Sorry and tks for your reply!
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:02-08-2015 01
Ran by S_PASINI (administrator) on SERGIOPASINI (10-04-2018 18:28:51)
Running from C:\Documents and Settings\S_PASINI\Desktop
Loaded Profiles: S_PASINI (Available Profiles: S_PASINI & Administrator)
Platform: Microsoft Windows XP Professional Service Pack 3 (X86) Language: Italiano (Italia)
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool:
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Intel Corporation) C:\programmi\Intel\Wireless\Bin\EvtEng.exe
(Intel Corporation ) C:\programmi\Intel\Wireless\Bin\S24EvMon.exe
(Intel(R) Corporation) C:\programmi\Intel\Wireless\Bin\WLKEEPER.exe
(AVAST Software) C:\programmi\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\WINDOWS\system32\netdde.exe
(SUPERAntiSpyware.com) C:\programmi\SUPERAntiSpyware\SASCORE.EXE
() C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Claro Internet\OnlineUpdate\ouc.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
() C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\DatacardService\HWDeviceService.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
(PC Tools) C:\programmi\Norton Utilities 16\sMonitor\StartManSvc.exe
(O2Micro International) C:\WINDOWS\system32\drivers\o2flash.exe
(Intel Corporation) C:\programmi\Intel\Wireless\Bin\RegSrvc.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
(Malwarebytes) C:\programmi\Malwarebytes\Anti-Malware\MBAMService.exe
(AVAST Software) C:\programmi\AVAST Software\Avast\aswidsagent.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Synaptics, Inc.) C:\programmi\Synaptics\SynTP\SynTPEnh.exe
(Mister Group) C:\programmi\System Explorer\SystemExplorer.exe
(QFX Software Corporation) C:\programmi\KeyScrambler\KeyScrambler.exe
(Mister Group) C:\programmi\System Explorer\service\SystemExplorerService.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(Intel Corporation) C:\programmi\Intel\Wireless\Bin\ZCfgSvc.exe
(Intel Corporation) C:\programmi\Intel\Wireless\Bin\iFrmewrk.exe
(Motorola Inc.) C:\WINDOWS\sm56hlpr.exe
(Intel Corporation) C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe
(Piriform Ltd) C:\programmi\Speccy\Speccy.exe
(ALCPU) C:\programmi\Core Temp\Core Temp.exe
(VideoLAN) C:\programmi\VideoLAN\VLC\vlc.exe
(Piriform Ltd) C:\programmi\CCleaner\CCleaner.exe
(Adobe Systems Incorporated) C:\programmi\Adobe\Reader 11.0\Reader\AcroRd32.exe
(Malwarebytes) C:\programmi\Malwarebytes\Anti-Malware\mbamtray.exe
(Adobe Systems Incorporated) C:\programmi\Adobe\Reader 11.0\Reader\AcroRd32.exe
(Microsoft Corporation) C:\programmi\windows media player\wmplayer.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Mozilla Corporation) C:\programmi\Mozilla Firefox\firefox.exe
(AVAST Software) C:\programmi\AVAST Software\Avast\AvastUI.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AzMixerSel] => C:\programmi\Realtek\InstallShield\AzMixerSel.exe [53248 2005-08-25] (Realtek Semiconductor Corp.)
HKLM\...\Run: [SynTPEnh] => C:\Programmi\Synaptics\SynTP\SynTPEnh.exe [761946 2006-03-09] (Synaptics, Inc.)
HKLM\...\Run: [SystemExplorerAutoStart] => C:\Programmi\System Explorer\SystemExplorer.exe [3390776 2016-04-12] (Mister Group)
HKLM\...\Run: [KeyScrambler] => C:\Programmi\KeyScrambler\keyscrambler.exe [515600 2017-04-23] (QFX Software Corporation)
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [20146192 2017-10-16] (Realtek Semiconductor Corp.)
HKLM\...\Run: [AvastUI.exe] => C:\Programmi\AVAST Software\Avast\AvLaunch.exe [242392 2018-04-04] (AVAST Software)
HKLM\...\Run: [IntelZeroConfig] => C:\Programmi\Intel\Wireless\bin\ZCfgSvc.exe [667718 2005-12-28] (Intel Corporation)
HKLM\...\Run: [IntelWireless] => C:\Programmi\Intel\Wireless\Bin\ifrmewrk.exe [602182 2005-12-28] (Intel Corporation)
HKLM\...\Run: [SMSERIAL] => C:\WINDOWS\sm56hlpr.exe [557056 2005-11-09] (Motorola Inc.)
HKU\S-1-5-21-823518204-484061587-842925246-1003\...\Run: [Speccy] => C:\Programmi\Speccy\Speccy.exe [5120216 2017-06-27] (Piriform Ltd)
HKU\S-1-5-21-823518204-484061587-842925246-1003\...\Run: [Core Temp] => C:\Programmi\Core Temp\Core Temp.exe [881240 2017-11-04] (ALCPU)
HKU\S-1-5-21-823518204-484061587-842925246-1003\...\Run: [vlc.exe] => C:\programmi\VideoLAN\VLC\vlc.exe [144304 2017-11-29] (VideoLAN)
HKU\S-1-5-21-823518204-484061587-842925246-1003\...\Run: [mbam.exe] => C:\programmi\Malwarebytes\Anti-Malware\mbam.exe [10155984 2017-12-26] (Malwarebytes)
HKU\S-1-5-21-823518204-484061587-842925246-1003\...\Run: [AvastSvc.exe] => C:\Programmi\AVAST Software\Avast\AvastSvc.exe [313640 2018-04-04] (AVAST Software)
HKU\S-1-5-21-823518204-484061587-842925246-1003\...\Run: [CCleaner Monitoring] => C:\programmi\CCleaner\CCleaner.exe [12762872 2018-03-06] (Piriform Ltd)
HKU\S-1-5-21-823518204-484061587-842925246-1003\...\Run: [CCleaner] => C:\Programmi\CCleaner\CCleaner.exe [12762872 2018-03-06] (Piriform Ltd)
HKU\S-1-5-21-823518204-484061587-842925246-1003\...\Run: [AcroRd32.exe] => C:\programmi\Adobe\Reader 11.0\Reader\AcroRd32.exe [1457552 2014-08-05] (Adobe Systems Incorporated)
HKU\S-1-5-21-823518204-484061587-842925246-1003\...\Run: [firefox.exe] => C:\programmi\Mozilla Firefox\firefox.exe [517072 2018-03-28] (Mozilla Corporation)
HKU\S-1-5-21-823518204-484061587-842925246-1003\...\Run: [mbamtray.exe] => C:\programmi\Malwarebytes\Anti-Malware\mbamtray.exe [3515856 2017-12-26] (Malwarebytes)
HKU\S-1-5-21-823518204-484061587-842925246-1003\...\Run: [Mobile Partner] => C:\programmi\Claro Internet\Claro Internet.exe [515072 2018-03-25] ()
HKU\S-1-5-21-823518204-484061587-842925246-1003\...\Run: [wmplayer.exe] => C:\programmi\windows media player\wmplayer.exe [64512 2009-01-30] (Microsoft Corporation)
HKU\S-1-5-21-823518204-484061587-842925246-1003\...\Run: [Spybot-S&D Cleaning] => C:\programmi\Spybot - Search & Destroy 2\SDCleaner.exe [4566952 2014-06-24] (Safer-Networking Ltd.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Programmi\AVAST Software\Avast\ashShell.dll [2018-04-04] (AVAST Software)
BootExecute: autocheck autochk * sdnclean.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-823518204-484061587-842925246-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page =
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-823518204-484061587-842925246-1003\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.microsoft.com/isapi/redir.dll?prd=ie
HKU\S-1-5-21-823518204-484061587-842925246-1003\Software\Microsoft\Internet Explorer\Main,Search Page =
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
http://www.bing.com/search
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
http://www.bing.com/search
SearchScopes: HKU\S-1-5-21-823518204-484061587-842925246-1003 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
http://www.bing.com/search
SearchScopes: HKU\S-1-5-21-823518204-484061587-842925246-1003 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
http://www.bing.com/search
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Programmi\AVAST Software\Avast\aswWebRepIE.dll [2018-02-21] (AVAST Software)
BHO: Free Download Manager -> {CC59E0F9-7E43-44FA-9FAA-8377850BF205} -> C:\Programmi\Free Download Manager\iefdm2.dll [2015-08-07] (FreeDownloadManager.ORG)
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL [2002-05-23] (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL [2002-05-23] (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL [2002-05-23] (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL [2002-05-23] (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL [2002-05-23] (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL [2002-05-23] (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL [2002-05-23] (Microsoft Corporation)
ShellExecuteHooks: Hook per l'esecuzione degli URL - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - C:\WINDOWS\system32\shell32.dll [8492032 2012-06-08] (Microsoft Corporation)
ShellExecuteHooks: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Programmi\SUPERAntiSpyware\SASSEH.DLL [115440 2013-05-07] (SuperAdBlocker.com)
FireFox:
========
FF ProfilePath: C:\Documents and Settings\S_PASINI\Dati applicazioni\Mozilla\Firefox\Profiles\5mq4bsee.default
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_28_0_0_137.dll [2018-01-11] ()
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Programmi\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-10-12] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Programmi\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-10-12] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Programmi\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.8 -> C:\Programmi\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Programmi\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF Extension: No Name - C:\Documents and Settings\S_PASINI\Dati applicazioni\Mozilla\Firefox\Profiles\5mq4bsee.default\Extensions\jid1-r1tDuNiNb4SEww@jetpack.xpi [2017-11-03]
FF Extension: No Name - C:\Documents and Settings\S_PASINI\Dati applicazioni\Mozilla\Firefox\Profiles\5mq4bsee.default\Extensions\wrc@avast.com.xpi [2017-12-17]
FF Extension: Default - C:\Programmi\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi [2018-03-28]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2014-04-30]
FF HKU\S-1-5-21-823518204-484061587-842925246-1003\...\Firefox\Extensions: [fdm_ffext@freedownloadmanager.org] - C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Free Download Manager\Firefox\Extensions\2.1.13
FF Extension: Free Download Manager extension - C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Free Download Manager\Firefox\Extensions\2.1.13 [2017-10-12]
Chrome:
=======
CHR Profile: C:\Documents and Settings\S_PASINI\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default
CHR Extension: (Docs) - C:\Documents and Settings\S_PASINI\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-11]
CHR Extension: (Google Drive) - C:\Documents and Settings\S_PASINI\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-10-11]
CHR Extension: (YouTube) - C:\Documents and Settings\S_PASINI\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-10-11]
CHR Extension: (Google Search) - C:\Documents and Settings\S_PASINI\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2017-10-11]
CHR Extension: (Google Docs Offline) - C:\Documents and Settings\S_PASINI\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-10-13]
CHR Extension: (Avast Online Security) - C:\Documents and Settings\S_PASINI\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-10-12]
CHR Extension: (Chrome Web Store Payments) - C:\Documents and Settings\S_PASINI\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-10-12]
CHR Extension: (Gmail) - C:\Documents and Settings\S_PASINI\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-10-11]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] -
https://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 !SASCORE; C:\Programmi\SUPERAntiSpyware\SASCORE.EXE [143776 2017-10-12] (SUPERAntiSpyware.com)
S2 6to4; C:\WINDOWS\System32\6to4svc.dll [100864 2010-02-12] (Microsoft Corporation)
R3 aswbIDSAgent; C:\Programmi\AVAST Software\Avast\aswidsagent.exe [5947256 2018-04-04] (AVAST Software)
R2 avast! Antivirus; C:\Programmi\AVAST Software\Avast\AvastSvc.exe [313640 2018-04-04] (AVAST Software)
S2 Claro Internet. RunOuc; C:\Programmi\Claro Internet\UpdateDog\ouc.exe [655712 2011-12-23] ()
S3 DiskDoctorService; C:\Programmi\Norton Utilities 16\Tools\Disk Doctor\DiskDoctorSrv.exe [1150552 2015-03-17] (Symantec Corporation)
R2 EvtEng; C:\Programmi\Intel\Wireless\Bin\EvtEng.exe [114753 2005-12-28] (Intel Corporation) [File not signed]
S2 gupdate; C:\Programmi\Google\Update\GoogleUpdate.exe [107848 2017-10-12] (Google Inc.)
S3 gupdatem; C:\Programmi\Google\Update\GoogleUpdate.exe [107848 2017-10-12] (Google Inc.)
R2 HWDeviceService.exe; C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\DatacardService\HWDeviceService.exe [271712 2011-03-14] ()
R2 MBAMService; C:\Programmi\Malwarebytes\Anti-Malware\mbamservice.exe [4563920 2017-11-01] (Malwarebytes)
S2 MozillaMaintenance; C:\Programmi\Mozilla Maintenance Service\maintenanceservice.exe [174032 2018-03-28] (Mozilla Foundation)
R2 NU16StartManagerSvc; C:\Programmi\Norton Utilities 16\sMonitor\StartManSvc.exe [795736 2015-03-17] (PC Tools)
R2 O2Flash; C:\WINDOWS\system32\DRIVERS\o2flash.exe [72224 2017-10-16] (O2Micro International)
S3 QFXUpdateService; C:\Programmi\KeyScrambler\QFXUpdateService.exe [75792 2017-04-23] ()
R2 RegSrvc; C:\Programmi\Intel\Wireless\Bin\RegSrvc.exe [217164 2005-12-28] (Intel Corporation) [File not signed]
R2 S24EventMonitor; C:\Programmi\Intel\Wireless\Bin\S24EvMon.exe [540745 2005-12-28] (Intel Corporation ) [File not signed]
S3 SDScannerService; C:\Programmi\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
S3 SDUpdateService; C:\Programmi\Spybot - Search & Destroy 2\SDUpdSvc.exe [4088608 2016-09-21] (Safer-Networking Ltd.) [File not signed]
S2 SDWSCService; C:\Programmi\Spybot - Search & Destroy 2\SDWSCSvc.exe [235984 2016-11-24] (Safer-Networking Ltd.) [File not signed]
S3 SpeedDiskService; C:\Programmi\Norton Utilities 16\Tools\SpeedDisk\SpeedDiskSrv.exe [1163864 2015-03-17] (Symantec Corporation)
R3 SystemExplorerHelpService; C:\Programmi\System Explorer\service\SystemExplorerService.exe [567008 2014-12-20] (Mister Group)
R2 WLANKEEPER; C:\Programmi\Intel\Wireless\Bin\WLKeeper.exe [262217 2005-12-28] (Intel(R) Corporation) [File not signed]
S3 WMPNetworkSvc; C:\Programmi\Windows Media Player\WMPNetwk.exe [913408 2009-01-30] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AegisP; C:\WINDOWS\System32\DRIVERS\AegisP.sys [21275 2018-02-25] (Meetinghouse Data Communications) [File not signed]
S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1693456 2017-10-16] (Creative)
S3 andnetndis; C:\WINDOWS\System32\DRIVERS\lgandnetndis.sys [71808 2016-03-02] (LG Electronics Inc.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [167040 2018-04-04] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriverx.sys [185432 2018-03-05] (AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidshx.sys [157368 2018-03-05] (AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswblogx.sys [276688 2018-03-05] (AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbunivx.sys [50336 2018-03-05] (AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [180984 2018-04-04] (AVAST Software)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [42808 2018-04-04] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [124392 2018-04-04] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr.sys [70576 2018-04-04] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [70816 2018-04-04] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [783600 2018-04-04] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [391856 2018-04-04] (AVAST Software)
R3 aswStmXP; C:\WINDOWS\System32\drivers\aswStmXP.sys [205352 2018-04-04] (AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [310784 2018-04-04] (AVAST Software)
R3 cpuz143; C:\Documents and Settings\S_PASINI\Impostazioni locali\temp\cpuz143\cpuz143_x32.sys [49592 2018-04-10] (CPUID) [File not signed]
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae.sys [59896 2017-12-26] ()
R3 huawei_cdcacm; C:\WINDOWS\System32\DRIVERS\ew_jucdcacm.sys [95744 2011-11-24] (Huawei Technologies Co., Ltd.)
R3 huawei_cdcecm; C:\WINDOWS\System32\DRIVERS\ew_jucdcecm.sys [67584 2011-11-24] (Huawei Technologies Co., Ltd.)
R3 huawei_ext_ctrl; C:\WINDOWS\System32\DRIVERS\ew_juextctrl.sys [27520 2011-11-24] (Huawei Technologies Co., Ltd.)
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO32.SYS [23840 2017-10-12] (REALiX(tm))
R3 KeyScrambler; C:\WINDOWS\System32\drivers\keyscrambler.sys [220192 2017-02-19] (QFX Software Corporation)
R3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [40376 2018-04-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [221112 2018-04-10] (Malwarebytes)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1397776 2017-10-16] (Creative Technology Ltd.)
R3 NETwLx32; C:\WINDOWS\System32\DRIVERS\NETwLx32.sys [6609920 2017-10-16] (Intel Corporation)
S3 rtl8139; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [20992 2008-04-13] (Realtek Semiconductor Corporation)
R2 s24trans; C:\WINDOWS\System32\DRIVERS\s24trans.sys [13568 2005-12-28] (Intel Corporation) [File not signed]
R1 SASDIFSV; C:\Programmi\SUPERAntiSpyware\SASDIFSV.SYS [12880 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Programmi\SUPERAntiSpyware\SASKUTIL.SYS [67664 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 Tcpip6; C:\WINDOWS\System32\DRIVERS\tcpip6.sys [226880 2010-02-11] (Microsoft Corporation)
R3 ALSysIO; \??\C:\DOCUME~1\S_PASINI\IMPOST~1\Temp\ALSysIO.sys [X]
S3 AndNetDiag; system32\DRIVERS\lgandnetdiag.sys [X]
S3 ANDNetModem; system32\DRIVERS\lgandnetmodem.sys [X]
S3 catchme; \??\C:\DOCUME~1\S_PASINI\IMPOST~1\Temp\catchme.sys [X]
U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [245376 2011-12-30] (Huawei Technologies Co., Ltd.)
S3 w39n51; system32\DRIVERS\w39n51.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-04-10 18:28 - 2018-04-10 18:30 - 00021339 _____ C:\Documents and Settings\S_PASINI\Desktop\FRST.txt
2018-04-10 18:24 - 2018-04-10 18:29 - 00000000 ____D C:\FRST
2018-04-10 18:23 - 2017-10-03 18:12 - 00797760 _____ C:\Documents and Settings\S_PASINI\Desktop\delfix_1.013.exe
2018-04-10 18:23 - 2017-05-06 18:53 - 01673728 _____ (Farbar) C:\Documents and Settings\S_PASINI\Desktop\FRST.exe
2018-04-10 17:26 - 2018-04-10 18:27 - 00158500 _____ C:\WINDOWS\setupapi.log
2018-04-04 13:38 - 2018-04-04 13:37 - 00320728 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2018-04-01 19:21 - 2018-04-01 19:21 - 00000029 _____ C:\Documents and Settings\S_PASINI\Songs_to_look4.txt
2018-04-01 17:28 - 2018-04-01 17:28 - 00000000 ____D C:\Documents and Settings\S_PASINI\Dati applicazioni\LG Electronics
2018-04-01 17:10 - 2018-04-01 17:10 - 00000839 _____ C:\Documents and Settings\All Users.WINDOWS\Desktop\LG PC Suite.lnk
2018-04-01 17:09 - 2018-04-01 17:09 - 00000000 ____D C:\Documents and Settings\S_PASINI\Impostazioni locali\Dati applicazioni\LG Electronics
2018-04-01 17:09 - 2018-04-01 17:09 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\LG PC Suite
2018-04-01 17:09 - 2018-04-01 17:09 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\LG PC Suite
2018-03-31 09:04 - 2018-03-31 09:04 - 00000194 _____ C:\drwtsn32.log
2018-03-29 20:13 - 2018-04-05 19:11 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\TEMP
2018-03-29 20:13 - 2018-04-05 19:11 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\TEMP
2018-03-28 22:08 - 2018-03-29 07:49 - 00000000 ____D C:\Programmi\Mozilla Firefox
2018-03-25 20:50 - 2018-03-26 09:02 - 00000290 _____ C:\WINDOWS\Tasks\Driver Booster Scheduler.job
2018-03-25 20:50 - 2018-03-25 20:55 - 00001845 _____ C:\Documents and Settings\All Users.WINDOWS\Desktop\Driver Booster 5.lnk
2018-03-25 20:50 - 2018-03-25 20:50 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Driver Booster 5
2018-03-25 20:50 - 2018-03-25 20:50 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Driver Booster 5
2018-03-25 20:49 - 2018-03-25 20:49 - 00000000 ____D C:\Programmi\IObit
2018-03-25 20:48 - 2018-03-26 08:32 - 00000000 ____D C:\Documents and Settings\S_PASINI\Dati applicazioni\IObit
2018-03-25 20:48 - 2018-03-25 20:55 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\IObit
2018-03-25 20:48 - 2018-03-25 20:55 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\IObit
2018-03-25 00:15 - 2018-03-25 00:15 - 00000726 _____ C:\Documents and Settings\All Users.WINDOWS\Desktop\Claro Internet.lnk
2018-03-25 00:15 - 2018-03-25 00:15 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Claro Internet
2018-03-25 00:15 - 2018-03-25 00:15 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Claro Internet
2018-03-25 00:10 - 2018-03-25 00:15 - 00000000 ____D C:\Programmi\Claro Internet
2018-03-24 21:02 - 2011-12-30 22:22 - 00245376 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ewusbnet.sys
2018-03-24 21:02 - 2011-12-30 22:20 - 00199168 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ewusbmdm.sys
2018-03-24 21:02 - 2011-11-24 08:30 - 00095744 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ew_jucdcacm.sys
2018-03-24 21:02 - 2011-11-24 08:30 - 00076544 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ew_jubusenum.sys
2018-03-24 21:02 - 2011-11-24 08:30 - 00067584 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ew_jucdcecm.sys
2018-03-24 21:02 - 2011-11-24 08:30 - 00027520 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ew_juextctrl.sys
2018-03-24 21:02 - 2010-10-08 05:55 - 00025856 _____ (Huawei Tech. Co., Ltd.) C:\WINDOWS\system32\Drivers\ewdcsc.sys
2018-03-24 21:02 - 2010-09-26 07:09 - 00019200 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ew_hwupgrade.sys
2018-03-24 21:02 - 2010-08-05 20:42 - 00861696 _____ (DiBcom SA) C:\WINDOWS\system32\Drivers\mod7700.sys
2018-03-24 21:02 - 2010-07-26 22:52 - 00102784 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ew_hwusbdev.sys
2018-03-24 21:02 - 2010-03-20 01:06 - 00011136 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ew_usbenumfilter.sys
2018-03-24 21:02 - 2005-05-13 05:27 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccid.sys
2018-03-24 17:56 - 2018-04-10 18:30 - 00000000 ____D C:\Documents and Settings\S_PASINI\Impostazioni locali\temp
2018-03-24 17:56 - 2018-04-10 01:20 - 00000000 ____D C:\Documents and Settings\LocalService.NT AUTHORITY.009\Impostazioni locali\temp
2018-03-24 17:56 - 2018-03-24 17:56 - 00000000 ____D C:\Documents and Settings\NetworkService.NT AUTHORITY.008\Impostazioni locali\temp
2018-03-24 17:56 - 2018-03-24 17:56 - 00000000 ____D C:\Documents and Settings\NetworkService.NT AUTHORITY.005\Impostazioni locali\temp
2018-03-24 17:56 - 2018-03-24 17:56 - 00000000 ____D C:\Documents and Settings\NetworkService.NT AUTHORITY.004\Impostazioni locali\temp
2018-03-24 17:56 - 2018-03-24 17:56 - 00000000 ____D C:\Documents and Settings\NetworkService.NT AUTHORITY.003\Impostazioni locali\temp
2018-03-24 17:56 - 2018-03-24 17:56 - 00000000 ____D C:\Documents and Settings\NetworkService.NT AUTHORITY.001\Impostazioni locali\temp
2018-03-24 17:56 - 2018-03-24 17:56 - 00000000 ____D C:\Documents and Settings\NetworkService.NT AUTHORITY.000\Impostazioni locali\temp
2018-03-24 17:56 - 2018-03-24 17:56 - 00000000 ____D C:\Documents and Settings\LocalService.NT AUTHORITY\Impostazioni locali\temp
2018-03-24 17:56 - 2018-03-24 17:56 - 00000000 ____D C:\Documents and Settings\LocalService.NT AUTHORITY.008\Impostazioni locali\temp
2018-03-24 17:56 - 2018-03-24 17:56 - 00000000 ____D C:\Documents and Settings\LocalService.NT AUTHORITY.005\Impostazioni locali\temp
2018-03-24 17:56 - 2018-03-24 17:56 - 00000000 ____D C:\Documents and Settings\LocalService.NT AUTHORITY.004\Impostazioni locali\temp
2018-03-24 17:56 - 2018-03-24 17:56 - 00000000 ____D C:\Documents and Settings\LocalService.NT AUTHORITY.003\Impostazioni locali\temp
2018-03-24 17:56 - 2018-03-24 17:56 - 00000000 ____D C:\Documents and Settings\LocalService.NT AUTHORITY.002\Impostazioni locali\temp
2018-03-24 17:56 - 2018-03-24 17:56 - 00000000 ____D C:\Documents and Settings\LocalService.NT AUTHORITY.001\Impostazioni locali\temp
2018-03-24 17:56 - 2018-03-24 17:56 - 00000000 ____D C:\Documents and Settings\LocalService.NT AUTHORITY.000\Impostazioni locali\temp
2018-03-24 17:56 - 2018-03-24 17:56 - 00000000 ____D C:\Documents and Settings\Administrator\Impostazioni locali\temp
2018-03-24 17:56 - 2018-03-24 17:56 - 00000000 ____D C:\Documents and Settings\Administrator.SERGIOPASINI\Impostazioni locali\temp
2018-03-17 20:11 - 2018-03-17 20:11 - 00000000 ____D C:\Programmi\Tweaking.com
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-04-10 18:23 - 2017-10-11 22:03 - 01750083 ____C C:\WINDOWS\WindowsUpdate.log
2018-04-10 17:41 - 2017-12-17 09:06 - 00000350 ____H C:\WINDOWS\Tasks\Avast Emergency Update.job
2018-04-10 17:27 - 2017-10-11 22:15 - 00000000 ___HD C:\Documents and Settings\S_PASINI\Impostazioni locali\Dati applicazioni
2018-04-10 17:25 - 2017-10-11 22:15 - 00000000 ____D C:\Documents and Settings\S_PASINI
2018-04-10 17:23 - 2017-12-24 17:14 - 00040376 ____C (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2018-04-10 17:22 - 2017-12-24 17:14 - 00221112 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2018-04-10 17:20 - 2017-10-11 22:11 - 00000006 ___HC C:\WINDOWS\Tasks\SA.DAT
2018-04-10 01:30 - 2018-03-05 09:23 - 00064200 _____ C:\Documents and Settings\LocalService.NT AUTHORITY.009\Impostazioni locali\Dati applicazioni\FontCache3.0.0.0.dat
2018-04-10 01:30 - 2017-10-11 22:11 - 00000000 ___HD C:\Documents and Settings\LocalService.NT AUTHORITY.009\Impostazioni locali\Dati applicazioni
2018-04-10 01:29 - 2017-10-19 18:57 - 00086502 ____C C:\Documents and Settings\LocalService.NT AUTHORITY.009\Impostazioni locali\Dati applicazioni\WPFFontCache_v0400-System.dat
2018-04-10 01:29 - 2017-10-11 22:15 - 00000194 __SHC C:\Documents and Settings\S_PASINI\ntuser.ini
2018-04-10 01:29 - 2017-10-11 22:11 - 00032420 ____N C:\WINDOWS\SchedLgU.Txt
2018-04-10 01:11 - 2018-01-11 17:43 - 00000000 ____D C:\Documents and Settings\S_PASINI\Dati applicazioni\vlc
2018-04-09 01:06 - 2017-10-12 21:14 - 00000000 ____D C:\Documents and Settings\S_PASINI\Dati applicazioni\Free Download Manager
2018-04-07 19:38 - 2014-05-02 17:48 - 00000000 ____D C:\WINDOWS\Minidump
2018-04-06 19:46 - 2017-10-11 22:15 - 00000000 ___RD C:\Documents and Settings\S_PASINI\Menu Avvio\Programmi
2018-04-06 19:44 - 2017-10-11 18:43 - 00000000 ___RD C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Esecuzione automatica
2018-04-06 19:44 - 2017-10-11 18:43 - 00000000 ___RD C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Esecuzione automatica
2018-04-06 19:44 - 2017-10-11 18:43 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi
2018-04-06 19:44 - 2017-10-11 18:43 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi
2018-04-06 19:32 - 2017-10-12 19:22 - 00000000 ____D C:\Programmi\Speccy
2018-04-06 18:48 - 2017-10-12 13:36 - 00000000 ____D C:\Programmi\SUPERAntiSpyware
2018-04-06 17:10 - 2017-10-13 07:59 - 00000000 ____D C:\Programmi\Hard Disk Sentinel
2018-04-06 08:18 - 2015-11-05 16:36 - 00000000 ____D C:\Documents and Settings\S_PASINI\Documenti\ThyBooks'n stuff
2018-04-06 07:38 - 2017-10-11 18:44 - 01266812 ____C C:\WINDOWS\system32\PerfStringBackup.INI
2018-04-06 07:38 - 2008-04-14 09:00 - 00553950 ____C C:\WINDOWS\system32\perfh010.dat
2018-04-06 07:38 - 2008-04-14 09:00 - 00104576 ____C C:\WINDOWS\system32\perfc010.dat
2018-04-05 19:16 - 2017-10-11 22:15 - 00000000 __SHD C:\Documents and Settings\S_PASINI\Impostazioni locali\Cronologia
2018-04-05 19:11 - 2018-01-01 19:50 - 00000000 ____D C:\Documents and Settings\S_PASINI\Dati applicazioni\Norton Utilities 16
2018-04-05 19:11 - 2017-10-22 10:14 - 05087232 _____ C:\Documents and Settings\Administrator.SERGIOPASINI\s-1-5-21-823518204-484061587-842925246-500.rrr
2018-04-05 19:11 - 2017-10-19 19:16 - 00000000 ____D C:\Documents and Settings\Administrator.SERGIOPASINI
2018-04-05 19:11 - 2017-10-12 17:05 - 07847936 _____ C:\Documents and Settings\S_PASINI\s-1-5-21-823518204-484061587-842925246-1003.rrr
2018-04-05 19:11 - 2017-10-12 17:05 - 00245760 _____ C:\Documents and Settings\LocalService.NT AUTHORITY.009\s-1-5-19.rrr
2018-04-05 19:11 - 2017-10-11 22:11 - 00000000 __SHD C:\Documents and Settings\LocalService.NT AUTHORITY.009
2018-04-05 19:10 - 2017-10-12 17:05 - 26447872 _____ C:\WINDOWS\system32\config\software.rrr
2018-04-05 19:10 - 2017-10-12 17:05 - 04931584 _____ C:\WINDOWS\system32\config\default.rrr
2018-04-05 19:10 - 2017-10-12 17:05 - 00245760 _____ C:\Documents and Settings\NetworkService.NT AUTHORITY.008\s-1-5-20.rrr
2018-04-05 19:10 - 2017-10-11 22:11 - 00000000 __SHD C:\Documents and Settings\NetworkService.NT AUTHORITY.008
2018-04-05 18:56 - 2014-04-27 02:10 - 00000000 ____D C:\WINDOWS\Registration
2018-04-05 18:48 - 2017-12-25 19:18 - 00000000 ____D C:\Programmi\Norton Utilities 16
2018-04-04 13:37 - 2017-12-17 09:06 - 00391856 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2018-04-04 13:37 - 2017-12-17 09:06 - 00310784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2018-04-04 13:37 - 2017-12-17 09:06 - 00205352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStmXP.sys
2018-04-04 13:37 - 2017-12-17 09:06 - 00167040 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2018-04-04 13:37 - 2017-12-17 09:06 - 00124392 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2018-04-04 13:37 - 2017-12-17 09:06 - 00070816 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2018-04-04 13:37 - 2017-12-17 09:06 - 00070576 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2018-04-04 13:37 - 2017-12-17 09:06 - 00042808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2018-04-04 13:36 - 2017-12-21 14:16 - 00180984 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2018-04-04 13:36 - 2017-12-17 09:06 - 00783600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2018-04-04 12:48 - 2012-12-30 16:33 - 00000000 ____D C:\Documents and Settings\Documenti\Personal PH
2018-04-04 08:30 - 2017-12-12 17:58 - 00000000 ____D C:\Documents and Settings\S_PASINI\Dati applicazioni\Software Informer
2018-04-03 21:03 - 2017-10-12 16:28 - 00000000 ____D C:\Documents and Settings\S_PASINI\Dati applicazioni\BitTorrent
2018-04-02 17:26 - 2016-12-20 16:15 - 00000332 ___SH C:\boot.ini
2018-04-02 01:14 - 2017-10-11 22:15 - 00000000 ___RD C:\Documents and Settings\S_PASINI\Documenti
2018-04-01 17:28 - 2017-10-11 22:15 - 00000000 __RHD C:\Documents and Settings\S_PASINI\Dati applicazioni
2018-04-01 17:08 - 2017-10-21 13:01 - 00000000 ____D C:\Programmi\LG Electronics
2018-04-01 17:07 - 2017-10-11 21:57 - 00000000 ___RD C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Accessori
2018-04-01 17:07 - 2017-10-11 21:57 - 00000000 ___RD C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Accessori
2018-03-30 12:33 - 2013-05-16 11:23 - 00000000 ____D C:\Documents and Settings\Documenti\Documenti\movies
2018-03-30 02:41 - 2017-10-11 22:39 - 00008704 ____C C:\Documents and Settings\S_PASINI\Impostazioni locali\Dati applicazioni\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-03-29 20:47 - 2017-10-11 22:20 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\DatacardService
2018-03-29 20:47 - 2017-10-11 22:20 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\DatacardService
2018-03-29 20:13 - 2016-12-20 16:38 - 00000000 __RHD C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni
2018-03-29 19:47 - 2014-04-27 02:24 - 00000000 ____D C:\WINDOWS\system32\ReinstallBackups
2018-03-29 19:45 - 2018-01-08 16:17 - 00000000 ____D C:\Programmi\Intel
2018-03-29 12:52 - 2017-10-19 17:50 - 00000000 ____D C:\Programmi\Mozilla Maintenance Service
2018-03-29 07:49 - 2014-05-08 18:55 - 00000000 ____D C:\programmi
2018-03-27 13:30 - 2008-04-14 09:00 - 00013062 ____C C:\WINDOWS\system32\wpa.dbl
2018-03-27 08:53 - 2017-10-11 22:11 - 00000042 __SHC C:\Documents and Settings\LocalService.NT AUTHORITY.009\ntuser.ini
2018-03-25 20:57 - 2017-10-12 14:03 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\ProductData
2018-03-25 20:57 - 2017-10-12 14:03 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\ProductData
2018-03-25 01:33 - 2014-05-08 18:55 - 00000000 ____D C:\Programmi\file comuni
2018-03-24 17:56 - 2017-10-19 19:16 - 00000000 ___HD C:\Documents and Settings\Administrator.SERGIOPASINI\Impostazioni locali
2018-03-24 17:56 - 2017-10-11 22:15 - 00000000 ___HD C:\Documents and Settings\S_PASINI\Impostazioni locali
2018-03-24 17:56 - 2017-10-11 22:11 - 00000000 ___HD C:\Documents and Settings\NetworkService.NT AUTHORITY.008\Impostazioni locali
2018-03-24 17:56 - 2017-10-11 22:11 - 00000000 ___HD C:\Documents and Settings\LocalService.NT AUTHORITY.009\Impostazioni locali
2018-03-24 17:56 - 2016-12-20 20:16 - 00000000 ___HD C:\Documents and Settings\LocalService.NT AUTHORITY.008\Impostazioni locali
2018-03-24 17:56 - 2015-05-11 10:19 - 00000000 ___HD C:\Documents and Settings\Administrator\Impostazioni locali
2018-03-24 17:56 - 2014-05-08 21:18 - 00000000 ___HD C:\Documents and Settings\LocalService.NT AUTHORITY.005\Impostazioni locali
2018-03-24 17:56 - 2014-05-08 21:17 - 00000000 ___HD C:\Documents and Settings\NetworkService.NT AUTHORITY.005\Impostazioni locali
2018-03-24 17:56 - 2014-05-06 01:44 - 00000000 ___HD C:\Documents and Settings\LocalService.NT AUTHORITY.004\Impostazioni locali
2018-03-24 17:56 - 2014-05-06 01:43 - 00000000 ___HD C:\Documents and Settings\NetworkService.NT AUTHORITY.004\Impostazioni locali
2018-03-24 17:56 - 2014-04-27 02:20 - 00000000 ___HD C:\Documents and Settings\NetworkService.NT AUTHORITY.003\Impostazioni locali
2018-03-24 17:56 - 2014-04-27 02:20 - 00000000 ___HD C:\Documents and Settings\LocalService.NT AUTHORITY.003\Impostazioni locali
2018-03-24 17:56 - 2014-04-15 14:22 - 00000000 ___HD C:\Documents and Settings\LocalService.NT AUTHORITY.002\Impostazioni locali
2018-03-24 17:56 - 2014-03-22 22:28 - 00000000 ___HD C:\Documents and Settings\LocalService.NT AUTHORITY.001\Impostazioni locali
2018-03-24 17:56 - 2014-03-22 22:26 - 00000000 ___HD C:\Documents and Settings\NetworkService.NT AUTHORITY.001\Impostazioni locali
2018-03-24 17:56 - 2013-07-27 20:39 - 00000000 ___HD C:\Documents and Settings\NetworkService.NT AUTHORITY.000\Impostazioni locali
2018-03-24 17:56 - 2013-07-27 20:39 - 00000000 ___HD C:\Documents and Settings\LocalService.NT AUTHORITY.000\Impostazioni locali
2018-03-24 17:56 - 2013-07-25 12:17 - 00000000 ___HD C:\Documents and Settings\LocalService.NT AUTHORITY\Impostazioni locali
2018-03-24 17:52 - 2008-04-14 09:00 - 00000227 _____ C:\WINDOWS\system.ini
2018-03-24 00:49 - 2017-12-27 17:59 - 00000326 ____H C:\WINDOWS\Tasks\CCleaner Update.job
2018-03-24 00:06 - 2017-10-19 17:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Malwarebytes' Anti-Malware (portable)
2018-03-24 00:06 - 2017-10-19 17:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Malwarebytes' Anti-Malware (portable)
2018-03-21 07:27 - 2018-02-22 07:24 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\OnlineUpdate
2018-03-21 07:27 - 2018-02-22 07:24 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\OnlineUpdate
2018-03-21 07:27 - 2018-02-22 07:24 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\log
2018-03-21 07:27 - 2018-02-22 07:24 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\log
2018-03-19 20:39 - 2018-02-08 22:07 - 00000534 _____ C:\WINDOWS\Tasks\Tweaking.com - Windows Repair Tray Icon.job
2018-03-17 20:52 - 2017-12-27 17:58 - 00000654 ____C C:\Documents and Settings\All Users.WINDOWS\Desktop\CCleaner.lnk
2018-03-17 20:25 - 2017-12-12 17:57 - 00000000 ____D C:\Programmi\Software Informer
2018-03-17 20:25 - 2017-10-12 13:58 - 00000717 _____ C:\Documents and Settings\All Users.WINDOWS\Desktop\Software Informer.lnk
2018-03-17 20:25 - 2017-10-12 13:58 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Software Informer
2018-03-17 20:25 - 2017-10-12 13:58 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Software Informer
2018-03-15 20:55 - 2018-01-03 07:16 - 00000000 ____D C:\Documents and Settings\S_PASINI\Dati applicazioni\tor
2018-03-15 00:48 - 2017-10-12 13:29 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Spybot - Search & Destroy
2018-03-15 00:48 - 2017-10-12 13:29 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Spybot - Search & Destroy
==================== Files in the root of some directories =======
2017-10-11 22:39 - 2018-03-30 02:41 - 0008704 ____C () C:\Documents and Settings\S_PASINI\Impostazioni locali\Dati applicazioni\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-10-24 20:10 - 2017-10-24 20:10 - 0000036 ____C () C:\Documents and Settings\S_PASINI\Impostazioni locali\Dati applicazioni\housecall.guid.cache
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
==================== End of log ============================