Condividi:        

Problemi con delta homes

Come rimuovere virus e spyware? Le carte di credito sono davvero sicure in rete? È possibile navigare anonimi? Con quali programmi tutelare la propria privacy? Come proteggere i file importanti? Se volete una risposta a queste e altre domande questo è il luogo giusto!

Moderatori: m.paolo, kadosh, Luke57

Problemi con delta homes

Postdi gringo » 27/09/13 12:53

Salve da oggi ogni qualvolta apro mozzilla o googlecrome o explorer come prima spunta mi apre con la pagina del sito "Delta Homes"
in rete ho letto diverse soluzioni ma non c'è verso di disistallare, ho provato con un programma "adwcleaner-2-306-en-win" che dicevano bene ma inutile, ho provato a disistallare e istallare sia google che mozilla ma niente da fare,sono diciamo alle prime cose elementari in confronto a voi esperti , da premettere che non vado nei siti diciamo a rischio leggo notizie di giornali e curiosità in generale non scarico progammi illegali ogni tanto qualche film , il mio sistema operativo è windows 7 ultimate e antivirus sicurity essenzial, aspettando un Vostro aiuto vi saluto.
Avatar utente
gringo
Utente Senior
 
Post: 139
Iscritto il: 08/09/06 21:12

Sponsor
 

Re: Problemi con delta homes

Postdi kyiv » 27/09/13 14:50

..quindi Adwcleaner , Junkwareremovaltool e Malwarebytes non sono riusciti ad eliminare delta homes ???

salva sul desktop OTL http://oldtimer.geekstogo.com/OTL.exe

metti la spunta su SCAN ALL USERS.
sotto output spunta minimal output
in File Age seleziona 60 Days
metti la spunta a LOP Check and Purity Check
premi RUN SCAN e lascia fare la scansione.

..allega il log OTL.txt.
kyiv
Utente Junior
 
Post: 87
Iscritto il: 24/01/13 10:51

Re: Problemi con delta homes

Postdi gringo » 27/09/13 15:51

OTL logfile created on: 27/09/2013 16:05:36 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Salvatore\Downloads
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16686)
Locale: 00000410 | Country: Italia | Language: ITA | Date Format: dd/MM/yyyy

2,00 Gb Total Physical Memory | 0,98 Gb Available Physical Memory | 48,92% Memory free
4,00 Gb Paging File | 2,60 Gb Available in Paging File | 64,94% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 465,66 Gb Total Space | 314,23 Gb Free Space | 67,48% Space Free | Partition Type: NTFS
Drive D: | 1,84 Gb Total Space | 1,62 Gb Free Space | 88,02% Space Free | Partition Type: FAT
Drive K: | 298,09 Gb Total Space | 211,17 Gb Free Space | 70,84% Space Free | Partition Type: NTFS
Drive L: | 7,46 Gb Total Space | 5,21 Gb Free Space | 69,91% Space Free | Partition Type: FAT32
Drive O: | 14,61 Gb Total Space | 10,61 Gb Free Space | 72,63% Space Free | Partition Type: FAT32

Computer Name: SALVATORE-PC | User Name: Salvatore | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days

========== Processes (SafeList) ==========

PRC - C:\Users\Salvatore\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Users\Salvatore\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe (Google)
PRC - C:\Programmi\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Programmi\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe (Samsung)
PRC - C:\Programmi\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)
PRC - C:\Programmi\Samsung\Kies\Kies.exe (Samsung)
PRC - C:\Users\Salvatore\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.)
PRC - C:\Programmi\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.)
PRC - c:\Programmi\Microsoft Security Client\NisSrv.exe (Microsoft Corporation)
PRC - c:\Programmi\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
PRC - C:\Programmi\Microsoft Security Client\msseces.exe (Microsoft Corporation)
PRC - C:\Users\Salvatore\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
PRC - C:\Programmi\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
PRC - C:\Programmi\RealNetworks\RealDownloader\rndlresolversvc.exe ()
PRC - C:\Programmi\Rainlendar2\Rainlendar2.exe ()
PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation)
PRC - C:\Programmi\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.)
PRC - C:\Programmi\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE (Microsoft Corp.)
PRC - C:\Programmi\SUPERAntiSpyware\SASCore.exe (SUPERAntiSpyware.com)
PRC - C:\Programmi\Nero\Update\NASvc.exe (Nero AG)
PRC - C:\Windows\System32\atieclxx.exe (AMD)
PRC - C:\Windows\System32\atiesrxx.exe (AMD)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Programmi\Unlocker\UnlockerAssistant.exe ()
PRC - C:\Windows\System32\LxrSII1s.exe (Lexar Media, Inc.)
PRC - C:\Programmi\WinZip\WZQKPICK.EXE (WinZip Computing, S.L.)
PRC - C:\Programmi\Google\Google Talk\googletalk.exe (Google)
PRC - C:\Programmi\Canon\IJPLM\ijplmsvc.exe ()
PRC - C:\Windows\System32\spool\drivers\w32x86\3\WrtProc.exe ()
PRC - C:\Windows\System32\spool\drivers\w32x86\3\WrtMon.exe ()


========== Modules (No Company Name) ==========

MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Theme\fbaadafecb211c0faea42e24cb927249\Kies.Theme.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\DummyStorePlugin\6577f6dfb5a450d0bbe907f4ac5c7ca6\DummyStorePlugin.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\DeviceStoryAlbum\0698cc77475c8caa7e308482cb23306c\DeviceStoryAlbum.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\DevicePodcast\caab717668516d34163d81f7c15063de\DevicePodcast.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\DevicePhoto\da3c1ac2ee22b60b1611a59504f330fa\DevicePhoto.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\DeviceVideo\a1dc4e59f6d23dc069ced8ee188d91d6\DeviceVideo.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\DeviceMusic\2e588944a33fb74447f37fa98a8935c6\DeviceMusic.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\VideoManager\10cde859b8832ba04dbfdc8d517f7bb2\VideoManager.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\PhotoManager\65b408c04b063d08d2b547c11bdec6f0\PhotoManager.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Phonebook\7e8e620b9650110c081a9a026d7b6ca0\Phonebook.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\StoryAlbumManager\52097be75910b6428a5059b382a0d7c3\StoryAlbumManager.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\MusicManager\ed9f7f160fcd2681aa04d75afe442618\MusicManager.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\BATPlugin\307394ca879fc11c7151195392b7eea2\BATPlugin.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.MediaDB\80c9430d2dee9d9313fcfbee1d46a4c8\Kies.Common.MediaDB.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.StoreMa#\0cee5612bdc5291d2c06bddf7e88aa08\Kies.Common.StoreManager.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.AllShare\aa1b728ae883689a927df14c84e4578e\Kies.Common.AllShare.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Podcaster\1642de15f782833f16e1b5cfb3db109f\Podcaster.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.CRMMana#\e970ec66efbca8e11aec1b5b68aed645\Kies.Common.CRMManager.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DBManag#\7b7a9d28366d81273525fcaba88a1eee\Kies.Common.DBManager.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\df95d587d21fff64ecce50025c410a50\Kies.Common.DeviceServiceLib.FirmwareUpdate.Common.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\c7977b32f20fa76fe8de852a0827ff16\Kies.Common.DeviceServiceLib.FirmwareUpdate.Downloader.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\10a3971b07f931986349e09d15f8a6b9\Kies.Common.DeviceServiceLib.FileService.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\996a62c60fbb45876fcdca171628b61c\Kies.Common.DeviceService.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\DeviceCommonLib\3c7bc81c41aac5b1fba57f07ff64e904\DeviceCommonLib.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Plugin.Content#\20fccb1e895e5aa3029a3e278acc7391\Kies.Plugin.ContentsManagerLib.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.MainUI\f750b1be81c5bd9ab352aae07e56373d\Kies.Common.MainUI.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\edc38c2279bb5fcb9741cd2fdf10e20a\Kies.Common.DeviceServiceLib.FirmwareUpdate.FirmwareUpdateAgentHelper.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\38bee848395238295bd47db932d2821c\Kies.Common.DeviceServiceLib.DeviceManagement.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.Multime#\436e9e091158681c16725bd31e6406a4\Kies.Common.Multimedia.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.PRPLAYERCOR#\2631759e35a0681f57e2f3975ef09db8\Interop.PRPLAYERCORELib.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\897b793626102d13fe581f59a1009f0e\Kies.Common.DeviceServiceLib.Interface.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\bb7e0f555552f984aebfd66308b8e81b\Kies.Common.DeviceServiceLib.DeviceDataService.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\DeviceHost\bd5e8f31142f80ddc03cb05d8e9eda1f\DeviceHost.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.Util\66ae8423665c86e7375371758eda7b7e\Kies.Common.Util.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Locale\1ec0744ead03224bb0f4df63491b4d81\Kies.Locale.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.UI\cbb5fc04fcd4feb75fa70e5527d0568e\Kies.UI.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.MVVM\e3ed6d800bc802eb464df3d6edbe262d\Kies.MVVM.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Interface\c2770495f14a94ae913d0eb1fd70b15e\Kies.Interface.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies\2b0ca7a15386c11f3145199b437c3bda\Kies.ni.exe ()
MOD - C:\Programmi\Mozilla Firefox\mozjs.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\ASF_cSharpAPI\c5efe841e2998c266e0f5e29bed04b55\ASF_cSharpAPI.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\GongSolutions.Wpf.D#\66fa34073852beddee22e89b8bba2d75\GongSolutions.Wpf.DragDrop.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceProce#\d8f4106eee38420ac5eda7d630dc53fc\System.ServiceProcess.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Remo#\f17c7bc239be0eb7661cbcd3cff1ea16\System.Runtime.Remoting.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\c8648331484537c338fe2b606a9db8b7\System.Xaml.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\8532e498c23b60bee2e5ffcf4411c86d\PresentationFramework.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\40841519650bcf0de403049960550c20\PresentationCore.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\d2382128944d16da8adf76c58fb8e6f1\WindowsBase.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\11467cefb818233a909bdd3426ccab69\System.Configuration.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\7b6f508b953eebe51c55ad40f468af2e\System.Core.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\b7285e9f3d19a05d5cc2c049e451685d\System.Xml.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System\08c630893416f3379c9455870908ad6c\System.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.DevFileServ#\af55d460c3a7f10ca7233b050a480767\Interop.DevFileServiceLib.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.MP3FileInfo#\be9d4a331a41a83465c56b735845c86b\Interop.MP3FileInfoCOMLib.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.OGGFileInfo#\0cd09e4839a2bfe65311191d2e61c698\Interop.OGGFileInfoCOMLib.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.P3MPINTERFA#\a474771ad225ef2b83d38a86a160ed53\Interop.P3MPINTERFACECTRLLib.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\CabLib\abebd90a3673cde0cd3a1b81a9f18f86\CabLib.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.DeviceSearc#\b1fa1960e4200803561901da81834924\Interop.DeviceSearchLib.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\a01e07e47ecdd94ae099e8c4bf650516\mscorlib.ni.dll ()
MOD - C:\Programmi\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF ()
MOD - C:\Users\Salvatore\AppData\Roaming\Dropbox\bin\libcef.dll ()
MOD - C:\Programmi\Rainlendar2\plugins\iCalendarPlugin.dll ()
MOD - C:\Programmi\Rainlendar2\Rainlendar2.exe ()
MOD - C:\Users\Salvatore\AppData\Roaming\Dropbox\bin\wxmsw28uh_vc.dll ()
MOD - C:\Programmi\Rainlendar2\lfs.dll ()
MOD - C:\Programmi\Rainlendar2\lua52.dll ()
MOD - C:\Programmi\WinRAR\RarExt.dll ()
MOD - C:\Programmi\Unlocker\UnlockerCOM.dll ()
MOD - C:\Programmi\Unlocker\UnlockerHook.dll ()
MOD - C:\Programmi\Unlocker\UnlockerAssistant.exe ()
MOD - C:\Windows\System32\spool\drivers\w32x86\3\WrtProc.exe ()
MOD - C:\Windows\System32\spool\drivers\w32x86\3\WrtMon.exe ()


========== Services (SafeList) ==========

SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (MozillaMaintenance) -- C:\Programmi\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (NisSrv) -- c:\Programmi\Microsoft Security Client\NisSrv.exe (Microsoft Corporation)
SRV - (MsMpSvc) -- c:\Programmi\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
SRV - (WinDefend) -- C:\Programmi\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (AdobeARMservice) -- C:\Programmi\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (RealNetworks Downloader Resolver Service) -- C:\Programmi\RealNetworks\RealDownloader\rndlresolversvc.exe ()
SRV - (Microsoft SharePoint Workspace Audit Service) -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE (Microsoft Corporation)
SRV - (wlidsvc) -- C:\Programmi\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.)
SRV - (!SASCORE) -- C:\Programmi\SUPERAntiSpyware\SASCore.exe (SUPERAntiSpyware.com)
SRV - (WatAdminSvc) -- C:\Windows\System32\Wat\WatAdminSvc.exe (Microsoft Corporation)
SRV - (NAUpdate) -- C:\Programmi\Nero\Update\NASvc.exe (Nero AG)
SRV - (AMD External Events Utility) -- C:\Windows\System32\atiesrxx.exe (AMD)
SRV - (WMPNetworkSvc) -- C:\Programmi\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)
SRV - (osppsvc) -- C:\Programmi\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation)
SRV - (ose) -- C:\Programmi\Common Files\microsoft shared\Source Engine\OSE.EXE (Microsoft Corporation)
SRV - (LxrSII1s) -- C:\Windows\System32\LxrSII1s.exe (Lexar Media, Inc.)
SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
SRV - (PeerDistSvc) -- C:\Windows\System32\PeerDistSvc.dll (Microsoft Corporation)
SRV - (IJPLMSVC) -- C:\Programmi\Canon\IJPLM\ijplmsvc.exe ()


========== Driver Services (SafeList) ==========

DRV - (VGPU) -- System32\drivers\rdvgkmd.sys File not found
DRV - (tsusbhub) -- system32\drivers\tsusbhub.sys File not found
DRV - (Synth3dVsc) -- System32\drivers\synth3dvsc.sys File not found
DRV - (BstHdDrv) -- C:\Program Files\BlueStacks\HD-Hypervisor-x86.sys File not found
DRV - (MpKsl0898c893) -- c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{264412C1-B6D9-4170-8433-72F9715343AD}\MpKsl0898c893.sys (Microsoft Corporation)
DRV - (VBoxDrv) -- C:\Windows\System32\drivers\VBoxDrv.sys (Oracle Corporation)
DRV - (VBoxNetFlt) -- C:\Windows\System32\drivers\VBoxNetFlt.sys (Oracle Corporation)
DRV - (VBoxNetAdp) -- C:\Windows\System32\drivers\VBoxNetAdp.sys (Oracle Corporation)
DRV - (VBoxUSBMon) -- C:\Windows\System32\drivers\VBoxUSBMon.sys (Oracle Corporation)
DRV - (VBoxUSB) -- C:\Windows\System32\drivers\VBoxUSB.sys (Oracle Corporation)
DRV - (ssudmdm) -- C:\Windows\System32\drivers\ssudmdm.sys (DEVGURU Co., LTD.(www.devguru.co.kr))
DRV - (dg_ssudbus) -- C:\Windows\System32\drivers\ssudbus.sys (DEVGURU Co., LTD.(www.devguru.co.kr))
DRV - (NisDrv) -- C:\Windows\System32\drivers\NisDrvWFP.sys (Microsoft Corporation)
DRV - (SCDEmu) -- C:\Windows\System32\drivers\scdemu.sys (Power Software Ltd)
DRV - (pwdrvio) -- C:\Windows\System32\pwdrvio.sys ()
DRV - (pwdspio) -- C:\Windows\System32\pwdspio.sys ()
DRV - (sptd) -- C:\Windows\System32\drivers\sptd.sys (Duplex Secure Ltd.)
DRV - (dtsoftbus01) -- C:\Windows\System32\drivers\dtsoftbus01.sys (DT Soft Ltd)
DRV - (RdpVideoMiniport) -- C:\Windows\System32\drivers\rdpvideominiport.sys (Microsoft Corporation)
DRV - (TsUsbFlt) -- C:\Windows\System32\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV - (HssDRV6) -- C:\Windows\System32\drivers\hssdrv6.sys (AnchorFree Inc.)
DRV - (taphss) -- C:\Windows\System32\drivers\taphss.sys (AnchorFree Inc)
DRV - (SASDIFSV) -- C:\Programmi\SUPERAntiSpyware\sasdifsv.sys (SUPERAdBlocker.com and SUPERAntiSpyware.com)
DRV - (NBVol) -- C:\Windows\System32\drivers\NBVol.sys (Nero AG)
DRV - (NBVolUp) -- C:\Windows\System32\drivers\NBVolUp.sys (Nero AG)
DRV - (SASKUTIL) -- C:\Programmi\SUPERAntiSpyware\SASKUTIL.SYS (SUPERAdBlocker.com and SUPERAntiSpyware.com)
DRV - (amdkmdag) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV - (amdkmdap) -- C:\Windows\System32\drivers\atikmpag.sys (Advanced Micro Devices, Inc.)
DRV - (AtiHDAudioService) -- C:\Windows\System32\drivers\AtihdW73.sys (Advanced Micro Devices)
DRV - (vmbus) -- C:\Windows\System32\drivers\vmbus.sys (Microsoft Corporation)
DRV - (storflt) -- C:\Windows\System32\drivers\vmstorfl.sys (Microsoft Corporation)
DRV - (storvsc) -- C:\Windows\System32\drivers\storvsc.sys (Microsoft Corporation)
DRV - (WinUsb) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation)
DRV - (VMBusHID) -- C:\Windows\System32\drivers\VMBusHID.sys (Microsoft Corporation)
DRV - (s3cap) -- C:\Windows\System32\drivers\vms3cap.sys (Microsoft Corporation)
DRV - (UnlockerDriver5) -- C:\Programmi\Unlocker\UnlockerDriver5.sys ()
DRV - (LxrSII1d) -- C:\Windows\System32\drivers\LxrSII1d.sys (Lexar Media, Inc.)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-21-2170091305-4224216958-3418588652-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKU\S-1-5-21-2170091305-4224216958-3418588652-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com
IE - HKU\S-1-5-21-2170091305-4224216958-3418588652-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-2170091305-4224216958-3418588652-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKU\S-1-5-21-2170091305-4224216958-3418588652-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://it.msn.com/?ocid=iehp
IE - HKU\S-1-5-21-2170091305-4224216958-3418588652-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = it-IT
IE - HKU\S-1-5-21-2170091305-4224216958-3418588652-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0D 97 00 9E 47 6B CD 01 [binary data]
IE - HKU\S-1-5-21-2170091305-4224216958-3418588652-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com
IE - HKU\S-1-5-21-2170091305-4224216958-3418588652-1001\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
IE - HKU\S-1-5-21-2170091305-4224216958-3418588652-1001\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-2170091305-4224216958-3418588652-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR
IE - HKU\S-1-5-21-2170091305-4224216958-3418588652-1001\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\S-1-5-21-2170091305-4224216958-3418588652-1001\..\SearchScopes\{B1792149-25CB-4142-837C-DB45EA42B2E1}: "URL" = http://www.google.it/#hl=it&source=hp&q={searchTerms}&aq=f&aqi=g10&aql=&oq=&gs_rfai=&fp=9fca69c98b5d77d7
IE - HKU\S-1-5-21-2170091305-4224216958-3418588652-1001\..\SearchScopes\{C7441BF9-BFC3-4CC3-BB61-4A764CADEB91}: "URL" = http://it.search.yahoo.com/search?fr=ch ... =114576&p={searchTerms}
IE - HKU\S-1-5-21-2170091305-4224216958-3418588652-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "https://www.google.it/"
FF - prefs.js..extensions.enabledAddons: %7B77b819fa-95ad-4f2c-ac7c-486b356188a9%7D:4.0.20130422
FF - prefs.js..extensions.enabledAddons: %7B19EB90DC-A456-458b-8AAC-616D91AAFCE1%7D:0.9
FF - prefs.js..extensions.enabledAddons: %7B1018e4d6-728f-4b20-ad56-37578a4de76b%7D:4.2.12
FF - prefs.js..extensions.enabledAddons: translator%40zoli.bod:2.1.0.3
FF - prefs.js..extensions.enabledAddons: smarterwiki%40wikiatic.com:5.1.9
FF - prefs.js..extensions.enabledAddons: printedit%40DW-dev:10.1
FF - prefs.js..extensions.enabledAddons: %7Bb9db16a4-6edc-47ec-a1f4-b86292ed211d%7D:4.9.21
FF - prefs.js..extensions.enabledAddons: gmail%40softice86.com:1.0.5
FF - prefs.js..extensions.enabledAddons: %7B582195F5-92E7-40a0-A127-DB71295901D7%7D:0.6.4.1
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:24.0
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3505.0912: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll File not found
FF - HKLM\Software\MozillaPlugins\@Nero.com/KM: C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=16.0.2.32: c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.2: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.2: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.2: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=16.0.2.32: c:\program files\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF - HKLM\Software\MozillaPlugins\@realnetworks.com/npdlplugin;version=1: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.8: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\Salvatore\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O1DPlugin: C:\Users\Salvatore\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Users\Salvatore\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Salvatore\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Salvatore\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 24.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 24.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 17.0.2\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 17.0.2\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins
Avatar utente
gringo
Utente Senior
 
Post: 139
Iscritto il: 08/09/06 21:12

Re: Problemi con delta homes

Postdi gringo » 27/09/13 15:51

[2013/09/27 10:56:52 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Salvatore\AppData\Roaming\mozilla\Extensions
[2013/09/27 14:02:10 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Salvatore\AppData\Roaming\mozilla\Firefox\Profiles\xllia1l9.default\extensions
[2013/09/27 11:08:55 | 000,000,000 | ---D | M] (Flagfox) -- C:\Users\Salvatore\AppData\Roaming\mozilla\Firefox\Profiles\xllia1l9.default\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}
[2013/09/27 11:08:55 | 000,000,000 | ---D | M] (IE Tab) -- C:\Users\Salvatore\AppData\Roaming\mozilla\Firefox\Profiles\xllia1l9.default\extensions\{77b819fa-95ad-4f2c-ac7c-486b356188a9}
[2013/09/27 11:12:51 | 000,000,000 | ---D | M] (WOT) -- C:\Users\Salvatore\AppData\Roaming\mozilla\Firefox\Profiles\xllia1l9.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2013/09/27 11:12:51 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Salvatore\AppData\Roaming\mozilla\Firefox\Profiles\xllia1l9.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2013/09/27 11:12:51 | 000,009,388 | ---- | M] () (No name found) -- C:\Users\Salvatore\AppData\Roaming\mozilla\firefox\profiles\xllia1l9.default\extensions\gmail@softice86.com.xpi
[2013/09/27 11:09:21 | 000,170,422 | ---- | M] () (No name found) -- C:\Users\Salvatore\AppData\Roaming\mozilla\firefox\profiles\xllia1l9.default\extensions\jid0-QOD8hILKQRIwhBFHoFiqa6py6ow@jetpack.xpi
[2013/09/27 11:09:31 | 000,171,505 | ---- | M] () (No name found) -- C:\Users\Salvatore\AppData\Roaming\mozilla\firefox\profiles\xllia1l9.default\extensions\jid1-mpUNXKrvqSs6dw@jetpack.xpi
[2013/09/27 11:02:43 | 000,166,101 | ---- | M] () (No name found) -- C:\Users\Salvatore\AppData\Roaming\mozilla\firefox\profiles\xllia1l9.default\extensions\jid1-ZsomX69tl35C5A@jetpack.xpi
[2013/09/27 11:08:55 | 000,098,733 | ---- | M] () (No name found) -- C:\Users\Salvatore\AppData\Roaming\mozilla\firefox\profiles\xllia1l9.default\extensions\printedit@DW-dev.xpi
[2013/09/27 11:08:55 | 000,353,425 | ---- | M] () (No name found) -- C:\Users\Salvatore\AppData\Roaming\mozilla\firefox\profiles\xllia1l9.default\extensions\smarterwiki@wikiatic.com.xpi
[2013/09/27 11:08:55 | 000,060,290 | ---- | M] () (No name found) -- C:\Users\Salvatore\AppData\Roaming\mozilla\firefox\profiles\xllia1l9.default\extensions\translator@zoli.bod.xpi
[2013/09/27 11:08:55 | 000,022,890 | ---- | M] () (No name found) -- C:\Users\Salvatore\AppData\Roaming\mozilla\firefox\profiles\xllia1l9.default\extensions\{19EB90DC-A456-458b-8AAC-616D91AAFCE1}.xpi
[2013/09/27 11:15:59 | 000,242,709 | ---- | M] () (No name found) -- C:\Users\Salvatore\AppData\Roaming\mozilla\firefox\profiles\xllia1l9.default\extensions\{582195F5-92E7-40a0-A127-DB71295901D7}.xpi
[2013/09/27 11:02:20 | 000,017,429 | ---- | M] () (No name found) -- C:\Users\Salvatore\AppData\Roaming\mozilla\firefox\profiles\xllia1l9.default\extensions\{b9bfaf1c-a63f-47cd-8b9a-29526ced9060}.xpi
[2013/09/27 11:02:35 | 000,824,302 | ---- | M] () (No name found) -- C:\Users\Salvatore\AppData\Roaming\mozilla\firefox\profiles\xllia1l9.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2013/09/27 10:56:00 | 000,000,000 | ---D | M] (No name found) -- C:\Programmi\Mozilla Firefox\browser\extensions
[2013/09/27 10:56:00 | 000,000,000 | ---D | M] (Default) -- C:\Programmi\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

========== Chrome ==========

CHR - default_search_provider: Google Italia (Enabled)
CHR - default_search_provider: search_url = http://www.google.it/#hl=it&source=hp&q={searchTerms}&aq=f&aqi=g10&aql=&oq=&gs_rfai=&fp=9fca69c98b5d77d7
CHR - default_search_provider: suggest_url =
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\29.0.1547.76\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\29.0.1547.76\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\29.0.1547.76\pdf.dll
CHR - plugin: Nero Kwik Media Helper (Enabled) = C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~4\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~4\Office14\NPSPWRAP.DLL
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Java(TM) Platform SE 7 U25 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: VLC Web Plugin (Enabled) = C:\Program Files\VideoLAN\VLC\npvlc.dll
CHR - plugin: RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In (32-bit) (Enabled) = C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll
CHR - plugin: RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In (32-bit) (Enabled) = C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll
CHR - plugin: RealNetworks(tm) RealDownloader PepperFlashVideoShim Plug-In (32-bit) (Enabled) = C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll
CHR - plugin: RealDownloader Plugin (Enabled) = C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll
CHR - plugin: Google Update (Enabled) = C:\Users\Salvatore\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll
CHR - plugin: Google Talk Plugin (Enabled) = C:\Users\Salvatore\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
CHR - plugin: Google Talk Plugin Video Accelerator (Enabled) = C:\Users\Salvatore\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll
CHR - plugin: Google Talk Plugin Video Renderer (Enabled) = C:\Users\Salvatore\AppData\Roaming\Mozilla\plugins\npo1d.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw_1203133.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_168.dll
CHR - plugin: Windows Activation Technologies (Enabled) = C:\Windows\system32\Wat\npWatWeb.dll
CHR - plugin: Java Deployment Toolkit 7.0.250.17 (Enabled) = C:\Windows\system32\npDeployJava1.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll
CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = c:\program files\real\realplayer\Netscape6\nppl3260.dll
CHR - plugin: RealPlayer Download Plugin (Enabled) = c:\program files\real\realplayer\Netscape6\nprpplugin.dll
CHR - Extension: Lightning Newtab = C:\Users\Salvatore\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo\1.1.5.2_2\
CHR - Extension: Chrome In-App Payments service = C:\Users\Salvatore\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_2\

O1 HOSTS File: ([2009/06/10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (RealNetworks Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Programmi\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programmi\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programmi\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Programmi\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programmi\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKU\S-1-5-21-2170091305-4224216958-3418588652-1001\..\Toolbar\WebBrowser: (ShareThis) - {6A719530-8443-4898-9BC4-69E76B5F1C89} - C:\Programmi\ShareThis Toolbar\share2me.dll (Nextumi, Inc.)
O4 - HKLM..\Run: [BCSSync] C:\Program Files\Microsoft Office\Office14\BCSSync.exe (Microsoft Corporation)
O4 - HKLM..\Run: [CNAP2 Launcher] C:\Windows\System32\spool\drivers\w32x86\3\CNAP2LAK.EXE (CANON INC.)
O4 - HKLM..\Run: [KiesTrayAgent] C:\Programmi\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NBAgent] C:\Program Files\Nero\Nero 11\Nero BackItUp\NBAgent.exe (Nero AG)
O4 - HKLM..\Run: [TkBellExe] c:\program files\real\realplayer\Update\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [UnlockerAssistant] C:\Program Files\Unlocker\UnlockerAssistant.exe ()
O4 - HKLM..\Run: [WrtMon.exe] C:\Windows\System32\spool\drivers\w32x86\3\WrtMon.exe ()
O4 - HKU\S-1-5-21-2170091305-4224216958-3418588652-1001..\Run: [] C:\Programmi\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe (Samsung)
O4 - HKU\S-1-5-21-2170091305-4224216958-3418588652-1001..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-2170091305-4224216958-3418588652-1001..\Run: [googletalk] C:\Program Files\Google\Google Talk\googletalk.exe (Google)
O4 - HKU\S-1-5-21-2170091305-4224216958-3418588652-1001..\Run: [Kiespreload] C:\Program Files\Samsung\Kies\Kies.exe (Samsung)
O4 - HKU\S-1-5-21-2170091305-4224216958-3418588652-1001..\Run: [Rainlendar2] C:\Programmi\Rainlendar2\Rainlendar2.exe ()
O4 - HKU\S-1-5-21-2170091305-4224216958-3418588652-1001..\Run: [uTorrent] C:\Users\Salvatore\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - Startup: C:\Users\Salvatore\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\Salvatore\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O7 - HKU\S-1-5-21-2170091305-4224216958-3418588652-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: E&sporta in Microsoft Excel - C:\Programmi\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: I&nvia a OneNote - C:\Programmi\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Invia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programmi\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : I&nvia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programmi\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: &Note collegate di OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programmi\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Note collegate di OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programmi\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Programmi\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Programmi\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O13 - gopher Prefix: missing
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} https://fpdownload.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{49722094-7431-421B-9CE1-A3B7E1BF38DB}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9A2C75F8-5104-4678-B5CD-81F9780E2031}: DhcpNameServer = 8.8.8.8
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programmi\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Programmi\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Programmi\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\J\Shell - "" = AutoRun
O33 - MountPoints2\J\Shell\AutoRun\command - "" = J:\setup.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 60 Days ==========

[2013/09/27 15:21:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
[2013/09/27 15:21:44 | 000,000,000 | ---D | C] -- C:\Program Files\HitmanPro
[2013/09/27 15:21:10 | 000,000,000 | ---D | C] -- C:\ProgramData\HitmanPro
[2013/09/27 14:12:50 | 000,000,000 | ---D | C] -- C:\Users\Salvatore\AppData\Roaming\Malwarebytes
[2013/09/27 14:12:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2013/09/27 14:12:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2013/09/27 14:12:21 | 000,022,856 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2013/09/27 14:12:21 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2013/09/27 14:00:29 | 000,000,000 | ---D | C] -- C:\Windows\ERUNT
[2013/09/27 13:33:59 | 000,000,000 | ---D | C] -- C:\Users\Salvatore\AppData\Roaming\eUpdate
[2013/09/27 11:37:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2013/09/27 10:56:11 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2013/09/27 10:55:59 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2013/09/22 13:33:37 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\CrashDump
[2013/09/21 15:09:09 | 000,000,000 | ---D | C] -- C:\Users\Salvatore\Desktop\Nuova cartella (3)
[2013/09/15 17:31:26 | 000,000,000 | ---D | C] -- C:\Users\Salvatore\AppData\Roaming\Farm Mania 2.1
[2013/09/15 17:30:02 | 000,000,000 | ---D | C] -- C:\Windows\Farm Mania - Hot Vacation
[2013/09/11 07:27:43 | 002,706,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2013/09/11 07:27:42 | 002,876,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2013/09/11 07:27:41 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2013/09/11 07:27:41 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2013/09/11 07:27:40 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2013/09/11 07:27:39 | 000,493,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2013/09/11 07:27:39 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2013/09/11 07:27:39 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe
[2013/09/11 07:27:39 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2013/09/11 07:27:39 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2013/09/11 07:22:27 | 002,348,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2013/09/11 07:22:25 | 000,133,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ataport.sys
[2013/09/11 07:22:08 | 000,271,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
[2013/09/11 07:22:08 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2013/09/11 07:22:08 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll
[2013/09/11 07:22:08 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
[2013/09/11 07:22:07 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
[2013/09/11 07:22:07 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
[2013/09/11 07:22:07 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
[2013/09/11 07:22:07 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll
[2013/09/11 07:22:07 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll
[2013/09/11 07:22:07 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
[2013/09/11 07:22:07 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll
[2013/09/11 07:22:07 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
[2013/09/11 07:22:07 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll
[2013/09/11 07:22:07 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/09/11 07:22:07 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
[2013/09/11 07:22:07 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll
[2013/09/11 07:22:07 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll
[2013/09/11 07:22:07 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
[2013/09/11 07:22:07 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll
[2013/09/11 07:22:07 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll
[2013/09/11 07:22:07 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll
[2013/09/11 07:22:07 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll
[2013/09/11 07:22:07 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
[2013/09/11 07:22:07 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll
[2013/09/11 07:22:07 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll
[2013/09/11 07:22:07 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll
[2013/09/11 07:22:06 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
[2013/09/11 07:22:06 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll
[2013/09/11 07:22:06 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll
[2013/09/11 07:22:06 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll
[2013/09/08 15:39:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Particles
[2013/09/08 15:32:49 | 000,000,000 | ---D | C] -- C:\Users\Salvatore\AppData\Local\Farmington Tales
[2013/09/08 08:00:04 | 000,000,000 | ---D | C] -- C:\Users\Salvatore\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ZSoft
[2013/09/08 08:00:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZSoft
[2013/09/08 08:00:02 | 000,000,000 | ---D | C] -- C:\Program Files\ZSoft
[2013/09/08 07:34:07 | 000,000,000 | ---D | C] -- C:\ProgramData\VS Revo Group
[2013/09/02 05:34:38 | 000,000,000 | ---D | C] -- C:\Users\Salvatore\.rainlendar2
[2013/09/02 05:34:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rainlendar2
[2013/09/02 05:34:14 | 000,000,000 | ---D | C] -- C:\Program Files\Rainlendar2
[2013/08/29 07:57:15 | 000,000,000 | ---D | C] -- C:\ProgramData\{BDDB56DE-AE4E-48A2-B856-FB60C8498453}
[2013/08/23 08:31:59 | 000,000,000 | ---D | C] -- C:\Users\Salvatore\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2013/08/23 08:23:37 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2013/08/23 06:23:54 | 000,000,000 | ---D | C] -- C:\Users\Salvatore\Desktop\IW BANK
[2013/08/21 06:32:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gmail Notifier
[2013/08/21 05:44:05 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2013/08/21 05:43:57 | 000,263,592 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaws.exe
[2013/08/21 05:43:51 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaw.exe
[2013/08/21 05:43:51 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\java.exe
[2013/08/21 05:43:51 | 000,094,632 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll
[2013/08/21 05:43:43 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2013/08/17 07:51:05 | 000,188,176 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\drivers\VBoxDrv.sys
[2013/08/17 07:51:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
[2013/08/17 07:51:03 | 000,094,480 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\drivers\VBoxUSBMon.sys
[2013/08/14 06:02:42 | 001,620,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVDECOD.DLL
[2013/08/14 06:02:39 | 003,968,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2013/08/14 06:02:39 | 003,913,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2013/08/14 06:02:33 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2013/08/11 16:23:15 | 000,000,000 | R--D | C] -- C:\Users\Salvatore\Dropbox
[2013/08/11 16:21:50 | 000,000,000 | ---D | C] -- C:\Users\Salvatore\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
[2013/08/11 16:21:16 | 000,000,000 | ---D | C] -- C:\Users\Salvatore\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Talk
[2013/08/11 16:21:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Talk
[2013/08/11 16:19:23 | 000,000,000 | ---D | C] -- C:\Users\Salvatore\AppData\Roaming\Dropbox
[2013/08/08 06:01:21 | 000,181,912 | ---- | C] (DEVGURU Co., LTD.(www.devguru.co.kr)) -- C:\Windows\System32\drivers\ssudmdm.sys
[2013/08/08 06:01:21 | 000,084,248 | ---- | C] (DEVGURU Co., LTD.(www.devguru.co.kr)) -- C:\Windows\System32\drivers\ssudbus.sys
[2013/08/08 05:56:38 | 000,821,824 | ---- | C] (Devguru Co., Ltd.) -- C:\Windows\System32\dgderapi.dll
[2013/08/08 05:53:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Samsung
[2013/08/06 16:10:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\uRexsoft
[2013/08/06 16:09:59 | 000,000,000 | ---D | C] -- C:\Program Files\uRexsoft
[2013/08/06 11:36:11 | 000,000,000 | ---D | C] -- C:\Users\Salvatore\Local Settings
[2013/08/06 11:26:19 | 000,000,000 | ---D | C] -- C:\Users\Salvatore\AppData\Roaming\FILEminimizerPictures
[2013/08/05 20:25:45 | 000,000,000 | ---D | C] -- C:\db26031ce47636ea72f42d5e
[2013/08/05 20:25:21 | 000,023,872 | ---- | C] (IObit) -- C:\Windows\System32\RegistryDefragBootTime.exe
[2013/08/05 20:09:06 | 000,000,000 | ---D | C] -- C:\Users\Salvatore\AppData\Roaming\WinZipper
[2013/08/05 20:04:35 | 000,000,000 | ---D | C] -- C:\ProgramData\eSafe
[2013/08/05 20:02:24 | 000,000,000 | ---D | C] -- C:\ProgramData\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A}
[2013/08/05 20:02:20 | 000,000,000 | ---D | C] -- C:\Users\Salvatore\AppData\Roaming\Apple Computer
[2013/08/05 20:00:59 | 000,000,000 | ---D | C] -- C:\ProgramData\IObit
[2013/08/05 20:00:41 | 000,000,000 | ---D | C] -- C:\Users\Salvatore\AppData\Roaming\IObit
[2013/08/04 17:44:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Puzzle Expedition
[2013/08/04 17:44:40 | 000,000,000 | ---D | C] -- C:\Program Files\Puzzle Expedition
[2013/08/04 17:41:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
[2013/08/04 17:40:33 | 000,000,000 | ---D | C] -- C:\ProgramData\WinZip
[2013/08/04 17:40:26 | 000,000,000 | ---D | C] -- C:\Program Files\WinZip
[2013/08/04 14:55:53 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2013/08/04 08:20:21 | 000,000,000 | ---D | C] -- C:\Users\Salvatore\AppData\Roaming\Rovio
[2013/08/03 05:56:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2013/08/03 05:37:59 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2013/08/02 12:59:12 | 000,000,000 | ---D | C] -- C:\Users\Salvatore\AppData\Roaming\TuneUp Software
[2013/08/02 12:59:03 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software
[2013/08/02 12:58:54 | 000,000,000 | -HSD | C] -- C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
[2013/08/02 12:58:54 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
[2013/08/02 12:58:22 | 000,000,000 | ---D | C] -- C:\Users\Salvatore\AppData\Local\FreemakeVideoConverter
[2013/07/31 09:48:13 | 000,000,000 | ---D | C] -- C:\Users\Salvatore\dwhelper
[1 C:\Users\Salvatore\Documents\*.tmp files -> C:\Users\Salvatore\Documents\*.tmp -> ]

========== Files - Modified Within 60 Days ==========

[2013/09/27 16:01:00 | 000,000,978 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/09/27 15:50:00 | 000,001,176 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2170091305-4224216958-3418588652-1001UA.job
[2013/09/27 15:35:06 | 000,014,816 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/09/27 15:35:06 | 000,014,816 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/09/27 15:32:21 | 000,703,122 | ---- | M] () -- C:\Windows\System32\perfh010.dat
[2013/09/27 15:32:21 | 000,620,484 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2013/09/27 15:32:21 | 000,130,398 | ---- | M] () -- C:\Windows\System32\perfc010.dat
[2013/09/27 15:32:21 | 000,108,666 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2013/09/27 15:29:00 | 000,001,144 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/09/27 15:28:07 | 000,001,140 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/09/27 15:27:55 | 000,437,088 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2013/09/27 15:27:47 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/09/27 15:27:37 | 1609,424,896 | -HS- | M] () -- C:\hiberfil.sys
[2013/09/27 15:21:46 | 000,001,911 | ---- | M] () -- C:\Users\Public\Desktop\HitmanPro.lnk
[2013/09/27 14:12:32 | 000,001,071 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013/09/27 14:05:21 | 000,001,109 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2013/09/27 12:01:45 | 000,000,310 | ---- | M] () -- C:\Windows\DeleteOnReboot.bat
[2013/09/27 11:42:48 | 000,002,290 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013/09/26 05:50:00 | 000,001,124 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2170091305-4224216958-3418588652-1001Core.job
[2013/09/22 13:30:25 | 000,001,952 | ---- | M] () -- C:\Users\Public\Desktop\Samsung Kies (Lite).lnk
[2013/09/21 15:02:45 | 000,759,753 | ---- | M] () -- C:\Users\Salvatore\Desktop\richiesta pagamento pensione c-c banca.pdf
[2013/09/20 14:01:12 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2013/09/20 14:01:12 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2013/09/19 07:49:51 | 013,275,136 | ---- | M] () -- C:\Users\Salvatore\Desktop\sert.opd
[2013/09/19 07:44:38 | 000,591,203 | ---- | M] () -- C:\Users\Salvatore\Desktop\qwe_0003.jpg
[2013/09/19 07:44:37 | 000,877,010 | ---- | M] () -- C:\Users\Salvatore\Desktop\qwe_0001.jpg
[2013/09/19 07:44:37 | 000,674,362 | ---- | M] () -- C:\Users\Salvatore\Desktop\qwe_0002.jpg
[2013/09/11 08:03:23 | 000,043,469 | ---- | M] () -- C:\Users\Salvatore\Desktop\balotelli-kyenge-265663.jpg
[2013/09/08 15:43:29 | 000,000,915 | ---- | M] () -- C:\Users\Salvatore\Desktop\Farmington Tales - collegamento.lnk
[2013/09/08 08:00:04 | 000,001,111 | ---- | M] () -- C:\Users\Salvatore\Desktop\ZSoft Uninstaller.lnk
[2013/08/23 08:13:15 | 002,020,343 | ---- | M] () -- C:\Users\Salvatore\Desktop\ggggggggggggggggg.rar
[2013/08/22 16:06:55 | 000,001,202 | ---- | M] () -- C:\Users\Salvatore\Desktop\dwhelper - collegamento.lnk
[2013/08/21 05:43:47 | 000,094,632 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll
[2013/08/21 05:43:46 | 000,263,592 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\javaws.exe
[2013/08/21 05:43:46 | 000,175,016 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\javaw.exe
[2013/08/21 05:43:45 | 000,867,240 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\npDeployJava1.dll
[2013/08/21 05:43:45 | 000,789,416 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\deployJava1.dll
[2013/08/21 05:43:45 | 000,175,016 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\java.exe
[2013/08/18 16:41:41 | 000,118,607 | ---- | M] () -- C:\Users\Salvatore\Desktop\AP03_Banche(1).pdf
[2013/08/17 04:29:06 | 000,001,912 | ---- | M] () -- C:\Windows\epplauncher.mif
[2013/08/11 16:22:18 | 000,001,057 | ---- | M] () -- C:\Users\Salvatore\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
[2013/08/10 16:51:07 | 000,000,000 | -H-- | M] () -- C:\Users\Salvatore\Documents\Default.rdp
[2013/08/10 05:59:24 | 000,042,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2013/08/10 05:58:21 | 000,493,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2013/08/10 05:58:09 | 002,876,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2013/08/10 05:58:09 | 000,039,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2013/08/10 05:58:06 | 000,391,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2013/08/10 05:58:06 | 000,109,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2013/08/10 05:58:06 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2013/08/10 05:58:05 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2013/08/10 05:07:50 | 002,706,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2013/08/10 04:17:19 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe
[2013/08/08 03:03:07 | 002,348,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2013/08/05 20:09:06 | 000,421,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcp100.dll
[2013/08/05 20:06:38 | 000,002,604 | ---- | M] () -- C:\Windows\System32\InstallUtil.InstallLog
[2013/08/05 03:56:47 | 000,133,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\ataport.sys
[2013/08/04 17:44:58 | 000,001,972 | ---- | M] () -- C:\Users\Salvatore\Desktop\Puzzle Expedition.lnk
[2013/08/04 17:41:47 | 000,001,811 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Quick Pick.lnk
[2013/08/03 05:38:46 | 000,000,175 | ---- | M] () -- C:\Windows\System32\drivers\aswVmm.sys.sum
[2013/08/03 05:38:46 | 000,000,175 | ---- | M] () -- C:\Windows\System32\drivers\aswSP.sys.sum
[2013/08/03 05:38:46 | 000,000,175 | ---- | M] () -- C:\Windows\System32\drivers\aswSnx.sys.sum
[2013/08/03 05:38:32 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt
[2013/08/02 03:50:36 | 000,169,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2013/08/02 03:48:15 | 000,005,120 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll
[2013/08/02 03:48:15 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
[2013/08/02 03:48:15 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
[2013/08/02 03:48:15 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll
[2013/08/02 03:48:15 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll
[2013/08/02 03:48:15 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
[2013/08/02 03:48:15 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll
[2013/08/02 03:48:15 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
[2013/08/02 03:48:15 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
[2013/08/02 03:48:15 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll
[2013/08/02 03:48:15 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/02 03:48:15 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
[2013/08/02 03:48:15 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll
[2013/08/02 03:48:15 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll
[2013/08/02 03:48:15 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
[2013/08/02 03:48:15 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll
[2013/08/02 03:48:15 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll
[2013/08/02 03:48:15 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll
[2013/08/02 03:48:15 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll
[2013/08/02 03:48:15 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
[2013/08/02 03:48:14 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll
[2013/08/02 03:48:14 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll
[2013/08/02 03:48:14 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll
[2013/08/02 03:48:14 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll
[2013/08/02 02:52:57 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
[2013/08/02 02:43:05 | 000,006,144 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
[2013/08/02 02:43:05 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
[2013/08/02 02:43:05 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll
[2013/08/02 02:43:05 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll
[1 C:\Users\Salvatore\Documents\*.tmp files -> C:\Users\Salvatore\Documents\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/09/27 15:27:39 | 000,437,088 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2013/09/27 15:21:46 | 000,001,911 | ---- | C] () -- C:\Users\Public\Desktop\HitmanPro.lnk
[2013/09/27 14:12:32 | 000,001,071 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013/09/27 11:37:36 | 000,002,290 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013/09/27 10:56:13 | 000,001,451 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2013/09/27 10:56:13 | 000,001,109 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2013/09/22 13:30:25 | 000,001,952 | ---- | C] () -- C:\Users\Public\Desktop\Samsung Kies (Lite).lnk
[2013/09/21 15:02:45 | 000,759,753 | ---- | C] () -- C:\Users\Salvatore\Desktop\richiesta pagamento pensione c-c banca.pdf
[2013/09/19 07:44:37 | 000,674,362 | ---- | C] () -- C:\Users\Salvatore\Desktop\qwe_0002.jpg
[2013/09/19 07:44:37 | 000,591,203 | ---- | C] () -- C:\Users\Salvatore\Desktop\qwe_0003.jpg
[2013/09/19 07:44:36 | 000,877,010 | ---- | C] () -- C:\Users\Salvatore\Desktop\qwe_0001.jpg
[2013/09/19 07:42:24 | 013,275,136 | ---- | C] () -- C:\Users\Salvatore\Desktop\sert.opd
[2013/09/11 08:03:21 | 000,043,469 | ---- | C] () -- C:\Users\Salvatore\Desktop\balotelli-kyenge-265663.jpg
[2013/09/08 15:43:29 | 000,000,915 | ---- | C] () -- C:\Users\Salvatore\Desktop\Farmington Tales - collegamento.lnk
[2013/09/08 08:00:04 | 000,001,111 | ---- | C] () -- C:\Users\Salvatore\Desktop\ZSoft Uninstaller.lnk
[2013/08/23 08:13:14 | 002,020,343 | ---- | C] () -- C:\Users\Salvatore\Desktop\ggggggggggggggggg.rar
[2013/08/22 16:06:55 | 000,001,202 | ---- | C] () -- C:\Users\Salvatore\Desktop\dwhelper - collegamento.lnk
[2013/08/18 16:41:41 | 000,118,607 | ---- | C] () -- C:\Users\Salvatore\Desktop\AP03_Banche(1).pdf
[2013/08/11 16:22:18 | 000,001,057 | ---- | C] () -- C:\Users\Salvatore\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
[2013/08/10 16:51:07 | 000,000,000 | -H-- | C] () -- C:\Users\Salvatore\Documents\Default.rdp
[2013/08/05 20:51:38 | 000,000,310 | ---- | C] () -- C:\Windows\DeleteOnReboot.bat
[2013/08/04 17:44:58 | 000,001,972 | ---- | C] () -- C:\Users\Salvatore\Desktop\Puzzle Expedition.lnk
[2013/08/04 17:41:47 | 000,001,811 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Quick Pick.lnk
[2013/08/04 14:56:05 | 000,002,117 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
[2013/08/03 05:38:46 | 000,000,175 | ---- | C] () -- C:\Windows\System32\drivers\aswVmm.sys.sum
[2013/08/03 05:38:46 | 000,000,175 | ---- | C] () -- C:\Windows\System32\drivers\aswSP.sys.sum
[2013/08/03 05:38:46 | 000,000,175 | ---- | C] () -- C:\Windows\System32\drivers\aswSnx.sys.sum
[2013/05/18 12:12:30 | 002,888,384 | ---- | C] () -- C:\Windows\System32\pwNative.exe
[2013/05/18 12:12:29 | 000,015,576 | ---- | C] () -- C:\Windows\System32\pwdrvio.sys
[2013/05/18 12:12:01 | 000,010,200 | ---- | C] () -- C:\Windows\System32\pwdspio.sys
[2013/02/04 16:52:17 | 000,000,568 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2012/09/10 07:27:26 | 000,000,008 | RHS- | C] () -- C:\Users\Salvatore\ntuser.pol
[2012/06/23 10:07:26 | 000,000,065 | ---- | C] () -- C:\Windows\FISHUI.INI
[2012/06/23 09:51:12 | 000,003,584 | ---- | C] () -- C:\Users\Salvatore\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/06/09 15:53:54 | 000,080,896 | ---- | C] () -- C:\Windows\System32\RDVGHelper.exe
[2012/06/09 15:52:41 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2012/06/08 19:51:38 | 000,011,776 | ---- | C] () -- C:\Windows\System32\pmsbfn32.dll
[2012/06/08 19:50:20 | 000,000,412 | ---- | C] () -- C:\Windows\MAXLINK.INI
[2012/06/08 19:41:23 | 000,003,584 | ---- | C] () -- C:\Windows\System32\CNCFLdNL.DLL
[2012/06/08 19:24:05 | 000,007,605 | ---- | C] () -- C:\Users\Salvatore\AppData\Local\resmon.resmoncfg
[2012/06/08 15:20:02 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2012/06/08 15:17:47 | 000,003,929 | ---- | C] () -- C:\Windows\System32\atipblag.dat
[2012/05/23 18:49:34 | 000,030,568 | ---- | C] () -- C:\Windows\MusiccityDownload.exe
[2012/05/23 18:49:32 | 000,974,848 | ---- | C] () -- C:\Windows\System32\cis-2.4.dll
[2012/05/23 18:49:32 | 000,081,920 | ---- | C] () -- C:\Windows\System32\issacapi_bs-2.3.dll
[2012/05/23 18:49:32 | 000,065,536 | ---- | C] () -- C:\Windows\System32\issacapi_pe-2.3.dll
[2012/05/23 18:49:32 | 000,057,344 | ---- | C] () -- C:\Windows\System32\issacapi_se-2.3.dll

========== ZeroAccess Check ==========

[2009/07/14 06:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/07/26 03:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 14:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/14 03:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2012/10/27 09:02:28 | 000,000,000 | -HSD | M] -- C:\Users\Salvatore\AppData\Roaming\.#
[2013/06/12 13:44:16 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\.deskpdf
[2012/11/15 14:25:05 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\.minecraft
[2012/11/19 13:51:14 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\1morebee
[2012/12/04 19:25:52 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\AlawarEntertainment
[2013/01/03 09:24:30 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\Amaranth Games
[2012/12/10 08:37:03 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\Artogon
[2013/08/22 16:28:45 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\Audacity
[2013/05/13 14:40:29 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\Blue Tea Games
[2013/04/16 15:59:02 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\Boomzap
[2012/06/13 10:34:26 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\Canon
[2013/05/13 14:00:11 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\casualArts
[2013/01/04 16:14:13 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\Chayowo Games
[2012/10/27 09:05:57 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\CianoDock
[2012/12/08 19:17:52 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\DAEMON Tools
[2013/09/27 12:53:05 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\DAEMON Tools Lite
[2013/05/01 14:53:47 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\DailyMagic
[2012/06/23 09:56:43 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\DataCast
[2013/09/27 15:28:43 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\Dropbox
[2012/10/22 19:32:06 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\DVDVideoSoft
[2013/04/24 19:58:18 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\EleFun Games
[2013/04/06 15:05:11 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\Elephant Games
[2012/12/03 11:50:30 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\Enki Games
[2013/05/01 09:12:47 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\ERS G-Studio
[2013/04/19 14:22:50 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\ERS Game Studios
[2013/09/27 13:33:59 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\eUpdate
[2013/09/15 17:31:26 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\Farm Mania 2.1
[2013/08/08 15:16:10 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\FILEminimizerPictures
[2013/04/06 06:17:21 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\Free Audio Editor
[2013/01/26 12:31:27 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\Free PDF to Word Converter
[2012/08/07 18:16:21 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\FreeAudioPack
[2013/06/02 07:45:21 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\Friday's games
[2013/04/14 11:43:03 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\Frogwares
[2012/12/31 13:42:39 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\GameMill Entertainment
[2013/05/01 06:26:30 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\Games
[2013/03/19 10:23:55 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\GetRightToGo
[2013/05/13 14:48:40 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\HdO Adventure
[2013/03/15 07:26:30 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\Import Audio from Video
[2013/08/08 13:02:04 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\IObit
[2012/11/11 18:24:19 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\Jetbricks
[2013/02/05 19:11:21 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\MagicIndie
[2013/03/15 07:39:59 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\MP3Rocket
[2012/06/13 10:34:47 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\NewSoft
[2012/06/08 17:50:33 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\Nitro PDF
[2013/06/07 09:04:08 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\OpenOffice.org
[2013/02/24 08:54:18 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\Orneon
[2013/06/25 14:35:57 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\PowerISO
[2013/08/04 08:20:21 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\Rovio
[2013/08/08 06:02:06 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\Samsung
[2012/06/08 19:50:12 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\ScanSoft
[2012/11/09 14:17:47 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\Simple Sudoku
[2012/12/02 20:41:26 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\ThreeDays2
[2013/02/06 11:11:00 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\Thunderbird
[2013/01/04 15:52:51 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\TrickySoftware
[2013/08/02 12:59:12 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\TuneUp Software
[2013/09/01 08:50:56 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\UK's Kalender
[2013/09/27 16:08:53 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\uTorrent
[2013/05/01 08:52:56 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\VendelGAMES
[2013/06/26 18:29:34 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\VS Revo Group
[2013/03/18 08:01:23 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\Winyl
[2013/08/23 07:36:54 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\WinZipper
[2012/09/15 08:31:09 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\www.TheXSoft.com
[2012/10/25 15:07:08 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\XBMC
[2013/06/02 07:53:36 | 000,000,000 | ---D | M] -- C:\Users\Salvatore\AppData\Roaming\YoudaGames

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 137 bytes -> C:\ProgramData\TEMP:373E1720
@Alternate Data Stream - 101 bytes -> C:\ProgramData\TEMP:CC30FDA5

< End of report >
Avatar utente
gringo
Utente Senior
 
Post: 139
Iscritto il: 08/09/06 21:12

Re: Problemi con delta homes

Postdi kyiv » 27/09/13 20:57

..nel log non c'è niente, puoi eliminare questa toolbar:

apri OTL,e copia/incolla nello spazio bianco ciò che segue:

:OTL
O3 - HKU\S-1-5-21-2170091305-4224216958-3418588652-1001\..\Toolbar\WebBrowser: (ShareThis) - {6A719530-8443-4898-9BC4-69E76B5F1C89} - C:\Programmi\ShareThis Toolbar\share2me.dll (Nextumi, Inc.)

:Files
@Alternate Data Stream - 137 bytes -> C:\ProgramData\TEMP:373E1720
@Alternate Data Stream - 101 bytes -> C:\ProgramData\TEMP:CC30FDA5

:commands
[emptytemp]

....premi RUN FIX.

Che browser utilizzi ?
prova con questa guida trovata in rete :
http://www.dphoneworld.net/2013/07/come-eliminare-delta-homes-mdelta-homes.html

ps: se usi Firefox, clicca sul pulsante arancione in alto a sinistra,
va' in aiuto, risoluzione problemi,
clicca su mostra cartella, apri la cartella searchplugins, e vedi se dentro c'è delta homes (eliminalo).
kyiv
Utente Junior
 
Post: 87
Iscritto il: 24/01/13 10:51

Re: Problemi con delta homes

Postdi gringo » 28/09/13 12:53

Salve ho provato tutto quello che mi hai detto ma non c'è niente da fare , comunque uno di questi giorni appena avrò un po di tempo formatto il compiuter , ti ringrazio per il tempo che hai perso ti mando un saluto a te a a tutto il forum augurandoti un buon fine settimana
Avatar utente
gringo
Utente Senior
 
Post: 139
Iscritto il: 08/09/06 21:12


Torna a Sicurezza e Privacy


Topic correlati a "Problemi con delta homes":


Chi c’è in linea

Visitano il forum: Nessuno e 29 ospiti

cron