 2014-05-25 17:23 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-06-13 09:14 - 2014-05-09 00:59 - 00000290 _____ () C:\WINDOWS\Tasks\NUAutoUpdate.job
2014-06-13 09:14 - 2014-05-09 00:57 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\TEMP
2014-06-13 09:14 - 2014-05-08 23:24 - 00000636 _____ () C:\WINDOWS\Tasks\Check for updates (Spybot - Search & Destroy).job
2014-06-13 09:13 - 2014-05-08 23:42 - 00001138 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-13 09:13 - 2014-05-01 13:05 - 00000000 ____D () C:\Temp
2014-06-13 09:13 - 2008-04-14 09:00 - 00013072 _____ () C:\WINDOWS\system32\wpa.dbl
2014-06-13 09:12 - 2014-06-13 09:12 - 00094272 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-06-13 09:12 - 2014-05-25 17:22 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2014-06-13 09:12 - 2014-05-08 21:18 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-06-13 02:34 - 2014-06-11 16:48 - 00032606 _____ () C:\WINDOWS\SchedLgU.Txt
2014-06-13 02:34 - 2014-06-11 16:20 - 00064200 _____ () C:\Documents and Settings\LocalService.NT AUTHORITY.005\Impostazioni locali\Dati applicazioni\FontCache3.0.0.0.dat
2014-06-13 02:34 - 2014-05-08 23:24 - 00524288 _____ () C:\WINDOWS\system32\config\SpybotSD.evt
2014-06-13 02:34 - 2014-05-08 21:20 - 00000194 ___SH () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\ntuser.ini
2014-06-13 02:34 - 2014-05-08 21:18 - 00000000 ___HD () C:\Documents and Settings\LocalService.NT AUTHORITY.005\Impostazioni locali\Dati applicazioni
2014-06-13 02:33 - 2014-05-25 17:22 - 00000000 _____ () C:\WINDOWS\Sti_Trace.log
2014-06-13 02:33 - 2014-05-17 19:29 - 00000000 ____D () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\BitTorrent
2014-06-13 02:33 - 2014-05-09 00:39 - 00000000 ____D () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\uTorrent
2014-06-13 02:33 - 2014-05-08 21:20 - 00000000 ____D () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE
2014-06-13 02:26 - 2014-05-08 21:20 - 00000000 ___RD () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Documenti
2014-06-13 02:25 - 2014-06-13 02:26 - 00001864 _____ () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Documenti\JRT.txt
2014-06-13 01:53 - 2014-05-08 23:42 - 00001142 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-13 01:48 - 2014-05-08 21:20 - 00000000 __RHD () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni
2014-06-13 01:48 - 2014-05-08 18:55 - 00000000 ____D () C:\programmi
2014-06-13 01:41 - 2014-05-16 13:07 - 00000978 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-06-13 01:34 - 2014-06-13 01:34 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-06-13 01:31 - 2014-06-13 01:13 - 00000000 ____D () C:\AdwCleaner
2014-06-13 01:17 - 2014-05-10 01:17 - 00000460 _____ () C:\WINDOWS\Tasks\Motorola Device Manager Engine.job
2014-06-13 00:59 - 2013-05-16 11:23 - 00000000 ____D () C:\Documents and Settings\Documenti\Documenti\movies
2014-06-13 00:53 - 2014-05-08 21:20 - 00000000 __SHD () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\Cronologia
2014-06-12 22:00 - 2014-05-09 00:48 - 00000000 ____D () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\Free Download Manager
2014-06-12 21:59 - 2014-05-08 21:20 - 00000000 ___HD () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\Dati applicazioni
2014-06-12 20:03 - 2014-06-12 19:59 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\TopApp soft
2014-06-12 20:03 - 2014-06-01 02:46 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\InstallMate
2014-06-12 19:59 - 2014-05-08 17:56 - 00000000 __RHD () C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni
2014-06-12 19:15 - 2014-05-26 17:39 - 00000000 ____D () C:\programmi\Adobe
2014-06-12 19:15 - 2014-05-20 12:42 - 00000000 ____D () C:\programmi\file comuni\Adobe AIR
2014-06-12 19:03 - 2014-06-01 10:37 - 00001876 _____ () C:\Documents and Settings\All Users.WINDOWS\Desktop\CommView for WiFi.lnk
2014-06-12 17:03 - 2014-05-09 00:40 - 00000910 _____ () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Menu Avvio\µTorrent.lnk
2014-06-12 17:03 - 2014-05-09 00:40 - 00000910 _____ () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Desktop\µTorrent.lnk
2014-06-12 16:59 - 2014-05-17 19:31 - 00000934 _____ () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Menu Avvio\BitTorrent.lnk
2014-06-12 16:59 - 2014-05-17 19:31 - 00000934 _____ () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Desktop\BitTorrent.lnk
2014-06-12 02:32 - 2014-05-16 13:07 - 00699056 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-06-12 02:32 - 2014-05-16 13:07 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-06-11 21:00 - 2014-06-11 21:00 - 00012288 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\EtmTempSense.sys
2014-06-11 21:00 - 2014-04-27 02:24 - 00000000 ____D () C:\WINDOWS\system32\ReinstallBackups
2014-06-11 20:58 - 2014-04-27 02:11 - 00000000 ____D () C:\WINDOWS\system32\Restore
2014-06-11 11:02 - 2014-06-11 10:44 - 00000000 ___SD () C:\ComboFix
2014-06-11 11:00 - 2014-06-11 10:59 - 00000000 _RSHD () C:\cmdcons
2014-06-11 11:00 - 2014-06-10 10:45 - 00000311 __RSH () C:\boot.ini
2014-06-11 02:06 - 2014-05-09 00:26 - 00000000 ____D () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\vlc
2014-06-11 00:30 - 2014-05-08 23:24 - 00000608 _____ () C:\WINDOWS\Tasks\Refresh immunization (Spybot - Search & Destroy).job
2014-06-10 20:49 - 2014-05-18 19:10 - 00000472 _____ () C:\WINDOWS\wininit.ini
2014-06-10 19:37 - 2014-04-27 11:17 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-06-10 19:30 - 2014-05-09 02:20 - 92708840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-06-10 17:05 - 2014-04-26 22:46 - 00000000 ____D () C:\WINDOWS\system32\ias
2014-06-10 16:50 - 2014-05-11 13:21 - 00000000 ____D () C:\programmi\SUPERAntiSpyware
2014-06-10 13:11 - 2014-05-09 19:00 - 06733824 _____ () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\s-1-5-21-57989841-796845957-1644491937-1003.rrr
2014-06-10 13:11 - 2014-05-09 19:00 - 04886528 _____ () C:\WINDOWS\system32\config\default.rrr
2014-06-10 13:11 - 2014-05-09 19:00 - 00245760 _____ () C:\Documents and Settings\NetworkService.NT AUTHORITY.005\s-1-5-20.rrr
2014-06-10 13:11 - 2014-05-09 19:00 - 00245760 _____ () C:\Documents and Settings\LocalService.NT AUTHORITY.005\s-1-5-19.rrr
2014-06-10 13:11 - 2014-05-09 18:59 - 26771456 _____ () C:\WINDOWS\system32\config\software.rrr
2014-06-10 13:11 - 2014-05-08 21:18 - 00000000 __SHD () C:\Documents and Settings\LocalService.NT AUTHORITY.005
2014-06-10 13:11 - 2014-05-08 21:17 - 00000000 __SHD () C:\Documents and Settings\NetworkService.NT AUTHORITY.005
2014-06-10 10:45 - 2014-06-10 10:45 - 00297072 _____ () C:\ntldr
2014-06-10 10:45 - 2014-06-10 10:45 - 00047772 _____ () C:\ntdetect.com
2014-06-10 10:45 - 2014-05-19 18:46 - 00000194 _____ () C:\Boot.bak
2014-06-10 10:45 - 2014-05-12 22:06 - 00053770 _____ () C:\g2ldr
2014-06-10 10:45 - 2014-05-07 18:21 - 00555616 __RSH () C:\$UGM
2014-06-10 02:51 - 2014-05-08 21:17 - 00000194 ___SH () C:\Documents and Settings\NetworkService.NT AUTHORITY.005\ntuser.ini
2014-06-09 19:12 - 2014-06-11 00:35 - 00000741 ____R () C:\WINDOWS\system32\Drivers\etc\hosts.20140611-003535.backup
2014-06-09 01:41 - 2014-05-08 21:10 - 00000000 __SHD () C:\Documents and Settings\All Users.WINDOWS\DRM
2014-06-09 01:21 - 2014-06-09 01:21 - 00000000 ____D () C:\programmi\Xvid
2014-06-09 01:21 - 2014-06-09 01:21 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Xvid
2014-06-09 01:21 - 2014-05-08 17:56 - 00000000 ___RD () C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi
2014-06-09 01:17 - 2014-05-10 01:17 - 00000476 _____ () C:\WINDOWS\Tasks\Motorola Device Manager Update.job
2014-06-08 21:14 - 2014-06-08 20:31 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Malwarebytes' Anti-Malware (portable)
2014-06-07 13:47 - 2014-05-08 21:20 - 00000000 ___RD () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Documenti\Immagini
2014-06-05 18:37 - 2014-05-08 21:20 - 00000000 ___RD () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Menu Avvio\Programmi
2014-06-05 18:26 - 2014-06-05 17:54 - 00013816 _____ () C:\WINDOWS\system32\unikey.sys
2014-06-05 00:53 - 2014-06-05 00:53 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Lavasoft
2014-06-03 19:38 - 2014-06-10 10:41 - 27000832 _____ () C:\WINDOWS\system32\config\SOFTWARE.TPBAK
2014-06-03 19:38 - 2014-06-10 10:41 - 04980736 _____ () C:\WINDOWS\system32\config\SYSTEM.TPBAK
2014-06-03 19:38 - 2014-06-10 10:41 - 00262144 _____ () C:\WINDOWS\system32\config\SECURITY.TPBAK
2014-06-03 19:38 - 2014-06-10 10:41 - 00262144 _____ () C:\WINDOWS\system32\config\SAM.TPBAK
2014-06-02 20:40 - 2014-06-01 10:37 - 00000000 ____D () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Documenti\CommView for WiFi
2014-06-02 18:52 - 2014-05-26 18:07 - 00000346 _____ () C:\WINDOWS\Tasks\AdobeAAMUpdater-1.0-SPASINI-S-PLACE-SergioPasini.job
2014-06-02 17:45 - 2014-05-08 17:57 - 01221230 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-06-02 17:45 - 2008-04-14 09:00 - 00549102 _____ () C:\WINDOWS\system32\perfh010.dat
2014-06-02 17:45 - 2008-04-14 09:00 - 00101042 _____ () C:\WINDOWS\system32\perfc010.dat
2014-06-02 02:00 - 2014-05-26 17:34 - 00000000 ____D () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\Dati applicazioni\Adobe
2014-06-02 01:21 - 2014-05-05 20:48 - 00000000 ____D () C:\WINDOWS\setup.pss
2014-06-01 10:37 - 2014-06-01 10:37 - 00001058 _____ () C:\Documents and Settings\All Users.WINDOWS\Desktop\WEP Key Recovery.lnk
2014-06-01 10:37 - 2014-06-01 10:37 - 00000000 ____D () C:\programmi\FiSTiNG4FUN
2014-06-01 10:37 - 2014-06-01 10:37 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\CommView for WiFi
2014-06-01 02:56 - 2014-06-01 02:56 - 00000000 ____D () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\Boredom Software
2014-06-01 02:49 - 2014-06-01 02:49 - 00000000 ____D () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\Dati applicazioni\Torch
2014-06-01 02:49 - 2014-06-01 02:49 - 00000000 ____D () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\Dati applicazioni\Comodo
2014-06-01 02:49 - 2014-06-01 02:49 - 00000000 ____D () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\Dati applicazioni\Chromatic Browser
2014-06-01 02:49 - 2014-06-01 02:49 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\f3d8f0d1a680598
2014-06-01 02:49 - 2014-05-08 21:34 - 00000000 ____D () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\Dati applicazioni\Google
2014-06-01 02:03 - 2014-05-31 20:27 - 00000000 ____D () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\TempDIR
2014-06-01 00:31 - 2014-05-08 23:24 - 00000438 _____ () C:\WINDOWS\Tasks\Scan the system (Spybot - Search & Destroy).job
2014-05-31 20:49 - 2014-05-31 20:28 - 00000000 ____D () C:\programmi\Driver Identifier
2014-05-31 20:41 - 2014-05-31 20:28 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Driver Identifier
2014-05-31 20:27 - 2014-05-08 21:20 - 00000000 ___HD () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali
2014-05-30 20:22 - 2014-05-17 20:33 - 00005632 _____ () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\Dati applicazioni\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-05-29 21:46 - 2014-05-02 12:29 - 00000000 ____D () C:\WINDOWS\455F074C814E4520B69B5584BD90400C.TMP
2014-05-29 20:34 - 2014-05-29 20:34 - 00000765 _____ () C:\Documents and Settings\All Users.WINDOWS\Desktop\Malwarebytes Anti-Malware.lnk
2014-05-29 20:34 - 2014-05-29 20:34 - 00000000 ____D () C:\programmi\Malwarebytes Anti-Malware
2014-05-29 20:34 - 2014-05-29 20:34 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Malwarebytes Anti-Malware
2014-05-29 20:34 - 2014-05-09 01:11 - 00000000 ____D () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\Malwarebytes
2014-05-29 20:34 - 2014-05-09 01:11 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Malwarebytes
2014-05-28 16:36 - 2014-05-28 16:34 - 170728397 _____ () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\Dati applicazioni\ACCCx2_6_0_393.zip.aamdownload
2014-05-28 16:36 - 2014-05-28 16:34 - 00001984 _____ () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\Dati applicazioni\ACCCx2_6_0_393.zip.aamdownload.aamd
2014-05-28 16:27 - 2014-05-28 16:27 - 00001100 _____ () C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Adobe Application Manager.lnk
2014-05-28 16:27 - 2014-05-28 16:27 - 00001094 _____ () C:\Documents and Settings\All Users.WINDOWS\Desktop\Adobe AppManager.lnk
2014-05-27 18:59 - 2014-05-27 18:58 - 04509165 _____ () C:\WINDOWS\system32\MVKMC
2014-05-27 17:45 - 2014-05-27 17:46 - 00450626 ____R () C:\WINDOWS\system32\Drivers\etc\hosts.20140527-174633.backup
2014-05-26 19:11 - 2014-05-02 13:59 - 00000000 ____D () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Documenti\Documenti -
2014-05-26 18:14 - 2014-05-26 17:34 - 00000000 ____D () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\Adobe
2014-05-26 18:00 - 2014-05-20 12:26 - 00001714 _____ () C:\Documents and Settings\All Users.WINDOWS\Desktop\Adobe Reader XI.lnk
2014-05-26 18:00 - 2014-05-10 20:27 - 00002299 _____ () C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Adobe Reader XI.lnk
2014-05-26 17:59 - 2014-05-26 17:34 - 00000000 ____D () C:\programmi\file comuni\Adobe
2014-05-26 17:58 - 2014-05-09 02:17 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Adobe
2014-05-26 17:51 - 2014-05-26 17:51 - 00000864 _____ () C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Adobe Dreamweaver CS6.lnk
2014-05-26 17:49 - 2014-05-26 17:49 - 00001156 _____ () C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Adobe ExtendScript Toolkit CS6.lnk
2014-05-26 17:49 - 2014-05-26 17:49 - 00001008 _____ () C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Adobe Extension Manager CS6.lnk
2014-05-26 17:34 - 2014-05-08 18:55 - 00000000 ____D () C:\programmi\file comuni
2014-05-26 17:33 - 2014-05-26 17:32 - 00000000 ____D () C:\programmi\Adobe Dreamweaver CS6
2014-05-25 21:27 - 2014-05-03 20:04 - 00000000 ____D () C:\WINDOWS\system32\appmgmt
2014-05-25 19:44 - 2014-05-09 00:37 - 00000654 _____ () C:\Documents and Settings\All Users.WINDOWS\Desktop\CCleaner.lnk
2014-05-25 19:44 - 2014-05-09 00:37 - 00000000 ____D () C:\programmi\CCleaner
2014-05-25 18:51 - 2014-05-27 17:45 - 00450626 ____R () C:\WINDOWS\system32\Drivers\etc\hosts.20140527-174553.backup
2014-05-25 12:47 - 2014-05-25 12:47 - 00001777 _____ () C:\Documents and Settings\All Users.WINDOWS\Desktop\Google Chrome.lnk
2014-05-25 12:47 - 2014-05-25 12:47 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Google Chrome
2014-05-25 12:46 - 2014-05-08 21:34 - 00000000 ____D () C:\programmi\Google
2014-05-24 21:14 - 2014-05-24 21:14 - 00000000 ____D () C:\Documents and Settings\NetworkService.NT AUTHORITY.005\Menu Avvio\Programmi
2014-05-24 21:14 - 2014-05-24 21:14 - 00000000 ____D () C:\Documents and Settings\NetworkService.NT AUTHORITY.005\Menu Avvio
2014-05-24 21:14 - 2014-05-08 23:24 - 00000000 ____D () C:\programmi\Spybot - Search & Destroy 2
2014-05-24 13:05 - 2014-04-30 13:29 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
2014-05-24 02:42 - 2014-05-24 02:42 - 00006434 _____ () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\Temp20.html
2014-05-24 02:41 - 2014-05-09 01:36 - 00001293 _____ () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\Temp1.html
2014-05-23 22:19 - 2014-05-23 22:15 - 00000000 ____D () C:\170787f18cf2ea828ff7b7dde070376f
2014-05-23 21:19 - 2014-05-03 20:14 - 00000000 ____D () C:\WINDOWS\IIS Temporary Compressed Files
2014-05-23 21:17 - 2014-05-23 21:05 - 00000000 ____D () C:\3ba941fa4d2a0ab9782e6fae
2014-05-23 18:54 - 2014-05-25 18:51 - 00000741 ____R () C:\WINDOWS\system32\Drivers\etc\hosts.20140525-185150.backup
2014-05-23 16:32 - 2014-05-22 14:21 - 00002601 _____ () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Desktop\Sophos Virus Removal Tool.lnk
2014-05-23 01:26 - 2014-04-26 22:46 - 00000000 ____D () C:\WINDOWS\system32\it-it
2014-05-23 01:18 - 2014-05-23 01:18 - 00000000 ____D () C:\programmi\Microsoft.NET
2014-05-22 21:44 - 2014-05-22 21:44 - 00000732 _____ () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Desktop\Start Tor Browser.lnk
2014-05-22 20:17 - 2014-04-26 22:46 - 00000000 ____D () C:\WINDOWS\security
2014-05-22 14:24 - 2014-05-22 14:24 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Sophos
2014-05-22 14:21 - 2014-05-22 14:21 - 00000000 ____D () C:\programmi\Sophos
2014-05-22 14:21 - 2014-05-22 14:21 - 00000000 ____D () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Menu Avvio\Programmi\Sophos
2014-05-20 21:49 - 2014-05-08 21:20 - 00000000 ___RD () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Preferiti
2014-05-20 12:55 - 2014-05-20 12:55 - 00000858 _____ () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Desktop\Dream weaver.lnk
2014-05-20 12:43 - 2014-05-20 12:43 - 00000712 _____ () C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Adobe Help.lnk
2014-05-20 12:42 - 2014-05-20 12:42 - 00000832 _____ () C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Adobe Widget Browser.lnk
2014-05-20 12:42 - 2014-05-20 12:42 - 00000000 ____D () C:\Documents and Settings\Default User.WINDOWS\Dati applicazioni\Macromedia
2014-05-20 12:42 - 2014-05-08 17:56 - 00000000 __RHD () C:\Documents and Settings\Default User.WINDOWS\Dati applicazioni
2014-05-19 20:04 - 2014-05-09 09:51 - 00000000 ____D () C:\programmi\Recuva
2014-05-19 17:01 - 2014-05-08 17:56 - 00000000 ___RD () C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Esecuzione automatica
2014-05-19 13:56 - 2014-05-19 13:47 - 00065536 _____ () C:\WINDOWS\system32\config\WindowsPowerShell.evt
2014-05-19 13:56 - 2014-05-19 13:46 - 00065536 _____ () C:\WINDOWS\system32\config\EventForwarding-Operational.Evt
2014-05-19 13:47 - 2014-05-08 21:04 - 00000000 ___RD () C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Accessori
2014-05-19 13:46 - 2014-04-30 18:12 - 00000000 __HDC () C:\WINDOWS\$968930Uinstall_KB968930$
2014-05-19 13:46 - 2014-04-26 22:46 - 00000000 ____D () C:\WINDOWS\Help
2014-05-19 12:45 - 2014-05-19 12:45 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\regid.1986-12.com.adobe
2014-05-18 19:10 - 2014-05-08 23:24 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Spybot - Search & Destroy
2014-05-17 19:31 - 2014-05-17 19:31 - 01639760 _____ (BitTorrent Inc.) C:\programmi\BitTorrent.exe
2014-05-17 19:31 - 2014-05-08 21:20 - 00000000 ___RD () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Menu Avvio
2014-05-16 13:07 - 2014-05-16 13:07 - 00000000 ____D () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\Macromedia
2014-05-16 12:47 - 2014-04-28 21:29 - 00000000 ____D () C:\WINDOWS\system32\NtmsData
2014-05-16 01:51 - 2014-05-08 23:36 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Skype
2014-05-16 01:41 - 2014-05-09 00:48 - 00000714 _____ () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Desktop\Free Download Manager.lnk
2014-05-16 01:41 - 2014-05-09 00:48 - 00000000 ____D () C:\programmi\Free Download Manager
2014-05-16 01:41 - 2014-05-09 00:48 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Free Download Manager
2014-05-16 01:34 - 2014-05-16 01:34 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Informer Technologies, Inc
2014-05-16 01:34 - 2014-05-08 23:41 - 00000717 _____ () C:\Documents and Settings\All Users.WINDOWS\Desktop\Software Informer.lnk
2014-05-16 01:34 - 2014-05-08 23:41 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Software Informer
2014-05-16 01:33 - 2014-05-09 09:51 - 00001476 _____ () C:\Documents and Settings\All Users.WINDOWS\Desktop\Recuva.lnk
2014-05-16 01:13 - 2014-05-16 01:13 - 00000702 _____ () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Desktop\PFConfig.lnk
2014-05-16 01:13 - 2014-05-11 21:34 - 00000000 ____D () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Menu Avvio\Programmi\Portforward.com
2014-05-15 21:35 - 2014-05-08 21:33 - 00777488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2014-05-15 21:35 - 2014-05-08 21:33 - 00411680 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2014-05-15 21:35 - 2014-05-08 21:33 - 00054832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswrdr.sys
2014-05-15 21:21 - 2014-05-08 21:20 - 00000000 ___HD () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Risorse di rete
2014-05-15 20:15 - 2014-05-09 08:31 - 00000236 _____ () C:\WINDOWS\Tasks\Notifica di interruzione del servizio per Microsoft Windows XP - Accesso.job
2014-05-15 20:15 - 2014-05-09 08:31 - 00000230 _____ () C:\WINDOWS\Tasks\Notifica di interruzione del servizio per Microsoft Windows XP - Mensile.job
2014-05-15 20:12 - 2014-05-15 20:12 - 00000000 ____D () C:\WINDOWS\pss
2014-05-15 19:49 - 2014-05-08 23:37 - 00000000 ____D () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\Skype
2014-05-15 00:27 - 2014-05-09 00:03 - 00000000 ____D () C:\programmi\Mozilla Firefox
2014-05-14 19:31 - 2014-05-14 19:31 - 00000000 __SHD () C:\Documents and Settings\LocalService.NT AUTHORITY.005\IETldCache
2014-05-14 18:44 - 2014-05-14 18:44 - 06609920 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\NETwLx32.sys
2014-05-14 18:44 - 2014-05-14 18:44 - 02756608 _____ (Intel Corporation) C:\WINDOWS\system32\NETwLr32.dll
2014-05-14 18:44 - 2014-05-14 18:44 - 00675840 _____ (Intel Corporation) C:\WINDOWS\system32\NETwLc32.dll
2014-05-14 14:16 - 2014-05-14 14:16 - 00739872 _____ (O2Micro) C:\WINDOWS\system32\O2Icon.dll
2014-05-14 14:16 - 2005-12-18 14:15 - 00042144 _____ (O2Micro ) C:\WINDOWS\system32\Drivers\o2sd.sys
2014-05-14 14:08 - 2014-05-14 14:08 - 00000000 ____D () C:\programmi\Motorola
2014-05-14 14:07 - 2014-05-14 14:07 - 00516096 _____ (Motorola Inc.) C:\WINDOWS\system32\sm56co85.dll
2014-05-14 14:07 - 2014-05-09 02:14 - 01095936 _____ (Motorola Inc.) C:\WINDOWS\system32\Drivers\smserial.sys
2014-05-14 14:02 - 2014-04-27 02:26 - 00000000 ____D () C:\WINDOWS\system32\RTCOM
2014-05-14 14:01 - 2014-05-14 14:01 - 01691480 _____ (Creative) C:\WINDOWS\system32\Drivers\Ambfilt.sys
2014-05-14 14:01 - 2014-05-14 14:01 - 01395800 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\Drivers\Monfilt.sys
2014-05-14 14:01 - 2014-05-14 14:01 - 00359016 _____ (Realtek Semiconductor Crop.) C:\WINDOWS\vncutil.exe
2014-05-14 14:01 - 2014-05-14 14:01 - 00129640 _____ (Realtek Semiconductor) C:\WINDOWS\RtkAudioService.exe
2014-05-14 14:01 - 2014-05-14 14:01 - 00086232 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoInstIIXP.dll
2014-05-14 14:01 - 2014-05-14 14:01 - 00026084 _____ () C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2014-05-14 14:01 - 2014-05-14 14:01 - 00011368 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDRXP.dll
2014-05-14 14:01 - 2014-05-09 02:05 - 09721960 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RTLCPL.EXE
2014-05-14 14:01 - 2014-05-09 02:05 - 05582552 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RtkHDAud.sys
2014-05-14 14:01 - 2014-05-09 02:05 - 01523416 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtlUpd.exe
2014-05-14 14:01 - 2014-05-09 02:05 - 00891976 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSndMgr.CPL
2014-05-14 14:01 - 2014-05-09 02:05 - 00084584 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SOUNDMAN.EXE
2014-05-14 14:01 - 2014-05-09 02:04 - 20145368 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
2014-05-14 14:01 - 2014-05-09 02:04 - 02815592 _____ (RealTek Semicoductor Corp.) C:\WINDOWS\ALCWZRD.EXE
2014-05-14 14:01 - 2014-05-09 02:04 - 02180712 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\MicCal.exe
2014-05-14 14:01 - 2014-05-09 02:04 - 00285288 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\ALSNDMGR.CPL
2014-05-14 14:01 - 2014-05-09 02:04 - 00064104 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\ALCMTR.EXE
2014-05-14 13:33 - 2014-05-14 13:33 - 00073728 _____ () C:\WINDOWS\system32\RtNicProp32.dll
2014-05-14 13:33 - 2014-05-09 02:07 - 00130432 _____ (Realtek Semiconductor Corporation ) C:\WINDOWS\system32\Drivers\Rtnicxp.sys
2014-05-14 12:58 - 2014-05-09 19:08 - 00012160 _____ (MBB Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ew_usbenumfilter.sys
2014-05-14 00:29 - 2014-05-18 18:58 - 00450647 ____R () C:\WINDOWS\system32\Drivers\etc\hosts.20140518-185816.backup
2014-05-14 00:29 - 2014-05-14 00:29 - 00000000 ____D () C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Documenti\ProcAlyzer Dumps

Some content of TEMP:
====================
C:\Documents and Settings\NetworkService\Impostazioni locali\Temp\mpam-a8270c82.exe
C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\Temp\Quarantine.exe

==================== Bamital & volsnap Check =================

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End Of Log ============================

SPasini · Jun 13, 2014

Users shortcut scan result (x86) Version:12-06-2014
Ran by SergioPasini at 2014-06-13 09:32:46
Running from C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Documenti\Downloads
Boot Mode: Normal
==================== Shortcuts =============================

Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Program Updates.lnk -> C:\programmi\file comuni\InstallShield\UpdateService\ISUSPM.exe (InstallShield Software Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Windows Update.lnk -> C:\WINDOWS\system32\wupdmgr.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programs\SUPERAntiSpyware\BootSafe.lnk -> C:\programmi\SUPERAntiSpyware\BootSafe.exe (SUPERAdBlocker.com)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programs\SUPERAntiSpyware\SUPERAntiSpyware Alternate Start.lnk -> C:\programmi\SUPERAntiSpyware\RUNSAS.EXE (SUPERAdBlocker.com and SUPERAntiSpyware.com)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programs\SUPERAntiSpyware\SUPERAntiSpyware Free Edition.lnk -> C:\programmi\SUPERAntiSpyware\SUPERANTISPYWARE.EXE (SUPERAntiSpyware)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programs\SUPERAntiSpyware\SUPERAntiSpyware Help.lnk -> C:\programmi\SUPERAntiSpyware\SUPERAntiSpyware.chm ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Adobe Dreamweaver CS6.lnk -> C:\programmi\Adobe\Adobe Dreamweaver CS6\Dreamweaver.exe (Adobe Systems, Inc.)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Adobe ExtendScript Toolkit CS6.lnk -> C:\programmi\Adobe\Adobe Utilities - CS6\ExtendScript Toolkit CS6\ExtendScript Toolkit.exe (Adobe Systems Incorporated)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Adobe Extension Manager CS6.lnk -> C:\programmi\Adobe\Adobe Extension Manager CS6\Adobe Extension Manager CS6.exe (Adobe Systems Incorporated)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Adobe Help.lnk -> C:\programmi\Adobe\Adobe Help\Adobe Help.exe ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Adobe Reader XI.lnk -> C:\WINDOWS\Installer\{AC76BA86-7AD7-1033-7B44-AB0000000001}\SC_Reader.ico ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Adobe Widget Browser.lnk -> C:\programmi\Adobe\Adobe Widget Browser\Adobe Widget Browser.exe ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Mozilla Firefox.lnk -> C:\programmi\Mozilla Firefox\firefox.exe (Mozilla Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Spybot-S&D Start Center.lnk -> C:\programmi\Spybot - Search & Destroy 2\SDWelcome.exe (Safer-Networking Ltd.)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Windows Messenger.lnk -> C:\programmi\Messenger\msmsgs.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Windows Movie Maker.lnk -> C:\programmi\movie maker\moviemk.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Xvid\Check for Updates.lnk -> C:\programmi\Xvid\autoupdate-windows.exe (Xvid Team)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Xvid\Release Notes.lnk -> C:\programmi\Xvid\releasenotes.txt ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Xvid\Uninstall Xvid Video Codec.lnk -> C:\programmi\Xvid\uninstall.exe (Xvid Team)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Xvid\Xvid MiniConvert.lnk -> C:\programmi\Xvid\MiniConvert.exe (Xvid Solutions)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Xvid\Advanced\Nic's FourCC Changer.lnk -> C:\programmi\Xvid\AviC.exe ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Xvid\Advanced\Nic's MiniCalc.lnk -> C:\programmi\Xvid\MiniCalc.exe ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Xvid\Advanced\Some Quantization Matrices.lnk -> C:\programmi\Xvid\Xvid_Quant_Matrices.zip ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Xvid\Advanced\StatsReader 2.1.lnk -> C:\programmi\Xvid\StatsReader.exe ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Xvid\Advanced\StatsReader Notes.lnk -> C:\programmi\Xvid\statsreader.txt ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\WinRAR\Console RAR manual.lnk -> C:\programmi\WinRAR\Rar.txt ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\WinRAR\What is new in the latest version.lnk -> C:\programmi\WinRAR\WhatsNew.txt ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\WinRAR\WinRAR help.lnk -> C:\programmi\WinRAR\WinRAR.chm ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\WinRAR\WinRAR.lnk -> C:\programmi\WinRAR\WinRAR.exe (Alexander Roshal)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\WhoCrashed\WhoCrashed.lnk -> C:\programmi\WhoCrashed\WhoCrashed.exe (Resplendence Software Projects)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\VideoLAN\Documentation.lnk -> C:\programmi\VideoLAN\VLC\Documentation.url ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\VideoLAN\Release Notes.lnk -> C:\programmi\VideoLAN\VLC\NEWS.txt ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\VideoLAN\VideoLAN Website.lnk -> C:\programmi\VideoLAN\VLC\VideoLAN Website.url ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\VideoLAN\VLC media player.lnk -> C:\programmi\VideoLAN\VLC\vlc.exe (VideoLAN)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Uniblue\DriverScanner\Disinstalla DriverScanner.lnk -> C:\programmi\Uniblue\DriverScanner\unins000.exe ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Uniblue\DriverScanner\DriverScanner.lnk -> C:\programmi\Uniblue\DriverScanner\driverscanner.exe (Uniblue Systems Ltd)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Strumenti di amministrazione\Configurazione di Microsoft .NET Framework 1.1.lnk -> C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorcfg.msc ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Strumenti di amministrazione\Microsoft .NET Framework 1.1 Configuration.lnk -> C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorcfg.msc ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Strumenti di amministrazione\Microsoft .NET Framework 1.1 Wizards.lnk -> C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\ConfigWizards.exe ( )
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Strumenti di amministrazione\Origine dati (ODBC).lnk -> C:\WINDOWS\system32\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Strumenti di amministrazione\Procedure guidate di Microsoft .NET Framework 1.1.lnk -> C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\ConfigWizards.exe ( )
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Strumenti di amministrazione\Servizi componenti.lnk -> C:\WINDOWS\system32\Com\comexp.msc ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Spybot - Search & Destroy 2\Create System Report.lnk -> C:\programmi\Spybot - Search & Destroy 2\SDLogReport.exe (Safer-Networking Ltd.)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Spybot - Search & Destroy 2\File Scan.lnk -> C:\programmi\Spybot - Search & Destroy 2\SDFiles.exe (Safer-Networking Ltd.)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Spybot - Search & Destroy 2\Immunization.lnk -> C:\programmi\Spybot - Search & Destroy 2\SDImmunize.exe (Safer-Networking Ltd.)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Spybot - Search & Destroy 2\Rootkit Scan.lnk -> C:\programmi\Spybot - Search & Destroy 2\SDRootAlyzer.exe (Safer-Networking Ltd.)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Spybot - Search & Destroy 2\Spybot-S&D Start Center.lnk -> C:\programmi\Spybot - Search & Destroy 2\SDWelcome.exe (Safer-Networking Ltd.)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Spybot - Search & Destroy 2\System Scan.lnk -> C:\programmi\Spybot - Search & Destroy 2\SDScan.exe (Safer-Networking Ltd.)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Spybot - Search & Destroy 2\Tray Icon (Live Protection).lnk -> C:\programmi\Spybot - Search & Destroy 2\SDTray.exe (Safer-Networking Ltd.)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Spybot - Search & Destroy 2\Uninstall Spybot-S&D.lnk -> C:\programmi\Spybot - Search & Destroy 2\unins000.exe ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Speccy\Speccy.lnk -> C:\programmi\Speccy\Speccy.exe (Piriform Ltd)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Speccy\Uninstall Speccy.lnk -> C:\programmi\Speccy\uninst.exe (Piriform Ltd)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Software Informer\Software Informer.lnk -> C:\programmi\Software Informer\softinfo.exe (No File)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Software Informer\Uninstall Software Informer.lnk -> C:\programmi\Software Informer\unins000.exe (No File)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Skype\Skype.lnk -> C:\programmi\Skype\Phone\Skype.exe (Skype Technologies S.A.)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\SanityCheck\SanityCheck.lnk -> C:\programmi\SanityCheck\sanity.exe (Resplendence Software Projects Sp.)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Recuva\Recuva.lnk -> C:\programmi\Recuva\recuva.exe (Piriform Ltd)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Recuva\Uninstall Recuva.lnk -> C:\programmi\Recuva\uninst.exe (Piriform Ltd)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\OverDrive Media Console\OverDrive Media Console.lnk -> C:\WINDOWS\Installer\{D07205E7-F6D3-4333-AFCC-782A07685B72}\_5af141bb.exe ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Norton Utilities 16\Guida alle operazioni preliminari di Norton Utilities 16.lnk -> C:\Program Files\Symantec\Norton Utilities 16\it-help.chm (No File)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Norton Utilities 16\Norton Utilities 16.lnk -> C:\Program Files\Symantec\Norton Utilities 16\nu.exe (Symantec)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Motorola Device Manager\Motorola Device Manager.lnk -> C:\WINDOWS\Installer\{894AB83D-A9AF-4E54-BFF3-A7262A0A6C13}\_EED70B3E82A514A7A6E8F1.exe ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Malwarebytes Anti-Malware\Malwarebytes Anti-Malware.lnk -> C:\programmi\Malwarebytes Anti-Malware\mbam.exe (Malwarebytes Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Malwarebytes Anti-Malware\Uninstall Malwarebytes Anti-Malware.lnk -> C:\programmi\Malwarebytes Anti-Malware\unins000.exe ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Malwarebytes Anti-Malware\Tools\Malwarebytes Anti-Malware Chameleon.lnk -> C:\programmi\Malwarebytes Anti-Malware\Chameleon\Windows\chameleon.chm ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Java\Configure Java.lnk -> C:\programmi\Java\jre7\bin\javacpl.exe (Oracle Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\iSkysoft\DRM Removal\HomePage.lnk -> C:\programmi\iSkysoft\DRM Removal\iSkysoft.url ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\iSkysoft\DRM Removal\How to use.lnk -> C:\programmi\iSkysoft\DRM Removal\Online Help.url ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\iSkysoft\DRM Removal\iSkysoft DRM Removal.lnk -> C:\programmi\iSkysoft\DRM Removal\DRMRemoval.exe (iSkysoft)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\iSkysoft\DRM Removal\Order online.lnk -> C:\programmi\iSkysoft\DRM Removal\DRMRemovalOrder.url ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\iSkysoft\DRM Removal\Uninstall iSkysoft DRM Removal.lnk -> C:\programmi\iSkysoft\DRM Removal\unins000.exe ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Google Earth\Google Earth.lnk -> C:\programmi\Google\Google Earth\client\googleearth.exe (Google)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Google Chrome\Google Chrome.lnk -> C:\programmi\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Giochi\Backgammon su Internet.lnk -> C:\programmi\msn gaming zone\windows\bckgzm.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Giochi\Dama su Internet.lnk -> C:\programmi\msn gaming zone\windows\chkrzm.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Giochi\FreeCell.lnk -> C:\WINDOWS\system32\freecell.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Giochi\Hearts su Internet.lnk -> C:\programmi\msn gaming zone\windows\hrtzzm.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Giochi\Hearts.lnk -> C:\WINDOWS\system32\mshearts.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Giochi\Othello su Internet.lnk -> C:\programmi\msn gaming zone\windows\Rvsezm.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Giochi\Pinball.lnk -> C:\programmi\windows nt\pinball\PINBALL.EXE (Cinematronics)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Giochi\Prato fiorito.lnk -> C:\WINDOWS\system32\winmine.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Giochi\Solitario.lnk -> C:\WINDOWS\system32\sol.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Giochi\Spades su Internet.lnk -> C:\programmi\msn gaming zone\windows\shvlzm.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Giochi\Spider.lnk -> C:\WINDOWS\system32\spider.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Free Download Manager\Documentation.lnk -> C:\programmi\Free Download Manager\Help\Free Download Manager.chm ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Free Download Manager\FDM remote control server.lnk -> C:\programmi\Free Download Manager\fdmwi.exe ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Free Download Manager\Free Download Manager on the Web.lnk -> C:\programmi\Free Download Manager\fdm.url ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Free Download Manager\Free Download Manager.lnk -> C:\programmi\Free Download Manager\fdm.exe (FreeDownloadManager.ORG)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Free Download Manager\Uninstall Free Download Manager.lnk -> C:\programmi\Free Download Manager\unins000.exe ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Driver Identifier\Driver Identifier.lnk -> C:\programmi\Driver Identifier\DriverIdentifier.exe (Driver Identifier)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Defraggler\Defraggler.lnk -> C:\programmi\Defraggler\Defraggler.exe (Piriform Ltd)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Defraggler\Uninstall Defraggler.lnk -> C:\programmi\Defraggler\uninst.exe (Piriform Ltd)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\CommView for WiFi\CommView for WiFi Help.lnk -> C:\programmi\FiSTiNG4FUN\Commview for Wifi\CommViewWiFi\CV.chm ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\CommView for WiFi\CommView for WiFi.lnk -> C:\programmi\FiSTiNG4FUN\Commview for Wifi\CommViewWiFi\CV.exe (TamoSoft)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\CommView for WiFi\FiSTiNG4FUN.lnk -> C:\programmi\FiSTiNG4FUN\Commview for Wifi\CommViewWiFi\FiSTiNG4FUN.txt ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\CommView for WiFi\WEP Key Recovery Help.lnk -> C:\programmi\FiSTiNG4FUN\Commview for Wifi\CommViewWiFi\WD.chm ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\CommView for WiFi\WEP Key Recovery.lnk -> C:\programmi\FiSTiNG4FUN\Commview for Wifi\CommViewWiFi\WEPdecoder.exe (TamoSoft)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Claro Internet\Claro Internet.lnk -> C:\programmi\Claro Internet\Claro Internet.exe ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Claro Internet\Uninstall.lnk -> C:\programmi\Claro Internet\uninst.exe ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Cheat Engine 6.3\Cheat Engine 6.3 (32-bit).lnk -> C:\programmi\Cheat Engine 6.3\cheatengine-i386.exe (Cheat Engine)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Cheat Engine 6.3\Cheat Engine 6.3 (64-bit).lnk -> C:\programmi\Cheat Engine 6.3\cheatengine-x86_64.exe (Cheat Engine)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Cheat Engine 6.3\Cheat Engine 6.3.lnk -> C:\programmi\Cheat Engine 6.3\Cheat Engine.exe ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Cheat Engine 6.3\Cheat Engine help.lnk -> C:\programmi\Cheat Engine 6.3\CheatEngine.chm ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Cheat Engine 6.3\Cheat Engine tutorial.lnk -> C:\programmi\Cheat Engine 6.3\Tutorial-i386.exe ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Cheat Engine 6.3\Reset settings.lnk -> C:\programmi\Cheat Engine 6.3\ceregreset.exe ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Cheat Engine 6.3\Uninstall Cheat Engine.lnk -> C:\programmi\Cheat Engine 6.3\unins000.exe ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Cheat Engine 6.3\Kernel stuff\Unload kernel module.lnk -> C:\programmi\Cheat Engine 6.3\Kernelmoduleunloader.exe ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\CCleaner\CCleaner.lnk -> C:\programmi\CCleaner\CCleaner.exe (Piriform Ltd)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\CCleaner\Uninstall CCleaner.lnk -> C:\programmi\CCleaner\uninst.exe (Piriform Ltd)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Avast\avast! Free Antivirus.lnk -> C:\programmi\AVAST Software\Avast\avastui.exe (AVAST Software)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Accessori\Calcolatrice.lnk -> C:\WINDOWS\system32\calc.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Accessori\Connessione desktop remoto.lnk -> C:\WINDOWS\system32\mstsc.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Accessori\Paint.lnk -> C:\WINDOWS\system32\mspaint.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Accessori\WordPad.lnk -> C:\programmi\windows nt\accessori\wordpad.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Accessori\Windows PowerShell\Windows PowerShell ISE.lnk -> C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell_ise.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Accessori\Windows PowerShell\Windows PowerShell.lnk -> C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Accessori\Utilità di sistema\Backup.lnk -> C:\WINDOWS\system32\ntbackup.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Accessori\Utilità di sistema\Centro sicurezza PC.lnk -> C:\WINDOWS\system32\wscui.cpl (Microsoft Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Accessori\Utilità di sistema\Mappa caratteri.lnk -> C:\WINDOWS\system32\charmap.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Accessori\Utilità di sistema\Pulitura disco.lnk -> C:\WINDOWS\system32\cleanmgr.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Accessori\Utilità di sistema\Ripristino configurazione di sistema.lnk -> C:\WINDOWS\system32\Restore\rstrui.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Accessori\Utilità di sistema\System Information.lnk -> C:\programmi\file comuni\microsoft shared\msinfo\msinfo32.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Accessori\Utilità di sistema\Trasferimento guidato file e impostazioni.lnk -> C:\WINDOWS\system32\usmt\migwiz.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Accessori\Utilità di sistema\Utilità di deframmentazione dischi.lnk -> C:\WINDOWS\system32\dfrg.msc ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Accessori\Svago\Controllo volume.lnk -> C:\WINDOWS\system32\sndvol32.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Accessori\Svago\Registratore di suoni.lnk -> C:\WINDOWS\system32\sndrec32.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Accessori\Comunicazioni\HyperTerminal.lnk -> C:\programmi\windows nt\hypertrm.exe (Hilgraeve, Inc.)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Accessori\Accesso facilitato\Impostazione guidata Accesso facilitato.lnk -> C:\WINDOWS\system32\accwiz.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Desktop\Adobe Reader XI.lnk -> C:\programmi\Adobe\Reader 11.0\Reader\AcroRd32.exe (Adobe Systems Incorporated)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Desktop\avast! Free Antivirus.lnk -> C:\programmi\AVAST Software\Avast\avastui.exe (AVAST Software)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Desktop\CCleaner.lnk -> C:\programmi\CCleaner\CCleaner.exe (Piriform Ltd)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Desktop\Claro Internet.lnk -> C:\programmi\Claro Internet\Claro Internet.exe ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Desktop\CommView for WiFi.lnk -> C:\programmi\FiSTiNG4FUN\Commview for Wifi\CommViewWiFi\CV.exe (TamoSoft)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Desktop\Defraggler.lnk -> C:\programmi\Defraggler\Defraggler.exe (Piriform Ltd)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Desktop\DriverScanner.lnk -> C:\programmi\Uniblue\DriverScanner\driverscanner.exe (Uniblue Systems Ltd)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Desktop\Google Chrome.lnk -> C:\programmi\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Desktop\Google Earth.lnk -> C:\programmi\Google\Google Earth\client\googleearth.exe (Google)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Desktop\Malwarebytes Anti-Malware.lnk -> C:\programmi\Malwarebytes Anti-Malware\mbam.exe (Malwarebytes Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Desktop\Mozilla Firefox.lnk -> C:\programmi\Mozilla Firefox\firefox.exe (Mozilla Corporation)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Desktop\Norton Utilities 16.lnk -> C:\Program Files\Symantec\Norton Utilities 16\nu.exe (Symantec)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Desktop\OverDrive Media Console.lnk -> C:\WINDOWS\Installer\{D07205E7-F6D3-4333-AFCC-782A07685B72}\_26e91eb.exe ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Desktop\Recuva.lnk -> C:\programmi\Recuva\recuva.exe (Piriform Ltd)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Desktop\Skype.lnk -> C:\WINDOWS\Installer\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}\SkypeIcon.exe ()
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Desktop\Software Informer.lnk -> C:\programmi\Software Informer\softinfo.exe (No File)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Desktop\Speccy.lnk -> C:\programmi\Speccy\Speccy.exe (Piriform Ltd)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Desktop\Spybot-S&D Start Center.lnk -> C:\programmi\Spybot - Search & Destroy 2\SDWelcome.exe (Safer-Networking Ltd.)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Desktop\SUPER AntiSpyware.lnk -> C:\programmi\SUPERAntiSpyware\SUPERANTISPYWARE.EXE (SUPERAntiSpyware)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Desktop\VLC media player.lnk -> C:\programmi\VideoLAN\VLC\vlc.exe (VideoLAN)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Desktop\WEP Key Recovery.lnk -> C:\programmi\FiSTiNG4FUN\Commview for Wifi\CommViewWiFi\WEPdecoder.exe (TamoSoft)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Microsoft\Internet Explorer\Quick Launch\Spybot-S&D Start Center.lnk -> C:\programmi\Spybot - Search & Destroy 2\SDWelcome.exe (Safer-Networking Ltd.)
Shortcut: C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Microsoft\Internet Explorer\Quick Launch\System Scan.lnk -> C:\programmi\Spybot - Search & Destroy 2\SDScan.exe (Safer-Networking Ltd.)
Shortcut: C:\Documents and Settings\Default User.WINDOWS\Menu Avvio\Programmi\Accessori\Blocco note.lnk -> C:\WINDOWS\system32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\Default User.WINDOWS\Menu Avvio\Programmi\Accessori\Esplora risorse.lnk -> C:\WINDOWS\explorer.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\Default User.WINDOWS\Menu Avvio\Programmi\Accessori\Presentazione di Windows XP.lnk -> C:\WINDOWS\system32\tourstart.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\Default User.WINDOWS\Menu Avvio\Programmi\Accessori\Prompt dei comandi.lnk -> C:\WINDOWS\system32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\Default User.WINDOWS\Menu Avvio\Programmi\Accessori\Sincronizza.lnk -> C:\WINDOWS\system32\mobsync.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\Default User.WINDOWS\Menu Avvio\Programmi\Accessori\Accesso facilitato\Magnifier.lnk -> C:\WINDOWS\system32\magnify.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\Default User.WINDOWS\Menu Avvio\Programmi\Accessori\Accesso facilitato\Tastiera su schermo.lnk -> C:\WINDOWS\system32\osk.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Menu Avvio\BitTorrent.lnk -> C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\BitTorrent\BitTorrent.exe (BitTorrent Inc.)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Menu Avvio\WinRAR.lnk -> C:\programmi\WinRAR\WinRAR.exe (Alexander Roshal)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Menu Avvio\µTorrent.lnk -> C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\uTorrent\uTorrent.exe (BitTorrent Inc.)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Menu Avvio\Programmi\Internet Explorer.lnk -> C:\programmi\internet explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Menu Avvio\Programmi\Outlook Express.lnk -> C:\programmi\outlook express\msimn.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Menu Avvio\Programmi\WinRAR\Console RAR manual.lnk -> C:\programmi\WinRAR\Rar.txt ()
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Menu Avvio\Programmi\WinRAR\What is new in the latest version.lnk -> C:\programmi\WinRAR\WhatsNew.txt ()
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Menu Avvio\Programmi\WinRAR\WinRAR help.lnk -> C:\programmi\WinRAR\WinRAR.chm ()
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Menu Avvio\Programmi\WinRAR\WinRAR.lnk -> C:\programmi\WinRAR\WinRAR.exe (Alexander Roshal)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Menu Avvio\Programmi\Sophos\Sophos Virus Removal Tool\Sophos Virus Removal Tool.lnk -> C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\Microsoft\Installer\{B829E117-D072-41EA-9606-9826A38D34C1}\SVRTgui.exe_810EDD9E2F0A4E2BACF86673C38D9F48.exe (Macrovision Corporation)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Menu Avvio\Programmi\Portforward.com\PFPortChecker\PFPortChecker.lnk -> C:\programmi\PFPortChecker\PFPortChecker.exe (portforward.com)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Menu Avvio\Programmi\Portforward.com\PFPortChecker\Uninstall.lnk -> C:\programmi\PFPortChecker\uninst.exe ()
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Menu Avvio\Programmi\Portforward.com\PFConfig\PFConfig.lnk -> C:\programmi\PFConfig\PFConfigLauncher.exe (PFConfigLauncher is part of PFConfig. Please allow access through your firewall to properly configure your router.)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Menu Avvio\Programmi\Portforward.com\PFConfig\Uninstall.lnk -> C:\programmi\PFConfig\uninst.exe ()
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Menu Avvio\Programmi\Accessori\Blocco note.lnk -> C:\WINDOWS\system32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Menu Avvio\Programmi\Accessori\Esplora risorse.lnk -> C:\WINDOWS\explorer.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Menu Avvio\Programmi\Accessori\Presentazione di Windows XP.lnk -> C:\WINDOWS\system32\tourstart.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Menu Avvio\Programmi\Accessori\Prompt dei comandi.lnk -> C:\WINDOWS\system32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Menu Avvio\Programmi\Accessori\Rubrica.lnk -> C:\programmi\outlook express\wab.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Menu Avvio\Programmi\Accessori\Sincronizza.lnk -> C:\WINDOWS\system32\mobsync.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Menu Avvio\Programmi\Accessori\Accesso facilitato\Magnifier.lnk -> C:\WINDOWS\system32\magnify.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Menu Avvio\Programmi\Accessori\Accesso facilitato\Tastiera su schermo.lnk -> C:\WINDOWS\system32\osk.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Documenti\Musica\Musica campione.lnk -> C:\Documents and Settings\All Users.WINDOWS\Documenti\Musica\Musica campione ()
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Documenti\Immagini\Immagini campione.lnk -> C:\Documents and Settings\All Users.WINDOWS\Documenti\Immagini\Immagini campione ()
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Desktop\BitTorrent.lnk -> C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\BitTorrent\BitTorrent.exe (BitTorrent Inc.)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Desktop\BlitzBlank.lnk -> C:\Documents and Settings\Documenti\Documenti\SoftwareDownloads\BlitzBlank.exe (Emsi Software GmbH)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Desktop\Cheat Engine.lnk -> C:\programmi\Cheat Engine 6.3\Cheat Engine.exe ()
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Desktop\Core Temp.lnk -> C:\programmi\Core Temp\Core Temp.exe ()
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Desktop\Dream weaver.lnk -> C:\programmi\Adobe\Adobe Dreamweaver CS6\Dreamweaver.exe (Adobe Systems, Inc.)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Desktop\Flash CS5 Portable.lnk -> C:\Downloads\Software\Adobe Flash CS5 Portable by Ciber Actual.exe (Blog do Birungueta)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Desktop\Free Download Manager.lnk -> C:\programmi\Free Download Manager\fdm.exe (FreeDownloadManager.ORG)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Desktop\iSkysoft DRM Removal.lnk -> C:\programmi\iSkysoft\DRM Removal\DRMRemoval.exe (iSkysoft)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Desktop\PFConfig.lnk -> C:\programmi\PFConfig\PFConfigLauncher.exe (PFConfigLauncher is part of PFConfig. Please allow access through your firewall to properly configure your router.)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Desktop\PFPort Checker.lnk -> C:\programmi\PFPortChecker\PFPortChecker.exe (portforward.com)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Desktop\SanityCheck.lnk -> C:\programmi\SanityCheck\sanity.exe (Resplendence Software Projects Sp.)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Desktop\Sophos Virus Removal Tool.lnk -> C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\Microsoft\Installer\{B829E117-D072-41EA-9606-9826A38D34C1}\SVRTgui.exe1_810EDD9E2F0A4E2BACF86673C38D9F48.exe (Macrovision Corporation)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Desktop\Start Tor Browser.lnk -> C:\Program Files\Tor Browser\Start Tor Browser.exe ()
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Desktop\WhoCrashed.lnk -> C:\programmi\WhoCrashed\WhoCrashed.exe (Resplendence Software Projects)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Desktop\WinRAR.lnk -> C:\programmi\WinRAR\WinRAR.exe (Alexander Roshal)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Desktop\µTorrent.lnk -> C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\uTorrent\uTorrent.exe (BitTorrent Inc.)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\Microsoft\Internet Explorer\Quick Launch\Avvia il browser Internet Explorer.lnk -> C:\programmi\internet explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\Microsoft\Internet Explorer\Quick Launch\BitTorrent.lnk -> C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\BitTorrent\BitTorrent.exe (BitTorrent Inc.)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\Microsoft\Internet Explorer\Quick Launch\DriverScanner.lnk -> C:\programmi\Uniblue\DriverScanner\driverscanner.exe (Uniblue Systems Ltd)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\programmi\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk -> C:\programmi\Mozilla Firefox\firefox.exe (Mozilla Corporation)
Shortcut: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk -> C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\uTorrent\uTorrent.exe (BitTorrent Inc.)

SPasini · Jun 13, 2014

ShortcutWithArgument: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Impostazioni accesso ai programmi.lnk -> C:\WINDOWS\system32\control.exe (Microsoft Corporation) -> appwiz.cpl,,3
ShortcutWithArgument: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programs\SUPERAntiSpyware\SUPERAntiSpyware Registration-Activation.lnk -> C:\programmi\SUPERAntiSpyware\SUPERANTISPYWARE.EXE (SUPERAntiSpyware) -> /register
ShortcutWithArgument: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Adobe Application Manager.lnk -> C:\programmi\file comuni\Adobe\OOBE\PDApp\core\PDapp.exe (Adobe Systems Incorporated) -> --appletID=CCM_UI --appletVersion=1.0 --workflow=CCM_workflow_launch
ShortcutWithArgument: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Windows Search.lnk -> C:\programmi\Windows Desktop Search\WindowsSearch.exe (Microsoft Corporation) -> /launchsearchwindow
ShortcutWithArgument: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Xvid\Configure Decoder.lnk -> C:\WINDOWS\system32\rundll32.exe (Microsoft Corporation) -> xvid.ax,Configure
ShortcutWithArgument: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Xvid\Configure Encoder.lnk -> C:\WINDOWS\system32\rundll32.exe (Microsoft Corporation) -> xvidvfw.dll,Configure
ShortcutWithArgument: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Xvid\Advanced\xvid_encraw.lnk -> C:\WINDOWS\system32\cmd.exe (Microsoft Corporation) -> /k ""C:\programmi\Xvid\xvid_encraw.exe"" -h
ShortcutWithArgument: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\VideoLAN\VLC media player - reset preferences and cache files.lnk -> C:\programmi\VideoLAN\VLC\vlc.exe (VideoLAN) -> --reset-config --reset-plugins-cache vlc://quit
ShortcutWithArgument: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\VideoLAN\VLC media player skinned.lnk -> C:\programmi\VideoLAN\VLC\vlc.exe (VideoLAN) -> -Iskins
ShortcutWithArgument: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Strumenti di amministrazione\Criteri di protezione locali.lnk -> C:\WINDOWS\system32\secpol.msc () -> /s
ShortcutWithArgument: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Strumenti di amministrazione\Gestione computer.lnk -> C:\WINDOWS\system32\compmgmt.msc () -> /s
ShortcutWithArgument: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Strumenti di amministrazione\Prestazioni.lnk -> C:\WINDOWS\system32\perfmon.msc () -> /s
ShortcutWithArgument: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Strumenti di amministrazione\Servizi.lnk -> C:\WINDOWS\system32\services.msc () -> /s
ShortcutWithArgument: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Strumenti di amministrazione\Visualizzatore eventi.lnk -> C:\WINDOWS\system32\eventvwr.msc () -> /s
ShortcutWithArgument: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Java\About Java.lnk -> C:\programmi\Java\jre7\bin\javacpl.exe (Oracle Corporation) -> -tab about
ShortcutWithArgument: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Java\Check For Updates.lnk -> C:\programmi\Java\jre7\bin\javacpl.exe (Oracle Corporation) -> -tab update
ShortcutWithArgument: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Intel PROSet Wireless\Intel PROSet Wireless.lnk -> C:\programmi\Intel\Wireless\Bin\iFrmewrk.exe (Intel Corporation) -> /af Intel PROSet/Wireless
ShortcutWithArgument: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Google Earth\Avvia Google Earth in DirectX.lnk -> C:\programmi\Google\Google Earth\client\googleearth.exe (Google) -> -setDX
ShortcutWithArgument: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Google Earth\Avvia Google Earth in OpenGL.lnk -> C:\programmi\Google\Google Earth\client\googleearth.exe (Google) -> -setOGL
ShortcutWithArgument: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Google Earth\Disinstalla Google Earth.lnk -> C:\WINDOWS\system32\msiexec.exe (Microsoft Corporation) -> /x {4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}
ShortcutWithArgument: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\CommView for WiFi\Uninstall.lnk -> C:\programmi\FiSTiNG4FUN\Commview for Wifi\CommViewWiFi\Uninst_CommViewWiFi.exe (TamoSoft) -> /U "C:\programmi\FiSTiNG4FUN\Commview for Wifi\CommViewWiFi\Uninst_CommViewWiFi.log"
ShortcutWithArgument: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Cheat Engine 6.3\main.lua.lnk -> C:\WINDOWS\system32\notepad.exe (Microsoft Corporation) -> C:\Programmi\Cheat Engine 6.3\main.lua
ShortcutWithArgument: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Accessori\Scanner and Camera Wizard.lnk -> C:\WINDOWS\system32\wiaacmgr.exe (Microsoft Corporation) -> -SelectDevice
ShortcutWithArgument: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Accessori\Utilità di sistema\Attivazione di Windows.lnk -> C:\WINDOWS\system32\oobe\msoobe.exe (Microsoft Corporation) -> /A
ShortcutWithArgument: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Accessori\Utilità di sistema\Operazioni pianificate.lnk -> C:\WINDOWS\explorer.exe (Microsoft Corporation) -> ::{20D04FE0-3AEA-1069-A2D8-08002B30309D}\::{21EC2020-3AEA-1069-A2DD-08002B30309D}\::{D6277990-4C6A-11CF-8D87-00AA0060F5BF}
ShortcutWithArgument: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Accessori\Comunicazioni\Connessioni di rete.lnk -> C:\WINDOWS\explorer.exe (Microsoft Corporation) -> ::{20D04FE0-3AEA-1069-A2D8-08002B30309D}\::{21EC2020-3AEA-1069-A2DD-08002B30309D}\::{7007acc7-3202-11d1-aad2-00805fc1270e}
ShortcutWithArgument: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Accessori\Comunicazioni\Creazione guidata nuova connessione.lnk -> C:\WINDOWS\system32\rundll32.exe (Microsoft Corporation) -> netshell.dll,StartNCW
ShortcutWithArgument: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Accessori\Comunicazioni\Installazione guidata rete senza fili.lnk -> C:\WINDOWS\system32\rundll32.exe (Microsoft Corporation) -> shell32.dll,Control_RunDLL NetSetup.cpl,@0,WNSW
ShortcutWithArgument: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Accessori\Comunicazioni\Installazione guidata rete.lnk -> C:\WINDOWS\system32\rundll32.exe (Microsoft Corporation) -> hnetwiz.dll,HomeNetWizardRunDll
ShortcutWithArgument: C:\Documents and Settings\All Users.WINDOWS\Desktop\Adobe AppManager.lnk -> C:\programmi\file comuni\Adobe\OOBE\PDApp\core\PDapp.exe (Adobe Systems Incorporated) -> --appletID=CCM_UI --appletVersion=1.0 --workflow=CCM_workflow_launch
ShortcutWithArgument: C:\Documents and Settings\Default User.WINDOWS\Menu Avvio\Programmi\Assistenza remota.lnk -> C:\WINDOWS\system32\rcimlby.exe (Microsoft Corporation) -> -LaunchRA
ShortcutWithArgument: C:\Documents and Settings\Default User.WINDOWS\Menu Avvio\Programmi\Windows Media Player.lnk -> C:\programmi\windows media player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\Documents and Settings\Default User.WINDOWS\Menu Avvio\Programmi\Accessori\Svago\Windows Media Player.lnk -> C:\programmi\windows media player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\Documents and Settings\Default User.WINDOWS\Menu Avvio\Programmi\Accessori\Accesso facilitato\Utility Manager.lnk -> C:\WINDOWS\system32\utilman.exe (Microsoft Corporation) -> /start
ShortcutWithArgument: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\SendTo\Skype.lnk -> C:\programmi\Skype\Phone\Skype.exe (Skype Technologies S.A.) -> /sendto:
ShortcutWithArgument: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Menu Avvio\Programmi\Assistenza remota.lnk -> C:\WINDOWS\system32\rcimlby.exe (Microsoft Corporation) -> -LaunchRA
ShortcutWithArgument: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Menu Avvio\Programmi\Windows Media Player.lnk -> C:\programmi\windows media player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Menu Avvio\Programmi\Accessori\Utilità di sistema\Internet Explorer (nessun componente aggiuntivo).lnk -> C:\programmi\internet explorer\iexplore.exe (Microsoft Corporation) -> -extoff
ShortcutWithArgument: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Menu Avvio\Programmi\Accessori\Accesso facilitato\Utility Manager.lnk -> C:\WINDOWS\system32\utilman.exe (Microsoft Corporation) -> /start
ShortcutWithArgument: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk -> C:\programmi\windows media player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1

InternetURL: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Xvid\Xvid Homepage.url -> hxxp://www.xvid.org
InternetURL: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Speccy\Speccy Homepage.url -> hxxp://www.piriform.com/speccy
InternetURL: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Recuva\Recuva Homepage.url -> hxxp://www.piriform.com/recuva
InternetURL: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Defraggler\Defraggler Homepage.url -> hxxp://www.piriform.com/defraggler
InternetURL: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\CommView for WiFi\tamos.com.url -> hxxp://www.tamos.com/products/commwifi/
InternetURL: C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\CCleaner\CCleaner Homepage.url -> hxxp://www.piriform.com/ccleaner
InternetURL: C:\Documents and Settings\LocalService.NT AUTHORITY.000\Preferiti\Security TechCenter.url -> hxxp://technet.microsoft.com/en-US/security/ff852094.aspx
InternetURL: C:\Documents and Settings\LocalService.NT AUTHORITY.000\Preferiti\Collegamenti\Siti suggeriti.url -> https://ieonline.microsoft.com/#ieslice
InternetURL: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Preferiti\Guida stazioni radio.url -> hxxp://www.microsoft.com/isapi/redir.dll?prd=windows&sbp=mediaplayer&plcid=&pver=6.1&os=&over=&olcid=&clcid=&ar=Media&sba=RadioBar&o1=&o2=&o3=
InternetURL: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Preferiti\Microsoft bCentral.url -> hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=favextra
InternetURL: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Preferiti\Microsoft Italia.url -> hxxp://go.microsoft.com/fwlink/?LinkId=72520
InternetURL: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Preferiti\MSN.com.url -> hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=IStart
InternetURL: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Preferiti\Protected Mode troubleshooting Adobe Reader.url -> hxxp://helpx.adobe.com/acrobat/kb/protected-mode-troubleshooting-reader.html
InternetURL: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Preferiti\The Torrent Guide for Everyone.url -> hxxp://www.makeuseof.com/pages/free-torrent-guide
InternetURL: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Preferiti\Siti Web Microsoft\Internet Explorer - Home.url -> hxxp://go.microsoft.com/fwlink/?LinkId=72186
InternetURL: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Preferiti\Siti Web Microsoft\Microsoft At Home.url -> hxxp://go.microsoft.com/fwlink/?LinkId=72406
InternetURL: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Preferiti\Siti Web Microsoft\Microsoft Store.url -> hxxp://go.microsoft.com/fwlink/?linkid=140813
InternetURL: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Preferiti\Collegamenti\HotMail gratuita.url -> hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=hotmail
InternetURL: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Preferiti\Collegamenti\Personalizzazione collegamenti.url -> hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=CLinks
InternetURL: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Preferiti\Collegamenti\Raccolta Web Slice.url -> hxxp://go.microsoft.com/fwlink/?LinkId=121315
InternetURL: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Preferiti\Collegamenti\Siti suggeriti.url -> https://ieonline.microsoft.com/#ieslice
InternetURL: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Preferiti\Collegamenti\WindowsMedia.url -> hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=windowsmedia
InternetURL: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Documenti\Documenti -\Downloads\WiFi\commview wifi hack_TopOne2u\CLICK TO GET MORE.url -> hxxp://fullandcrackzone.blogspot.com/
InternetURL: C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Documenti\Documenti -\Downloads\WiFi\commview wifi hack_TopOne2u\commview wifi hack_TopOne2u\CLICK TO GET MORE.url -> hxxp://fullandcrackzone.blogspot.com/

==================== End of log =============================

Broni · Jun 13, 2014

Download attached fixlist.txt file and save it to the Desktop.
NOTE. It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

Run FRST(FRST64) and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.

Broni · Jun 13, 2014

We posted at the same time...

SPasini · Jun 13, 2014

Broni: I think I posted all of them if you notice the lack of something you tell me. Tks.SPasini

Broni · Jun 13, 2014

See my reply #33

SPasini · Jun 15, 2014

Att.Broni: As you advice I tried to apply the fixlist.txt with FRST64 app. but the system didn't recognize this one and I used the regular one and it worked Ok!
The log:
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version:12-06-2014
Ran by SergioPasini at 2014-06-15 12:25:43 Run:1
Running from C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Desktop
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
HKLM\...\Run: [] => [X]
AlternateDataStreams: C:\WINDOWS:{4B9A1497-0817-47C4-9612-D6A1C53ACF57}
AlternateDataStreams: C:\WINDOWS\system32:{4B9A1497-0817-47C4-9612-D6A1C53ACF57}
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\TEMP:792D4CF1
HKU\S-1-5-21-57989841-796845957-1644491937-1003\...\MountPoints2: {0f21d6b0-d7c2-11e3-a5ec-001f3c9025e7} - E:\AutoRun.exe
HKU\S-1-5-21-57989841-796845957-1644491937-1003\...\MountPoints2: {c5ad2773-d70f-11e3-a5e1-004045336f64} - E:\AutoRun.exe
SearchScopes: HKLM - DefaultScope value is missing.
R3 ALSysIO; \??\C:\DOCUME~1\SERGIO~1.SPA\IMPOST~1\Temp\ALSysIO.sys [X]
S3 catchme; \??\C:\DOCUME~1\SERGIO~1.SPA\IMPOST~1\Temp\catchme.sys [X]
S4 IntelIde; No ImagePath
S3 MEMSWEEP2; \??\C:\WINDOWS\system32\112.tmp [X]
S3 Trufos; system32\DRIVERS\Trufos.sys [X]
C:\Documents and Settings\NetworkService\Impostazioni locali\Temp\mpam-a8270c82.exe
C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\Temp\Quarantine.exe
*****************

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\ => value deleted successfully.
C:\WINDOWS => ":{4B9A1497-0817-47C4-9612-D6A1C53ACF57}" ADS removed successfully.
C:\WINDOWS\system32 => ":{4B9A1497-0817-47C4-9612-D6A1C53ACF57}" ADS removed successfully.
C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\TEMP => ":792D4CF1" ADS removed successfully.
'HKU\S-1-5-21-57989841-796845957-1644491937-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0f21d6b0-d7c2-11e3-a5ec-001f3c9025e7}' => Key deleted successfully.
'HKCR\CLSID\{0f21d6b0-d7c2-11e3-a5ec-001f3c9025e7}'=> Key not found.
'HKU\S-1-5-21-57989841-796845957-1644491937-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c5ad2773-d70f-11e3-a5e1-004045336f64}' => Key deleted successfully.
'HKCR\CLSID\{c5ad2773-d70f-11e3-a5e1-004045336f64}'=> Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
ALSysIO => Service stopped successfully.
ALSysIO => Service deleted successfully.
catchme => Service deleted successfully.
IntelIde => Service deleted successfully.
MEMSWEEP2 => Service deleted successfully.
Trufos => Service deleted successfully.
C:\Documents and Settings\NetworkService\Impostazioni locali\Temp\mpam-a8270c82.exe => Moved successfully.
"C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\Temp\Quarantine.exe" => File/Directory not found.

==== End of Fixlog ====

Broni · Jun 15, 2014

Download Security Check from here or here and save it to your Desktop.

Double-click SecurityCheck.exe
Follow the onscreen instructions inside of the black box.
A Notepad document should open automatically called checkup.txt; please post the contents of that document.

NOTE 1. If one of your security applications (e.g., third-party firewall) requests permission to allow DIG.EXE access the Internet, allow it to do so.
NOTE 2 SecurityCheck may produce some false warning(s), so leave the results reading to me.

Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.

Make sure the following options are checked:
- Internet Services
- Windows Firewall
- System Restore
- Security Center
- Windows Update
- Windows Defender
- Other Services
Press "Scan".
It will create a log (FSS.txt) in the same directory the tool is run.
Please copy and paste the log to your reply.

Download Temp File Cleaner (TFC)
Alternate download: http://www.itxassociates.com/OT-Tools/TFC.exe

Double click on TFC.exe to run the program.
Click on Start button to begin cleaning process.
TFC will close all running programs, and it may ask you to restart computer.

Please run a free online scan with the ESET Online Scanner

Disable your antivirus program
Click on "Run ESET Online Scanner" button.
Tick the box next to YES, I accept the Terms of Use
Click Start
Accept any security warnings from your browser.
Check Scan archives
Click Start
ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
When the scan completes, click on List of found threats
Click on Export to text file , and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
NOTE. If Eset won't find any threats, it won't produce any log.

SPasini · Jun 17, 2014

Att.Broni:
Results of screen317's Security Check version 0.99.84
Windows XP Service Pack 3 x86
Internet Explorer 8
``````````````Antivirus/Firewall Check:``````````````
Attendere. Installazione di WMIC in corso.d
I
s
p
l
a
y
N
a
m
e
ECHO disattivato.
a
v
a
s
t
!
ECHO disattivato.
A
n
t
I
v
I
r
u
s
ECHO disattivato.
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
MVPS Hosts File
Spybot - Search & Destroy
SUPERAntiSpyware
CCleaner
Java 7 Update 55
Java version out of Date!
Adobe Flash Player 13.0.0.214
Adobe Reader XI
Mozilla Firefox (29.0.1)
Google Chrome 35.0.1916.114
Google Chrome 35.0.1916.153
````````Process Check: objlist.exe by Laurent````````
Malwarebytes Anti-Malware mbamservice.exe
Malwarebytes Anti-Malware mbam.exe
Spybot Teatimer.exe is disabled!
Malwarebytes Anti-Malware mbamscheduler.exe
All Users.WINDOWS Dati applicazioni Claro Internet OnlineUpdate\ouc.exe
AVAST Software Avast AvastSvc.exe
AVAST Software Avast AvastUI.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C:: 18% Defragment your hard drive soon! (Do NOT defrag if SSD!)
````````````````````End of Log``````````````````````

Farbar Service Scanner Version: 10-06-2014
Ran by SergioPasini (administrator) on 16-06-2014 at 21:20:31
Running from "C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Documenti\Downloads"
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
WAN connected
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.

Windows Firewall:
=============

Firewall Disabled Policy:
==================

System Restore:
============
Srservice Service is not running. Checking service configuration:
The start type of Srservice service is set to Demand. The default start type is Auto.
The ImagePath of Srservice service is OK.
The ServiceDll of Srservice service is OK.

System Restore Disabled Policy:
========================

Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================

Other Services:
==============

File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\afd.sys => File is digitally signed
C:\WINDOWS\system32\Drivers\netbt.sys => File is digitally signed
C:\WINDOWS\system32\Drivers\tcpip.sys => File is digitally signed
C:\WINDOWS\system32\Drivers\ipsec.sys => File is digitally signed
C:\WINDOWS\system32\dnsrslvr.dll => File is digitally signed
C:\WINDOWS\system32\ipnathlp.dll => File is digitally signed
C:\WINDOWS\system32\netman.dll => File is digitally signed
C:\WINDOWS\system32\wbem\WMIsvc.dll => File is digitally signed
C:\WINDOWS\system32\srsvc.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\sr.sys => File is digitally signed
C:\WINDOWS\system32\wscsvc.dll => File is digitally signed
C:\WINDOWS\system32\wbem\WMIsvc.dll => File is digitally signed
C:\WINDOWS\system32\wuauserv.dll => File is digitally signed
C:\WINDOWS\system32\qmgr.dll => File is digitally signed
C:\WINDOWS\system32\es.dll => File is digitally signed
C:\WINDOWS\system32\cryptsvc.dll => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed

Extra List:
=======
aswTdi(8) Gpc(3) IPSec(5) NetBT(6) Tcpip(4) Tcpip6(9)
0x0B0000000500000001000000020000000300000004000000080000000600000007000000090000000A0000000B000000
IpSec Tag value is correct.

**** End of log ****

ESETSmartInstaller@High as downloader log:
all ok
ESETSmartInstaller@High as downloader log:
Can not read file from internet.ESETSmartInstaller@High as downloader log:
Can not read file from internet.Can not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetesets_scanner_update returned -1 esets_gle=36882
esets_scanner_update returned -1 esets_gle=41221
ESETSmartInstaller@High as downloader log:
Can not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not read file from internet.ESETSmartInstaller@High as downloader log:
Can not read file from internet.Can not read file from internet.ESETSmartInstaller@High as downloader log:
Can not read file from internet.Can not read file from internet.ESETSmartInstaller@High as downloader log:
Can not read file from internet.# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7587
# api_version=3.0.2
# EOSSerial=42bda5dfa7d91f4fac35534efb091cdd
# engine=18762
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-06-17 08:03:11
# local_time=2014-06-17 05:03:11 (-0300, ora solare SA or.)
# country="Italy"
# lang=1033
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode_1='avast! Antivirus'
# compatibility_mode=783 16777213 100 95 2885 2518275 0 0
# scanned=44741
# found=7
# cleaned=7
# scan_time=3414
sh=F32589AEF4F6B3C3384DF75218943F13FEB0A845 ft=1 fh=c71c001198f425ea vn="Win32/InstalleRex.M potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\InstallMate\{85168676-6152-45DD-A736-29705EF5A480}\Custom.dll"
sh=F32589AEF4F6B3C3384DF75218943F13FEB0A845 ft=1 fh=c71c001198f425ea vn="Win32/InstalleRex.M potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\InstallMate\{90E16610-1365-42A0-A04B-5B474B0244E6}\Custom.dll"
sh=F32589AEF4F6B3C3384DF75218943F13FEB0A845 ft=1 fh=c71c001198f425ea vn="Win32/InstalleRex.M potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\InstallMate\{96BBD821-4818-4CE4-AE0F-003A4D58FAD7}\Custom.dll"
sh=4338D5944791D0CE359B859397EABEBE203893C8 ft=1 fh=7fc7dafc36e99ed5 vn="probably a variant of Win32/Complitly.A potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Documents and Settings\Documenti\Documenti\SoftwareDownloads\Core-Temp-setup.exe"
sh=D1F6C156424D48461DBF188043BD4E4258F6BF28 ft=1 fh=c0e6015cc1f06a8a vn="Win32/Toolbar.Babylon.T potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Documents and Settings\Documenti\Documenti\SoftwareDownloads\ReimageRepair.exe"
sh=0F9C8B1D27E974E8884B7B1F1B8FAA98BFBFCCB2 ft=1 fh=ff6b7295cef9d18c vn="a variant of Win32/OpenInstall potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Documents and Settings\Documenti\Documenti\SoftwareDownloads\Skype.exe"
sh=FD164DF531DF69F7C9AE20EB8BB0E9CA0259333E ft=1 fh=8083928577838e95 vn="a variant of Win32/4Shared.T potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Downloads\Software\B1FreeArchiver_1.2.54.exe"

Broni · Jun 17, 2014

Did you disable system restore for whatever reason?
If so re-enable it.

Update Firefox to the latest 30.0 version.

Update Adobe Flash Player: http://get.adobe.com/flashplayer/
Make sure you UN-check Yes, install McAfee Security Scan Plus

NOTE 1: Beginning with Adobe Flash Version 11.3, the universal installer includes the 32-bit and 64-bit versions of the Flash Player.
NOTE 2: While installing make sure you UN-check any extra garbage which wants to install alongside.

Update your Java version here: https://www.techspot.com/downloads/6463-java-se.html
Alternate download: http://www.java.com/en/download/manual.jsp

Note 1: UNCHECK any pre-checked toolbar and/or software offered with the Java update. The pre-checked toolbars/software are not part of the Java update.

Note 2: If you're running 64-bit system make sure you install BOTH, 32-bit and 64-bit Java.

Note 3: The Java Quick Starter (JQS.exe) adds a service to improve the initial startup time of Java applets and applications. If you don't want to run another extra service, go to Start > Control Panel > Java > Advanced > Miscellaneous and uncheck the box for Java Quick Starter. Click OK and restart your computer.

====================================

Your computer is clean

1. This step will remove all cleaning tools we used, it'll reset restore points (so you won't get reinfected by accidentally using some older restore point) and it'll make some other minor adjustments...
This is a very crucial step so make sure you don't skip it.
Download

DelFix by Xplode to your desktop. Delfix will delete all the used tools and logfiles.

Double-click Delfix.exe to start the tool.
Make sure the following items are checked:

Activate UAC (optional; some users prefer to keep it off)
Remove disinfection tools
Create registry backup
Purge System Restore
Reset system settings

Now click "Run" and wait patiently.
Once finished a logfile will be created. You don't have to attach it to your next reply.

2. Make sure Windows Updates are current.

3. If any trojans, rootkits or bootkits were listed among your infection(s), make sure, you change all of your on-line important passwords (bank account(s), secured web sites, etc.) immediately!

4. Check if your browser plugins are up to date.
Firefox - https://www.mozilla.org/en-US/plugincheck/
other browsers: https://browsercheck.qualys.com/ (click on "Launch a quick scan now" link)

5. Download, and install WOT (Web OF Trust): http://www.mywot.com/. It'll warn you (in most cases) about dangerous web sites.

6. Run Malwarebytes "Quick scan" once in a while to assure safety of your computer.

7. Run Temporary File Cleaner (TFC), AdwCleaner and Junkware Removal Tool (JRT) weekly (you need to redownload these tools since they were removed by DelFix).

8. Download and install Secunia Personal Software Inspector (PSI): https://www.techspot.com/downloads/4898-secunia-personal-software-inspector-psi.html. The Secunia PSI is a FREE security tool designed to detect vulnerable and out-dated programs and plug-ins which expose your PC to attacks. Run it weekly.

9. (optional) If you want to keep all your programs up to date, download and install FileHippo Update Checker.
The Update Checker will scan your computer for installed software, check the versions and then send this information to FileHippo.com to see if there are any newer releases.

10. When installing\updating ANY program, make sure you always select "Custom " installation, so you can UN-check any possible "drive-by-install" (foistware), like toolbars etc., which may try to install along with the legitimate program. Do NOT click "Next" button without looking at any given page.

11. Read:
How did I get infected?, With steps so it does not happen again!: http://www.bleepingcomputer.com/forums/topic2520.html
Simple and easy ways to keep your computer safe and secure on the Internet: http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/
About those Toolbars and Add-ons - Potentially Unwanted Programs (PUPs) which change your browser settings: http://www.bleepingcomputer.com/for...curity-questions-best-practices/#entry3187642

12. Please, let me know, how your computer is doing.

SPasini · Jun 21, 2014

Att.Broni: I did not disable system restore ever and twice or three times a week I check SR and I have to re-enable it each time and I don't know the reason but besides that so far so good! Tks again for your help and I let you know if anything happens! SPasini

Broni · Jun 21, 2014

Go Start>Run, type:
services.msc
Click OK.

Services window will open.
Scroll down to System Restore service.
Right click on it, click "Properties" and under "Startup type" select "Automatic" from drop down menu.
OK your way out.

Good luck and stay safe

Solved Unable to run -thoroughly- Combo fix_am I hacked?

SPasini

Posts: 50 +0

SPasini

Posts: 50 +0

SPasini

Posts: 50 +0

SPasini

Posts: 50 +0

SPasini

Posts: 50 +0

SPasini

Posts: 50 +0

SPasini

Posts: 50 +0

Broni

Posts: 56,041 +516

Attachments

Broni

Posts: 56,041 +516

SPasini

Posts: 50 +0

Broni

Posts: 56,041 +516

SPasini

Posts: 50 +0

Broni

Posts: 56,041 +516

SPasini

Posts: 50 +0

Broni

Posts: 56,041 +516

SPasini

Posts: 50 +0

Broni

Posts: 56,041 +516

Similar threads

Latest posts