pp.developunit.info

di **mauri1974** » 01/05/14 17:46

Extras

Codice: Seleziona tutto: OTL Extras logfile created on: 01/05/2014 18.17.18 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Otto\Downloads 64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation Internet Explorer (Version = 9.10.9200.16863) Locale: 00000410 | Country: Italia | Language: ITA | Date Format: dd/MM/yyyy 3,86 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 51,87% Memory free 4,54 Gb Paging File | 2,38 Gb Available in Paging File | 52,48% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 281,38 Gb Total Space | 238,87 Gb Free Space | 84,89% Space Free | Partition Type: NTFS Computer Name: LENOVO-PC | User Name: Otto | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) .url[@ = InternetShortcut] -- C:\windows\SysNative\rundll32.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- C:\windows\SysWow64\control.exe (Microsoft Corporation) .html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>] .html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) [color=#E56717]========== Shell Spawning ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation) http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation) InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation) Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN) Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~1\Office12\ONENOTE.EXE "%L" Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation) Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN) Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~1\Office12\ONENOTE.EXE "%L" Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error. [color=#E56717]========== Security Center Settings ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 "FirewallDisableNotify" = 0 "AntiVirusDisableNotify" = 0 "UpdatesDisableNotify" = 0 [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "VistaSp1" = CE 37 E6 AF FF 6A CD 01 [binary data] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] [color=#E56717]========== System Restore Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [color=#E56717]========== Firewall Settings ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] [color=#E56717]========== Vista Active Open Ports Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{04274276-FFF4-4F6C-BB25-D3E97E944701}" = lport=139 | protocol=6 | dir=in | app=system | "{0C81CC71-1CAB-4CE8-9322-2EEBD32B7D77}" = rport=138 | protocol=17 | dir=out | app=system | "{10818E69-7A4A-4D42-93AA-09CD2256878B}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{13C3922F-F5D3-4162-9C39-2F416D314D68}" = rport=139 | protocol=6 | dir=out | app=system | "{2A8373AF-AD12-4E52-8C00-DF3042D261E8}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{52E3BBA1-F9B5-40B6-BF96-FC909F27037B}" = lport=2869 | protocol=6 | dir=in | app=system | "{5CA34EF5-59AA-4204-B56D-C2523D0DD18A}" = lport=137 | protocol=17 | dir=in | app=system | "{6966757F-0D5E-4902-B268-3A6B4499D605}" = rport=137 | protocol=17 | dir=out | app=system | "{748FDD62-01C4-4D5D-B542-5F884D14F206}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | "{74F32CD7-FF1C-478D-838A-18AC5146DE49}" = rport=10243 | protocol=6 | dir=out | app=system | "{8A1EA11B-F714-4C9C-8B49-49FF58E90C74}" = rport=445 | protocol=6 | dir=out | app=system | "{92323345-E81D-4D41-B2FA-2AC0E509F9FD}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | "{9371C191-504B-4A71-83D0-BA230C41B026}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\outlook.exe | "{99FF392C-D619-4F39-85FE-D47CDD9CFA44}" = lport=445 | protocol=6 | dir=in | app=system | "{9FEB58CA-FEB7-4046-AA54-69079C67D80C}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{AA2D7E79-AB2A-417D-8165-F8305E60BD8B}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | "{B5FE318F-E559-4A42-9D4B-8C22ADF29682}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{BF70CDAC-21B0-43F5-BCE5-BD76F9EA4EC7}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | "{C0CB9055-4E91-470B-877D-1F0882C2194A}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{C97923C4-7BFB-4E82-95B2-4335F37915E9}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{D141A9A4-7EA0-44E6-9612-D2045DA96548}" = lport=138 | protocol=17 | dir=in | app=system | "{D4B64A42-32EE-4878-AC4D-A87F9958FFA6}" = lport=10243 | protocol=6 | dir=in | app=system | [color=#E56717]========== Vista Active Application Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{0182C270-B4C6-4D7C-A323-7F829FF82A60}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe | "{02761463-836C-4582-9381-41E8327939EA}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{06750A41-9026-404C-8AAE-8F6186809D2B}" = dir=out | name=lenovo settings | "{0CE7608B-DED4-4B9A-BFF4-18D5BED6511A}" = dir=out | name=@{microsoft.bingmaps_1.2.0.136_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} | "{0F993E94-DBBB-4A72-9970-497144E5EADF}" = dir=out | name=@{microsoft.xboxlivegames_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} | "{14509ED4-FF3E-400B-A137-5CF91C478094}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | "{16F6828C-14AA-45F9-A057-0C12B29DC52A}" = dir=in | name=ebay | "{1AE289B7-533F-43B7-8DDE-237D7CC788BF}" = dir=out | name=evernote | "{1B75E713-F934-4A25-82EC-4E1015B3C702}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{1C643B31-D393-4262-83FE-00086643F47A}" = dir=in | name=@{microsoft.bing_1.2.0.137_x64__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} | "{1E000604-B3B9-44D1-B6A1-9DC2C7A37099}" = dir=out | name=norton studio | "{1E9E6065-1F7A-47D5-A1B8-2E46D51A8357}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "{20B7DD90-18AE-429D-A9BA-A6575AF072CD}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{2828E860-605A-49DB-9D5E-DB5292CA500D}" = protocol=17 | dir=in | app=c:\program files (x86)\lenovo\system update\uncserver.exe | "{28F92326-181F-48D7-B46E-FDCF4BF1986D}" = dir=out | name=@{microsoft.zunevideo_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/33270} | "{3006D6C5-BE17-4014-B914-A720FE5D9D2D}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{3346034A-9C76-46E6-89C5-1484939FE967}" = dir=out | name=@{microsoft.bingnews_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} | "{36353480-C7C4-469D-ADE0-537E983126B9}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer.exe | "{36A9CA4D-8970-4846-B55D-367E64C4477E}" = dir=in | name=evernote | "{3BC5A5F1-943C-45DF-8E4C-BE4A1420F1D1}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{4235DFDA-6214-4D42-8386-26E82133B3A5}" = dir=out | name=@{microsoft.bingweather_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} | "{4345D228-B94E-4FB9-BC4E-626C4C9F36DB}" = protocol=17 | dir=in | app=c:\program files (x86)\lenovo\system update\uncserver.exe | "{4626B2FA-8DAC-498A-A7B9-1107620AD05A}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "{4A0B4710-0410-4789-B7BA-EDE45DE991B5}" = dir=in | name=kindle | "{4B8B9036-5EA2-4491-91F2-05F7AAC785E5}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer_service.exe | "{4D417F6C-8063-4199-BB04-573E5066BDFB}" = dir=out | name=ebay | "{4D640432-7A09-4992-B3A5-F6D517AAB764}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe | "{4E59881B-CBA7-4EEF-80C0-F7F060D43D3C}" = dir=out | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} | "{5F84608A-3D04-4D68-BDE8-35AF225D69FE}" = dir=out | name=@{microsoft.microsoftskydrive_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftskydrive/resources/shortproductname} | "{5FA090F9-3246-4859-8724-7D7FBB578B67}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | "{6C39DD7A-0DF4-421F-9595-AB95EC5F8D5D}" = dir=in | name=lenovo settings | "{70EADBAE-8248-4AA5-A1BA-74AFD0FC06CB}" = dir=out | name=lenovo companion | "{72843DC6-D9E1-471A-9C3F-A4E6406A1F79}" = protocol=17 | dir=in | app=c:\program files (x86)\nero\km\kwikmedia.exe | "{739BE44F-2C0F-4FBE-A9AD-07B3CC4917CE}" = dir=in | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} | "{76F48CB2-326E-44F7-8B6E-570FA91E27E6}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{76FD736D-44D8-44F4-A4AE-93DDBD006BD7}" = dir=out | name=@{microsoft.bing_1.2.0.137_x64__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} | "{7715A235-A34D-4F01-A31C-2A0F85CEFB7B}" = protocol=6 | dir=out | app=system | "{772F15E1-D9BF-41C6-BBC4-DFBBF8D37915}" = dir=out | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} | "{77CE9C91-4321-4F5A-88A9-A9C3AFE16FA8}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | "{7B91C40A-D235-4766-B9C8-7A046CCAD778}" = dir=out | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} | "{808F1451-4108-46FD-ADBB-F17324B5F0BD}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} | "{81B7115E-A163-4EF4-930A-379AAEC304BE}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | "{8B2B611C-753A-42F0-AB6C-105FA981DE77}" = protocol=6 | dir=in | app=c:\program files (x86)\lenovo\system update\uncserver.exe | "{95ADC261-44F3-4C6B-834D-365250C3A5D6}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe | "{95C5A160-2C51-4D8D-BC68-5613233E2B65}" = dir=out | name=@{microsoft.zunemusic_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/33273} | "{98493E11-0FAF-4F91-846F-6B1F8CE5EE14}" = dir=out | name=kindle | "{A0E326E1-C4D2-4B2A-A28C-197F9F113760}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe | "{A6BB52F2-5283-4323-8B7E-B0EC5658B4D5}" = protocol=6 | dir=in | app=c:\program files (x86)\nero\km\kwikmedia.exe | "{A6EFE176-2F43-403C-A6C7-CE5070AEB460}" = dir=out | name=@{microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} | "{A9231215-8ABC-487E-BDDD-35740E7FC18E}" = dir=in | name=@{microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} | "{ABC523CD-4309-47A7-B91F-EA089FFF52EB}" = protocol=6 | dir=in | app=c:\program files (x86)\lenovo\system update\uncserver.exe | "{BCAD7C8D-BBE6-4E3F-B145-742C1D7A9C0E}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{BE2AEC54-0105-44C6-8AB3-0C782AEC5665}" = dir=out | name=rara.com | "{BE362D92-725A-4965-8EE3-0AEF7DCA7712}" = dir=out | name=@{microsoft.bingsports_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} | "{C7F5052C-F222-4218-9E09-64C688285B74}" = dir=out | name=@{microsoft.bingtravel_1.2.0.145_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} | "{C85DA0DF-E230-4AC9-BE0E-7E80E42C738E}" = dir=in | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} | "{C9598C17-F9FA-47C6-BE96-CA64BC41CC87}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer_service.exe | "{CA26AD54-5978-4352-841A-62D340B06DD3}" = dir=out | name=lenovo settings | "{CF3EB9A1-0C3A-4F2C-A2B5-2A28471DEFC1}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{D1F81ABC-647F-40DF-92C1-6E3AE1BD6E08}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{D3EA8723-1DA3-451E-8E3B-629EA73DC746}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | "{D52071EA-978A-408C-ACA9-C0AF2A549F70}" = dir=out | name=lenovo support | "{D96D94F4-D54A-4CC4-A6A0-78CFEE46AA7B}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{DA8F7AE5-FE14-4921-90C5-62DC881DAEF5}" = dir=out | name=skype | "{DBCC3CA7-F379-466E-8210-0C6D3A16697F}" = dir=out | name=@{microsoft.bingfinance_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} | "{DBEF8E5C-75B3-4348-9D34-CAE05FEB50D1}" = dir=in | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} | "{E7985E1D-C36F-4787-80A8-6350D07E9266}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} | "{EA33C1DB-E661-4921-AE9D-F2A85E4B4DE7}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer.exe | "{EEA07DC3-3A0A-4765-AC42-0882664E25B4}" = dir=in | name=skype | "{F47CC5D7-0C56-4854-AFDA-02736DC5907A}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{F496476F-C25E-4F52-BC60-62B0CB3BBFA5}" = dir=out | name=accuweather for windows 8 | "{FC3E7257-B6C6-4F7C-83F2-6839936F7A02}" = dir=out | name=windows_ie_ac_001 | "TCP Query User{391A622A-5BF4-483C-8277-266A47F58A65}C:\program files (x86)\skype\phone\skype.exe" = protocol=6 | dir=in | app=c:\program files (x86)\skype\phone\skype.exe | "TCP Query User{3ACD4DAF-199A-42D5-B8A2-0DC559ED2FB9}C:\program files (x86)\nero\km\kwikmedia.exe" = protocol=6 | dir=in | app=c:\program files (x86)\nero\km\kwikmedia.exe | "TCP Query User{9D579D2E-BF65-4194-92D7-AD96BD9D3285}C:\program files (x86)\skype\phone\skype.exe" = protocol=6 | dir=in | app=c:\program files (x86)\skype\phone\skype.exe | "UDP Query User{6ACC344C-0C1A-4FAF-B0D5-3B307C06E56B}C:\program files (x86)\skype\phone\skype.exe" = protocol=17 | dir=in | app=c:\program files (x86)\skype\phone\skype.exe | "UDP Query User{BC615DCB-3F24-43B0-8593-AA19A08A3038}C:\program files (x86)\nero\km\kwikmedia.exe" = protocol=17 | dir=in | app=c:\program files (x86)\nero\km\kwikmedia.exe | "UDP Query User{D073BE9B-F77D-4C9C-8F15-029E7F708345}C:\program files (x86)\skype\phone\skype.exe" = protocol=17 | dir=in | app=c:\program files (x86)\skype\phone\skype.exe | [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP270_series" = Canon MP270 series MP Drivers "{14CE4053-33B9-4973-9377-E8D1844C1066}" = Lenovo Solution Center "{1CACE706-D749-44CA-BBFE-AF60946D1B18}" = Password Vault "{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 "{2368907C-E8F6-4750-A023-254C3E2B5E8D}" = Classic Shell "{26A24AE4-039D-4CA4-87B4-2F86417021FF}" = Java 7 Update 21 (64-bit) "{3694BA2E-BE31-4B7E-886B-A0B559E69D4D}_is1" = Lenovo Settings Dependency Package "{42603F7D-B08D-436B-B0D8-3E2DEF1AFD41}_is1" = Lenovo Settings Mobile Hotspot "{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 "{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 "{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP "{88C6A6D9-324C-46E8-BA87-563D14021442}_is1" = Lenovo Settings - Camera Audio "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007 "{90120000-002A-0410-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Italian) 2007 "{ABE4638D-D208-4061-9F26-E3E11E3A1E0C}" = Lenovo Patch Utility 64 bit "{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}" = ThinkPad Bluetooth with Enhanced Data Rate Software "{D5A536B3-2998-4258-A8C9-A739AF89B04A}" = Nitro Pro 7 "{F4404AFD-2EF3-40C1-8C09-29E5F3B6972B}" = Intel® Trusted Connect Service Client "Broadcom 802.11 Network Adapter" = Broadcom 802.11 Network Adapter "CCleaner" = CCleaner "D71710885D9974CC7D79FF49E8EFAC772C251FFA" = Windows Driver Package - Intel Corporation (iaStorA) HDC (07/09/2012 11.5.0.1207) "E56A6B34B44A7A597FFEBE0E14D81095E0FD4D73" = Windows Driver Package - Lenovo 1.66.00.07 (08/15/2012 1.66.00.07) "KLiteCodecPack64_is1" = K-Lite Codec Pack 9.9.5 (64-bit) "LenovoAutoScrollUtility" = Lenovo Auto Scroll Utility "OnScreenDisplay" = On Screen Display "Power Management Driver" = Lenovo Power Management Driver "SynTPDeinstKey" = Synaptics Pointing Device Driver "WinRAR archiver" = WinRAR 4.20 (64-bit) [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{000CA3AE-9186-4CC1-A6B8-604EEE8048A1}" = IncrediMail "{0071820F-09B0-4998-8320-F89629DCBC99}" = Nero BackItUp "{052A1E34-A54B-458C-A4E3-24C3E054754A}" = Nero Kwik Media "{05C6B128-1B40-4495-9CB9-090B368BFA0A}" = Nero Video Samples "{0708FF30-78C0-47B0-81F0-C84604DC769C}" = Nero Express Help (CHM) "{0B311221-05A5-4766-8D03-7A6446794156}" = Nero RescueAgent Help (CHM) "{0E4630AF-0AB7-440E-A978-1A78FC4F43B9}" = Nero Launcher "{13F59938-C595-479C-B479-F171AB9AF64F}" = Lenovo User Guide "{14544CE3-0AA3-48C3-93C2-758578EA9F99}" = Photo Notifier and Animation Creator "{150D88F1-40AF-4678-A39D-BCE2332F34E5}" = Nero Abstract Themes "{1845470B-EB14-4ABC-835B-E36C693DC07D}" = Skype™ 6.5 "{1943C3BD-4462-4612-92C3-D36DD917C447}" = Nero Recode "{1B6F5E51-575E-4693-BCA2-7543570D076D}" = Nero Kwik Themes Basic "{1F16820E-D0E7-4636-939E-45CBFEFB06E1}" = Nero Kwik Media Help (CHM) "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{22856BC3-F893-4CBF-95F2-E1F63CD2B1AB}" = Nero Video Transitions 1 "{2432E589-6256-4513-B0BF-EFA8E325D5F0}" = Nero SharedVideoCodecs "{25AAE41B-C7A6-D04E-BABC-2D1B0D1DF4B0}" = PPTChecckier "{25C64847-B900-48AD-A164-1B4F9B774650}" = Lenovo System Update "{26A24AE4-039D-4CA4-87B4-2F83217025FF}" = Java 7 Update 55 "{2890E324-6F3B-4975-8B95-E7D6D80E0226}" = Nero Burning ROM Help (CHM) "{29E2C1C6-D76A-41D3-980F-6E346AA9A6A8}" = Nero Cliparts "{29F67D84-3A70-456E-806A-52301B02070B}" = Nero Effects Basic "{3AAB08A3-F129-4BD5-B409-AE674F93759D}" = Prerequisite installer "{40368379-1065-46D0-BD0E-39D07260F69D}" = Alcor Micro USB Card Reader "{40F4FF7A-B214-4453-B973-080B09CED019}" = Absolute Reminder "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4D25D881-7183-462F-95C8-990CA1944E0B}" = Nero PiP Effects 1 "{4E7AC009-5212-499F-942F-A5AA42AE359E}" = Nero 12 Content Pack "{504D84ED-AE75-4F85-A68B-BB3D4CB3E169}" = Nero Holiday and Sports Themes "{560FC78C-A4B2-461D-9B47-820C1EEF87B8}" = Nero 12 "{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml "{5963F4B4-D138-47CD-ADEF-470E87E185BD}" = Nero Burning ROM "{5B79E730-D897-4B8F-A1AD-7BB2D1F22B96}" = Nero Blu-ray Player Help (CHM) "{608E1B9B-A2E8-4A1F-8BAB-874EB0DD25E3}" = Intel(R) Update Manager "{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM "{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components "{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}" = Nero Update "{7BD7A4BF-EA64-4BFE-A9D3-3FDC9B6EFC23}" = Nero Football (Soccer) Themes "{828175FA-7307-4DBF-95AD-9CEE086B6F45}" = Welcome App (Start-up experience) "{83A4E573-E2C2-46FB-9DA6-6A2BBBF5A588}" = Nero Retro Film Themes "{83FCCFCD-46E3-43FB-A397-78BFD5A8980A}" = Nero Video "{848A7C68-0ADC-4193-8A89-2CEA78E56A0C}" = Nero Express "{86847081-B387-4F49-AED1-C9B0A090D66C}" = Nero Recode Help (CHM) "{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver "{8B5AD338-7ABC-4ECB-9C2C-687F84AEDDB1}" = Nero Platinum Effects 12 "{90120000-0015-0410-0000-0000000FF1CE}" = Microsoft Office Access MUI (Italian) 2007 "{90120000-0015-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{90120000-0016-0410-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Italian) 2007 "{90120000-0016-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{90120000-0018-0410-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Italian) 2007 "{90120000-0018-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{90120000-0019-0410-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Italian) 2007 "{90120000-0019-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{90120000-001A-0410-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Italian) 2007 "{90120000-001A-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{90120000-001B-0410-0000-0000000FF1CE}" = Microsoft Office Word MUI (Italian) 2007 "{90120000-001B-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007 "{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007 "{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007 "{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007 "{90120000-001F-0410-0000-0000000FF1CE}_ENTERPRISE_{A23BFC95-4A73-410F-9248-4C2B48E38C49}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{90120000-002A-0410-1000-0000000FF1CE}_ENTERPRISE_{C0C7E58F-D0A1-4102-855B-0B7AA2E8F1C1}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{90120000-002C-0410-0000-0000000FF1CE}" = Microsoft Office Proofing (Italian) 2007 "{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007 "{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{90120000-0044-0410-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Italian) 2007 "{90120000-0044-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{90120000-006E-0410-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Italian) 2007 "{90120000-006E-0410-0000-0000000FF1CE}_ENTERPRISE_{C0C7E58F-D0A1-4102-855B-0B7AA2E8F1C1}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{90120000-00A1-0410-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Italian) 2007 "{90120000-00A1-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{90120000-00BA-0410-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Italian) 2007 "{90120000-00BA-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{955BF340-C379-4375-AA2F-F3BCB2A498AB}" = Nero Family and Events Themes "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 "{A2616871-3463-BCEE-5AFA-73773317A381}" = savingtuoyou "{A2FE691E-3F8E-4E30-AA7D-FF17AC77EA87}" = Nero Blu-ray Player "{A49C19F1-A852-4365-910C-AE43816EBDB8}" = Google SketchUp 7 "{A7A0BF2E-31CC-49E3-9913-52C503EB969D}" = Nero Audio Pack 1 "{A802F1E3-34C8-4C84-9948-C1C4E37D0FA9}" = Lenovo QuickLaunch "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{ABC88553-8770-4B97-B43E-5A90647A5B63}" = Nero ControlCenter "{AC76BA86-7AD7-1040-7B44-AB0000000001}" = Adobe Reader XI (11.0.06) - Italiano "{ACE49D50-19CD-44A6-B192-46F985283B26}" = Nero PiP Effects Basic "{AD32F5E9-6BDD-480A-8B7B-95571D04691C}" = Lenovo Patch Utility "{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0332}" = Integrated Camera "{B128179D-A5E1-43AC-9422-12A109ECD2A0}" = Nero Video Help (CHM) "{B92C2C6C-F70E-497B-88A7-1FEF9888272B}" = Adobe AIR "{B953732D-B623-4E84-B369-CFFF7B1AE06F}" = Nero RescueAgent "{BEBEE34D-84A2-4EDD-8BEA-96CC54371263}" = Nero Core Components "{C4C6DF25-0E59-46EE-B24B-DF8749D8FF3A}" = Nero Image Samples "{C4F587B0-94B6-3EE0-B4E2-73578833A5C1}" = Google Chrome "{C994C746-C6D0-4EBA-B09E-DF7B18381B69}" = Nero ControlCenter Help (CHM) "{CE675FBD-75C3-45F1-B6AF-8D250861D536}" = Nero Disc Menus 3 "{E17BCB76-9924-4BD5-B6D6-50D3407B4E74}" = Nero Disc Menus Basic "{EEBF1676-AF87-4266-93D8-0C14A34C4217}" = Nero Disc Menus 1 "{EF0D1292-8FC1-41BE-9740-DBC134F66415}" = Nero BackItUp Help (CHM) "{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 "{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{FCB3772C-B7D0-4933-B1A9-3707EBACC573}" = Intel(R) SDK for OpenCL - CPU Only Runtime Package "{FD4EC278-C1B1-4496-99ED-C0BE1B0AA521}" = Lenovo Warranty Information "{FE81E6B5-652B-40E7-B3B2-7171C6F297DA}" = Nero Disc Menus 2 "90EBE418-DF2C-04B7-720B-4C2FCFB91845" = find-a-deal "Adobe AIR" = Adobe AIR "Adobe Flash Player Plugin" = Adobe Flash Player 13 Plugin "Adobe Shockwave Player" = Adobe Shockwave Player 12.0 "AmUStor" = Alcor Micro USB Card Reader "CanonMyPrinter" = Canon Utilities My Printer "CanonSolutionMenu" = Canon Utilities Solution Menu "Combined Community Codec Pack_is1" = Combined Community Codec Pack 2013-05-30 "Easy-PhotoPrint EX" = Canon Utilities Easy-PhotoPrint EX "ENTERPRISE" = Microsoft Office Enterprise 2007 "IncrediMail" = IncrediMail 2.5 "Intel AppUp(SM) center 33057" = Intel AppUp(SM) center "KLiteCodecPack_is1" = K-Lite Codec Pack 9.9.5 (Full) "Lenovo Dependency Package_is1" = Lenovo Dependency Package "Mozilla Firefox 29.0 (x86 it)" = Mozilla Firefox 29.0 (x86 it) "MozillaMaintenanceService" = Mozilla Maintenance Service "MP Navigator EX 3.0" = Canon MP Navigator EX 3.0 "Photo Notifier and Animation Creator" = Photo Notifier and Animation Creator "Registrazione utente Canon MP270 series" = Registrazione utente Canon MP270 series "SugarSync" = SugarSync Manager "TeamViewer 8" = TeamViewer 8 "VLC media player" = VLC media player 2.0.6 [color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Songr" = Songr "Songr Packages" = Songr Packages [color=#E56717]========== Last 20 Event Log Errors ==========[/color] [ Application Events ] Error - 01/05/2014 04.58.08 | Computer Name = Lenovo-PC | Source = Location Task Manager | ID = 0 Description = (CheckLpdVersion()): Impossibile aprire common_lpd.xml; controllare se Location Awareness è installato: C:\ProgramData\Lenovo\LocationAware\common_lpd.xml Error - 01/05/2014 06.00.44 | Computer Name = Lenovo-PC | Source = Location Task Manager | ID = 0 Description = (CheckLpdVersion()): Impossibile trovare user_lpd.xml; controllare se Lenovo Settings è installato: C:\Users\Otto\AppData\Local\Packages\LenovoCorporation.LenovoSettings_4642shxvsv8s2\LocalState\user_lpd.xml Error - 01/05/2014 06.00.44 | Computer Name = Lenovo-PC | Source = Location Task Manager | ID = 0 Description = (CheckLpdVersion()): Impossibile aprire common_lpd.xml; controllare se Location Awareness è installato: C:\ProgramData\Lenovo\LocationAware\common_lpd.xml Error - 01/05/2014 06.00.44 | Computer Name = Lenovo-PC | Source = Location Task Manager | ID = 0 Description = (GetUserLpd()): Impossibile trovare user_lpd.xml; controllare se Lenovo Settings è installato: C:\Users\Otto\AppData\Local\Packages\LenovoCorporation.LenovoSettings_4642shxvsv8s2\LocalState\user_lpd.xml Error - 01/05/2014 06.00.45 | Computer Name = Lenovo-PC | Source = Location Task Manager | ID = 0 Description = (GetUserLpd()): Impossibile trovare user_lpd.xml; controllare se Lenovo Settings è installato: C:\Users\Otto\AppData\Local\Packages\LenovoCorporation.LenovoSettings_4642shxvsv8s2\LocalState\user_lpd.xml Error - 01/05/2014 06.00.45 | Computer Name = Lenovo-PC | Source = Location Task Manager | ID = 0 Description = (GetUserLpd()): Impossibile trovare user_lpd.xml; controllare se Lenovo Settings è installato: C:\Users\Otto\AppData\Local\Packages\LenovoCorporation.LenovoSettings_4642shxvsv8s2\LocalState\user_lpd.xml Error - 01/05/2014 06.01.09 | Computer Name = Lenovo-PC | Source = Location Task Manager | ID = 0 Description = (CheckLpdVersion()): Impossibile trovare user_lpd.xml; controllare se Lenovo Settings è installato: C:\Users\Otto\AppData\Local\Packages\LenovoCorporation.LenovoSettings_4642shxvsv8s2\LocalState\user_lpd.xml Error - 01/05/2014 06.01.09 | Computer Name = Lenovo-PC | Source = Location Task Manager | ID = 0 Description = (CheckLpdVersion()): Impossibile aprire common_lpd.xml; controllare se Location Awareness è installato: C:\ProgramData\Lenovo\LocationAware\common_lpd.xml Error - 01/05/2014 12.01.12 | Computer Name = Lenovo-PC | Source = Location Task Manager | ID = 0 Description = (CheckLpdVersion()): Impossibile trovare user_lpd.xml; controllare se Lenovo Settings è installato: C:\Users\Otto\AppData\Local\Packages\LenovoCorporation.LenovoSettings_4642shxvsv8s2\LocalState\user_lpd.xml Error - 01/05/2014 12.01.12 | Computer Name = Lenovo-PC | Source = Location Task Manager | ID = 0 Description = (CheckLpdVersion()): Impossibile aprire common_lpd.xml; controllare se Location Awareness è installato: C:\ProgramData\Lenovo\LocationAware\common_lpd.xml [ OSession Events ] Error - 29/10/2013 05.04.40 | Computer Name = Lenovo-PC | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6611.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 499 seconds with 0 seconds of active time. This session ended with a crash. [ System Events ] Error - 30/04/2014 18.53.03 | Computer Name = Lenovo-PC | Source = DCOM | ID = 10016 Description = Error - 30/04/2014 18.53.03 | Computer Name = Lenovo-PC | Source = DCOM | ID = 10016 Description = Error - 01/05/2014 01.59.29 | Computer Name = Lenovo-PC | Source = DCOM | ID = 10016 Description = Error - 01/05/2014 01.59.29 | Computer Name = Lenovo-PC | Source = DCOM | ID = 10016 Description = Error - 01/05/2014 03.21.14 | Computer Name = Lenovo-PC | Source = DCOM | ID = 10016 Description = Error - 01/05/2014 03.21.18 | Computer Name = Lenovo-PC | Source = DCOM | ID = 10016 Description = Error - 01/05/2014 04.17.42 | Computer Name = Lenovo-PC | Source = Service Control Manager | ID = 7030 Description = Il servizio PEVSystemStart è contrassegnato come interattivo. Il sistema non è configurato per consentire servizi interattivi. Questo servizio potrà non funzionare correttamente. Error - 01/05/2014 04.32.04 | Computer Name = Lenovo-PC | Source = Service Control Manager | ID = 7030 Description = Il servizio PEVSystemStart è contrassegnato come interattivo. Il sistema non è configurato per consentire servizi interattivi. Questo servizio potrà non funzionare correttamente. Error - 01/05/2014 06.27.15 | Computer Name = Lenovo-PC | Source = DCOM | ID = 10016 Description = Error - 01/05/2014 06.27.15 | Computer Name = Lenovo-PC | Source = DCOM | ID = 10016 Description = < End of report >

di **mauri1974** » 01/05/14 17:47

OTL

Codice: Seleziona tutto: OTL logfile created on: 01/05/2014 18.17.18 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Otto\Downloads 64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation Internet Explorer (Version = 9.10.9200.16863) Locale: 00000410 | Country: Italia | Language: ITA | Date Format: dd/MM/yyyy 3,86 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 51,87% Memory free 4,54 Gb Paging File | 2,38 Gb Available in Paging File | 52,48% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 281,38 Gb Total Space | 238,87 Gb Free Space | 84,89% Space Free | Partition Type: NTFS Computer Name: LENOVO-PC | User Name: Otto | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - C:\Users\Otto\Downloads\OTL.exe (OldTimer Tools) PRC - C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) PRC - C:\Program Files (x86)\find-a-deal\find-a-dealH.exe () PRC - C:\Program Files (x86)\find-a-deal\find-a-dealyd161.exe () PRC - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_206.exe (Adobe Systems, Inc.) PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated) PRC - C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe (IncrediMail, Ltd.) PRC - C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe (IncrediMail, Ltd.) PRC - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe (TeamViewer GmbH) PRC - C:\Program Files\lenovo\lenovo solution center\lsc.exe () PRC - C:\Program Files\Lenovo Fingerprint Reader\x86\IEWebSiteLogon.exe () PRC - C:\Windows\SysWOW64\NLSSRV32.EXE (Nalpeiron Ltd.) PRC - C:\Program Files (x86)\USB Camera\VM331STI.EXE (Vimicro) PRC - C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE (Lenovo) PRC - C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe (Lenovo) PRC - C:\Program Files\ThinkPad\Bluetooth Software\Bluetooth Headset Helper.exe (Broadcom Corporation.) PRC - C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe () PRC - C:\Program Files (x86)\Lenovo\LocationAware\lpdagent.exe () PRC - C:\Program Files\Lenovo\Communications Utility\vcamsvchlpr.exe (Lenovo Corporation) PRC - C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe (Lenovo Corporation) PRC - C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe (Lenovo Group Limited) PRC - C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe (Lenovo Corporation) PRC - C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe (Lenovo Group Limited) PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation) PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation) PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) PRC - C:\Program Files (x86)\Nero\Update\NASvc.exe (Nero AG) [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - C:\Program Files (x86)\Mozilla Firefox\mozjs.dll () MOD - C:\Program Files (x86)\find-a-deal\find-a-dealH.exe () MOD - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_206.dll () MOD - C:\windows\assembly\NativeImages_v4.0.30319_32\System.Xml\d7aaae3b1c95a1a658446d302b9a7f88\System.Xml.ni.dll () MOD - C:\windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\11b4af16e791a6b0ada4a97d3e64e27a\System.Windows.Forms.ni.dll () MOD - C:\windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\61be23d6a688188e3419a1eb46fc9d9d\System.Drawing.ni.dll () MOD - C:\windows\assembly\NativeImages_v4.0.30319_32\System.Dired13b18a9#\4b060fbe65a1f31effe39dac3beed82f\System.DirectoryServices.ni.dll () MOD - C:\windows\assembly\NativeImages_v4.0.30319_32\System.Core\bca236f576ea12db3a9191f4586a445a\System.Core.ni.dll () MOD - C:\windows\assembly\NativeImages_v4.0.30319_32\System\f0602360211041a6be208f0b4138dddd\System.ni.dll () MOD - C:\windows\assembly\NativeImages_v4.0.30319_32\CustomMarshalers\0000f5ef7d4e9fef6ab4084784cf238c\CustomMarshalers.ni.dll () MOD - C:\windows\assembly\NativeImages_v4.0.30319_32\mscorlib\391541c89ed7585fc7e8936c43cee387\mscorlib.ni.dll () MOD - C:\Program Files (x86)\IncrediMail\Bin\ImLookExU.dll () MOD - C:\Program Files (x86)\IncrediMail\Bin\ImComUtlU.dll () MOD - C:\Program Files (x86)\IncrediMail\bin\ImAppRU.dll () MOD - C:\Program Files (x86)\IncrediMail\Bin\wlessfp1.dll () MOD - C:\Program Files (x86)\IncrediMail\Bin\IMHttpComm.dll () MOD - C:\Program Files (x86)\IncrediMail\Bin\pmc.dll () MOD - C:\Program Files\lenovo\lenovo solution center\lsc.exe () MOD - C:\Program Files\Lenovo Fingerprint Reader\x86\IEWebSiteLogon.exe () MOD - C:\Program Files\Lenovo Fingerprint Reader\x86\DataManager.dll () MOD - C:\Program Files (x86)\Lenovo\LocationAware\lpdagent.exe () [color=#E56717]========== Services (SafeList) ==========[/color] SRV:[b]64bit:[/b] - (WinDefend) -- C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation) SRV:[b]64bit:[/b] - (WSService) -- C:\Windows\SysNative\WSService.dll (Microsoft Corporation) SRV:[b]64bit:[/b] - (Wcmsvc) -- C:\Windows\SysNative\wcmsvc.dll (Microsoft Corporation) SRV:[b]64bit:[/b] - (DsmSvc) -- C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation) SRV:[b]64bit:[/b] - (netprofm) -- C:\Windows\SysNative\netprofmsvc.dll (Microsoft Corporation) SRV:[b]64bit:[/b] - (BrokerInfrastructure) -- C:\Windows\SysNative\bisrv.dll (Microsoft Corporation) SRV:[b]64bit:[/b] - (AudioEndpointBuilder) -- C:\Windows\SysNative\AudioEndpointBuilder.dll (Microsoft Corporation) SRV:[b]64bit:[/b] - (TimeBroker) -- C:\Windows\SysNative\TimeBrokerServer.dll (Microsoft Corporation) SRV:[b]64bit:[/b] - (SystemEventsBroker) -- C:\Windows\SysNative\SystemEventsBrokerServer.dll (Microsoft Corporation) SRV:[b]64bit:[/b] - (wlidsvc) -- C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation) SRV:[b]64bit:[/b] - (LSM) -- C:\Windows\SysNative\lsm.dll (Microsoft Corporation) SRV:[b]64bit:[/b] - (PrintNotify) -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll (Microsoft Corporation) SRV:[b]64bit:[/b] - (fhsvc) -- C:\Windows\SysNative\fhsvc.dll (Microsoft Corporation) SRV:[b]64bit:[/b] - (FPLService) -- C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe (AuthenTec, Inc) SRV:[b]64bit:[/b] - (NitroDriverReadSpool2) -- C:\Program Files\Common Files\Nitro PDF\Professional\7.0\NitroPDFDriverService2x64.exe (Nitro PDF Software) SRV:[b]64bit:[/b] - (LENOVO.MICMUTE) -- C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe (Lenovo Group Limited) SRV:[b]64bit:[/b] - (LnvHotSpotSvc) -- C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe (Lenovo) SRV:[b]64bit:[/b] - (btwdins) -- C:\Program Files\ThinkPad\Bluetooth Software\btwdins.exe (Broadcom Corporation.) SRV:[b]64bit:[/b] - (BcmBtRSupport) -- C:\Windows\SysNative\BtwRSupportService.exe (Broadcom Corporation.) SRV:[b]64bit:[/b] - (Lenovo System Agent Service) -- C:\Program Files\lenovo\SystemAgent\SystemAgentService.exe (LENOVO INCORPORATED.) SRV:[b]64bit:[/b] - (IBMPMSVC) -- C:\Windows\SysNative\ibmpmsvc.exe (Lenovo.) SRV:[b]64bit:[/b] - (LENOVO.TVTVCAM) -- C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe (Lenovo Corporation) SRV:[b]64bit:[/b] - (LENOVO.TPKNRSVC) -- C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe (Lenovo Group Limited) SRV:[b]64bit:[/b] - (LENOVO.CAMMUTE) -- C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe (Lenovo Group Limited) SRV:[b]64bit:[/b] - (Lenovo.VIRTSCRLSVC) -- C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe (Lenovo Group Limited) SRV:[b]64bit:[/b] - (WiaRpc) -- C:\Windows\SysNative\wiarpc.dll (Microsoft Corporation) SRV:[b]64bit:[/b] - (VaultSvc) -- C:\Windows\SysNative\vaultsvc.dll (Microsoft Corporation) SRV:[b]64bit:[/b] - (svsvc) -- C:\Windows\SysNative\svsvc.dll (Microsoft Corporation) SRV:[b]64bit:[/b] - (Netlogon) -- C:\Windows\SysNative\netlogon.dll (Microsoft Corporation) SRV:[b]64bit:[/b] - (NcaSvc) -- C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation) SRV:[b]64bit:[/b] - (NcdAutoSetup) -- C:\Windows\SysNative\NcdAutoSetup.dll (Microsoft Corporation) SRV:[b]64bit:[/b] - (KeyIso) -- C:\Windows\SysNative\keyiso.dll (Microsoft Corporation) SRV:[b]64bit:[/b] - (EFS) -- C:\Windows\SysNative\efssvc.dll (Microsoft Corporation) SRV:[b]64bit:[/b] - (DeviceAssociationService) -- C:\Windows\SysNative\das.dll (Microsoft Corporation) SRV:[b]64bit:[/b] - (AllUserInstallAgent) -- C:\Windows\SysNative\AUInstallAgent.dll (Microsoft Corporation) SRV:[b]64bit:[/b] - (vmicvss) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation) SRV:[b]64bit:[/b] - (vmictimesync) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation) SRV:[b]64bit:[/b] - (vmicshutdown) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation) SRV:[b]64bit:[/b] - (vmicrdv) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation) SRV:[b]64bit:[/b] - (vmickvpexchange) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation) SRV:[b]64bit:[/b] - (vmicheartbeat) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation) SRV:[b]64bit:[/b] - (TrueService) -- C:\Program Files\Common Files\AuthenTec\TrueService.exe (AuthenTec, Inc.) SRV:[b]64bit:[/b] - (TPHKLOAD) -- C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe (Lenovo Group Limited) SRV:[b]64bit:[/b] - (Intel(R) -- C:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel(R) Corporation) SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation) SRV - (find-a-deal) -- C:\Program Files (x86)\find-a-deal\find-a-dealyd161.exe () SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated) SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated) SRV - (TeamViewer8) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe (TeamViewer GmbH) SRV - (PrintNotify) -- C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll (Microsoft Corporation) SRV - (nlsX86cc) -- C:\Windows\SysWOW64\NLSSRV32.EXE (Nalpeiron Ltd.) SRV - (Power Manager DBC Service) -- C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE (Lenovo) SRV - (cphs) -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe (Intel Corporation) SRV - (SUService) -- C:\Program Files (x86)\Lenovo\System Update\SUService.exe () SRV - (LocationTaskManager) -- C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe () SRV - (StorSvc) -- C:\Windows\SysWOW64\StorSvc.dll (Microsoft Corporation) SRV - (UNS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation) SRV - (LMS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) SRV - (Intel(R) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation) SRV - (jhi_service) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) SRV - (NAUpdate) -- C:\Program Files (x86)\Nero\Update\NASvc.exe (Nero AG) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV:[b]64bit:[/b] - (ssudmdm) -- C:\Windows\SysNative\Drivers\ssudmdm.sys (DEVGURU Co., LTD.(www.devguru.co.kr)) DRV:[b]64bit:[/b] - (dg_ssudbus) -- C:\Windows\SysNative\Drivers\ssudbus.sys (DEVGURU Co., LTD.(www.devguru.co.kr)) DRV:[b]64bit:[/b] - (WdBoot) -- C:\Windows\SysNative\Drivers\WdBoot.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (WdFilter) -- C:\Windows\SysNative\Drivers\WdFilter.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (WFPLWFS) -- C:\Windows\SysNative\Drivers\wfplwfs.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (spaceport) -- C:\Windows\SysNative\Drivers\spaceport.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (USBHUB3) -- C:\Windows\SysNative\Drivers\USBHUB3.SYS (Microsoft Corporation) DRV:[b]64bit:[/b] - (dam) -- C:\Windows\SysNative\Drivers\dam.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (TPM) -- C:\Windows\SysNative\Drivers\tpm.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (GPIOClx0101) -- C:\Windows\SysNative\Drivers\msgpioclx.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (USBXHCI) -- C:\Windows\SysNative\Drivers\USBXHCI.SYS (Microsoft Corporation) DRV:[b]64bit:[/b] - (UCX01000) -- C:\Windows\SysNative\Drivers\UCX01000.SYS (Microsoft Corporation) DRV:[b]64bit:[/b] - (sdbus) -- C:\Windows\SysNative\Drivers\sdbus.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (BthAvrcpTg) -- C:\Windows\SysNative\Drivers\BthAvrcpTg.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (storahci) -- C:\Windows\SysNative\Drivers\storahci.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (pdc) -- C:\Windows\SysNative\Drivers\pdc.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (MEIx64) -- C:\Windows\SysNative\Drivers\HECIx64.sys (Intel Corporation) DRV:[b]64bit:[/b] - (msgpiowin32) -- C:\Windows\SysNative\Drivers\msgpiowin32.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (BCM43XX) -- C:\Windows\SysNative\Drivers\BCMWL63a.SYS (Broadcom Corporation) DRV:[b]64bit:[/b] - (bthhfhid) -- C:\Windows\SysNative\Drivers\BthhfHid.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (hidi2c) -- C:\Windows\SysNative\Drivers\hidi2c.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (FxPPM) -- C:\Windows\SysNative\Drivers\fxppm.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (RdpVideoMiniport) -- C:\Windows\SysNative\Drivers\rdpvideominiport.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (sdstor) -- C:\Windows\SysNative\Drivers\sdstor.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (ebdrv) -- C:\Windows\SysNative\Drivers\evbda.sys (Broadcom Corporation) DRV:[b]64bit:[/b] - (b06bdrv) -- C:\Windows\SysNative\Drivers\bxvbda.sys (Broadcom Corporation) DRV:[b]64bit:[/b] - (vm331avs) -- C:\Windows\SysNative\Drivers\vm331avs.sys (Vimicro Corporation) DRV:[b]64bit:[/b] - (TPPWRIF) -- C:\Windows\SysNative\Drivers\TPPWR64V.SYS (Lenovo Group Limited) DRV:[b]64bit:[/b] - (igfx) -- C:\Windows\SysNative\Drivers\igdkmd64.sys (Intel Corporation) DRV:[b]64bit:[/b] - (bcbtums) -- C:\Windows\SysNative\Drivers\bcbtums.sys (Broadcom Corporation.) DRV:[b]64bit:[/b] - (SynTP) -- C:\Windows\SysNative\Drivers\SynTP.sys (Synaptics Incorporated) DRV:[b]64bit:[/b] - (SmbDrvI) -- C:\Windows\SysNative\Drivers\Smb_driver_Intel.sys (Synaptics Incorporated) DRV:[b]64bit:[/b] - (IBMPMDRV) -- C:\Windows\SysNative\Drivers\ibmpmdrv.sys (Lenovo.) DRV:[b]64bit:[/b] - (btwampfl) -- C:\Windows\SysNative\Drivers\btwampfl.sys (Broadcom Corporation.) DRV:[b]64bit:[/b] - (btwl2cap) -- C:\Windows\SysNative\Drivers\btwl2cap.sys (Broadcom Corporation.) DRV:[b]64bit:[/b] - (Fs_Rec) -- C:\windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (condrv) -- C:\Windows\SysNative\Drivers\condrv.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (VSTXRAID) -- C:\Windows\SysNative\Drivers\VSTXRAID.SYS (VIA Corporation) DRV:[b]64bit:[/b] - (VerifierExt) -- C:\Windows\SysNative\Drivers\VerifierExt.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (UASPStor) -- C:\Windows\SysNative\Drivers\uaspstor.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (acpiex) -- C:\Windows\SysNative\Drivers\acpiex.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (mvumis) -- C:\Windows\SysNative\Drivers\mvumis.sys (Marvell Semiconductor, Inc.) DRV:[b]64bit:[/b] - (stexstor) -- C:\Windows\SysNative\Drivers\stexstor.sys (Promise Technology, Inc.) DRV:[b]64bit:[/b] - (LSI_SAS2) -- C:\Windows\SysNative\Drivers\lsi_sas2.sys (LSI Corporation) DRV:[b]64bit:[/b] - (LSI_SSS) -- C:\Windows\SysNative\Drivers\lsi_sss.sys (LSI Corporation) DRV:[b]64bit:[/b] - (HpSAMD) -- C:\Windows\SysNative\Drivers\HpSAMD.sys (Hewlett-Packard Company) DRV:[b]64bit:[/b] - (EhStorTcgDrv) -- C:\Windows\SysNative\Drivers\EhStorTcgDrv.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (EhStorClass) -- C:\Windows\SysNative\Drivers\EhStorClass.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (amdsbs) -- C:\Windows\SysNative\Drivers\amdsbs.sys (AMD Technologies Inc.) DRV:[b]64bit:[/b] - (3ware) -- C:\Windows\SysNative\Drivers\3ware.sys (LSI) DRV:[b]64bit:[/b] - (amdsata) -- C:\Windows\SysNative\Drivers\amdsata.sys (Advanced Micro Devices) DRV:[b]64bit:[/b] - (amdxata) -- C:\Windows\SysNative\Drivers\amdxata.sys (Advanced Micro Devices) DRV:[b]64bit:[/b] - (CLFS) -- C:\Windows\SysNative\Drivers\clfs.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (vpci) -- C:\Windows\SysNative\Drivers\vpci.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (terminpt) -- C:\Windows\SysNative\Drivers\terminpt.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (mshidumdf) -- C:\Windows\SysNative\Drivers\mshidumdf.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (BasicDisplay) -- C:\Windows\SysNative\Drivers\BasicDisplay.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (HyperVideo) -- C:\Windows\SysNative\Drivers\HyperVideo.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (BasicRender) -- C:\Windows\SysNative\Drivers\BasicRender.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (gencounter) -- C:\Windows\SysNative\Drivers\vmgencounter.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (kdnic) -- C:\Windows\SysNative\Drivers\kdnic.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (acpitime) -- C:\Windows\SysNative\Drivers\acpitime.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (npsvctrig) -- C:\Windows\SysNative\Drivers\npsvctrig.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (WpdUpFltr) -- C:\Windows\SysNative\Drivers\WpdUpFltr.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (acpipagr) -- C:\Windows\SysNative\Drivers\acpipagr.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (hyperkbd) -- C:\Windows\SysNative\Drivers\hyperkbd.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (SerCx) -- C:\Windows\SysNative\Drivers\SerCx.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (SpbCx) -- C:\Windows\SysNative\Drivers\SpbCx.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (TsUsbGD) -- C:\Windows\SysNative\Drivers\TsUsbGD.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (BthHFEnum) -- C:\Windows\SysNative\Drivers\bthhfenum.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (dmvsc) -- C:\Windows\SysNative\Drivers\dmvsc.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (TsUsbFlt) -- C:\Windows\SysNative\Drivers\TsUsbFlt.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (wpcfltr) -- C:\Windows\SysNative\Drivers\wpcfltr.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (BthLEEnum) -- C:\Windows\SysNative\Drivers\BthLEEnum.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (NdisImPlatform) -- C:\Windows\SysNative\Drivers\NdisImPlatform.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (MsLldp) -- C:\Windows\SysNative\Drivers\mslldp.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (Ndu) -- C:\Windows\SysNative\Drivers\Ndu.sys (Microsoft Corporation) DRV:[b]64bit:[/b] - (btwaudio) -- C:\Windows\SysNative\Drivers\btwaudio.sys (Broadcom Corporation.) DRV:[b]64bit:[/b] - (btwavdt) -- C:\Windows\SysNative\Drivers\btwavdt.sys (Broadcom Corporation.) DRV:[b]64bit:[/b] - (btwrchid) -- C:\Windows\SysNative\Drivers\btwrchid.sys (Broadcom Corporation.) DRV:[b]64bit:[/b] - (AmUStor) -- C:\Windows\SysNative\Drivers\AmUStor.sys (Alcor Micro, Corp.) DRV:[b]64bit:[/b] - (iaStorA) -- C:\Windows\SysNative\Drivers\iaStorA.sys (Intel Corporation) DRV:[b]64bit:[/b] - (IntcDAud) -- C:\Windows\SysNative\Drivers\IntcDAud.sys (Intel(R) Corporation) DRV:[b]64bit:[/b] - (RTL8168) -- C:\Windows\SysNative\Drivers\Rt630x64.sys (Realtek ) DRV:[b]64bit:[/b] - (NETwNs64) -- C:\Windows\SysNative\Drivers\NETwNs64.sys (Intel Corporation) DRV:[b]64bit:[/b] - (e1iexpress) -- C:\Windows\SysNative\Drivers\e1i63x64.sys (Intel Corporation) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86} IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{881F249C-F464-4AFA-B6B0-9297474F51E3}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALCJS IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKLM\..\SearchScopes,DefaultScope = IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\..\SearchScopes\{881F249C-F464-4AFA-B6B0-9297474F51E3}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALCJS IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.lenovo.com/welcome/thinkpad [binary data] IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/ IE - HKCU\..\SearchScopes,DefaultScope = IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:13877 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.startup.homepage: "about:home" FF - prefs.js..extensions.enabledAddons: %7B9CAD9D8A-5C2B-6E91-F738-64578484D396%7D:1.161 FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:29.0 FF - user.js - File not found FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF64_13_0_0_206.dll File not found FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.21.2: C:\windows\system32\npDeployJava1.dll File not found FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_206.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@authentec.com/ffwloplugin: C:\Program Files\Lenovo Fingerprint Reader\npffwloplugin.dll (AuthenTec, Inc) FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.) FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.55.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.55.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@Nero.com/KM: C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG) FF - HKLM\Software\MozillaPlugins\@nitropdf.com/NitroPDF: C:\Program Files (x86)\Nitro PDF\Professional 7\npnitromozilla.dll ( ) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.6: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 29.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 29.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{9CAD9D8A-5C2B-6E91-F738-64578484D396}: C:\Program Files (x86)\find-a-deal\161.xpi [2014/04/29 21.20.30 | 000,013,566 | ---- | M] () [2014/02/27 23.27.53 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Otto\AppData\Roaming\mozilla\Extensions [2014/03/22 21.13.13 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Otto\AppData\Roaming\mozilla\Firefox\Profiles\7vwa7vl3.default\extensions [2014/02/27 23.25.30 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\browser\extensions [2014/04/30 22.25.35 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\mozilla firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2014/04/29 21.20.30 | 000,013,566 | ---- | M] () (No name found) -- C:\PROGRAM FILES (X86)\FIND-A-DEAL\161.XPI [color=#E56717]========== Chrome ==========[/color] CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter}, CHR - homepage: CHR - Extension: Documenti Google = C:\Users\Otto\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0\ CHR - Extension: Documenti Google = C:\Users\Otto\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\ CHR - Extension: Documenti Google = C:\Users\Otto\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_1\ CHR - Extension: Google Drive = C:\Users\Otto\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\ CHR - Extension: Google Drive = C:\Users\Otto\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\ CHR - Extension: Google Drive = C:\Users\Otto\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_1\ CHR - Extension: YouTube = C:\Users\Otto\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\ CHR - Extension: YouTube = C:\Users\Otto\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\ CHR - Extension: YouTube = C:\Users\Otto\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_1\ CHR - Extension: Ricerca Google = C:\Users\Otto\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\ CHR - Extension: Ricerca Google = C:\Users\Otto\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\ CHR - Extension: Ricerca Google = C:\Users\Otto\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_1\ CHR - Extension: find-a-deal = C:\Users\Otto\AppData\Local\Google\Chrome\User Data\Default\Extensions\feofjmdkodakhjjepgfmchhebhogendb\1.161.0.0_0\ CHR - Extension: No name found = C:\Users\Otto\AppData\Local\Google\Chrome\User Data\Default\Extensions\gacjglkliccgbgnomandahfbicampham\1.150_0\ CHR - Extension: No name found = C:\Users\Otto\AppData\Local\Google\Chrome\User Data\Default\Extensions\gacjglkliccgbgnomandahfbicampham\1.150_1\ CHR - Extension: Website Logon = C:\Users\Otto\AppData\Local\Google\Chrome\User Data\Default\Extensions\iokmdlapebooifaijckgcmncjdpojmjl\6.0.200_0\ CHR - Extension: Website Logon = C:\Users\Otto\AppData\Local\Google\Chrome\User Data\Default\Extensions\iokmdlapebooifaijckgcmncjdpojmjl\6.0.200_1\ CHR - Extension: No name found = C:\Users\Otto\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbjlipmgfoamgjaogmbihaffnpkpjajp\1.0.0.130_0\ CHR - Extension: Google Wallet = C:\Users\Otto\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0\ CHR - Extension: Google Wallet = C:\Users\Otto\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\ CHR - Extension: Gmail = C:\Users\Otto\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ CHR - Extension: Gmail = C:\Users\Otto\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\ CHR - Extension: Gmail = C:\Users\Otto\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_2\ O1 HOSTS File: ([2014/02/25 15.38.46 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\Drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2:[b]64bit:[/b] - BHO: (PPTChecckier) - {5B13DB39-154C-5114-E6D7-753F8D0278C6} - C:\ProgramData\PPTChecckier\42lG.x64.dll () O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) O2:[b]64bit:[/b] - BHO: (TrueSuite Browser Helper Object) - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files\Lenovo Fingerprint Reader\IEBHO.DLL (AuthenTec Inc.) O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2:[b]64bit:[/b] - BHO: (savingtuoyou) - {F15655CF-A85B-B770-22DF-48D010880FD6} - C:\ProgramData\savingtuoyou\QmOuHW.x64.dll File not found O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O4:[b]64bit:[/b] - HKLM..\Run: [AmIcoSinglun64] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe (Alcor Micro Corp.) O4:[b]64bit:[/b] - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.) O4:[b]64bit:[/b] - HKLM..\Run: [CanonSolutionMenu] C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.) O4:[b]64bit:[/b] - HKLM..\Run: [Classic Start Menu] C:\Program Files\Classic Shell\ClassicStartMenu.exe (IvoSoft) O4:[b]64bit:[/b] - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation) O4:[b]64bit:[/b] - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation) O4:[b]64bit:[/b] - HKLM..\Run: [LENOVO.TPKNRRES] C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe (Lenovo Corporation) O4:[b]64bit:[/b] - HKLM..\Run: [LnvMobHotspotClient] C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe (Lenovo) O4:[b]64bit:[/b] - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation) O4:[b]64bit:[/b] - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) O4 - HKLM..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331STI.EXE (Vimicro) O4 - HKCU..\Run: [IncrediMail] C:\Program Files (x86)\IncrediMail\bin\IncMail.exe (IncrediMail, Ltd.) O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1 O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O8:[b]64bit:[/b] - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found O9 - Extra Button: Invia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : I&nvia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL (Microsoft Corporation) O13 - gopher Prefix: missing O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{426B9E2F-7E8B-48D8-AA75-C7F9C85CA675}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7E4AD39D-D240-4A86-921B-162C7EE4F0C3}: DhcpNameServer = 192.168.1.1 O18:[b]64bit:[/b] - Protocol\Handler\grooveLocalGWS - No CLSID value found O18:[b]64bit:[/b] - Protocol\Handler\ms-help - No CLSID value found O18:[b]64bit:[/b] - Protocol\Handler\skype4com - No CLSID value found O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) O18:[b]64bit:[/b] - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (Explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation) O20:[b]64bit:[/b] - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\windows\SysNative\igfxdev.dll (Intel Corporation) O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O30 - LSA: Security Packages - (livessp) - File not found O32 - HKLM CDRom: AutoRun - 1 O34 - HKLM BootExecute: (autocheck autochk *) O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %* O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...com [@ = ComFile] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = ComFile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) [color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color] [2014/05/01 12.08.25 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN [2014/05/01 12.08.25 | 000,000,000 | -HSD | C] -- \$RECYCLE.BIN [2014/05/01 12.07.17 | 000,000,000 | ---D | C] -- C:\Users\Otto\AppData\Local\temp [2014/04/30 22.31.14 | 000,536,576 | ---- | C] (SQLite Development Team) -- C:\windows\SysWow64\sqlite3.dll [2014/04/29 21.20.30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\find-a-deal [2014/04/25 11.06.54 | 000,000,000 | ---D | C] -- C:\Users\Otto\AppData\Roaming\Google [2014/04/25 11.06.45 | 000,000,000 | ---D | C] -- C:\ProgramData\Google [2014/04/25 11.06.11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google SketchUp 7 [2014/04/21 18.37.10 | 000,000,000 | ---D | C] -- C:\Users\Otto\Desktop\VILLE [2014/04/18 07.57.29 | 000,264,616 | ---- | C] (Oracle Corporation) -- C:\windows\SysWow64\javaws.exe [2014/04/18 07.57.28 | 000,175,528 | ---- | C] (Oracle Corporation) -- C:\windows\SysWow64\javaw.exe [2014/04/18 07.57.28 | 000,096,168 | ---- | C] (Oracle Corporation) -- C:\windows\SysWow64\WindowsAccessBridge-32.dll [2014/04/18 07.57.27 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\windows\SysWow64\java.exe [2014/04/11 21.43.16 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iesetup.dll [2014/04/11 21.43.16 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\UXInit.dll [2014/04/11 21.43.15 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msrating.dll [2014/04/11 21.43.15 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\msrating.dll [2014/04/11 21.43.15 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\UXInit.dll [2014/04/11 21.43.15 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iernonce.dll [2014/04/11 21.43.14 | 000,603,136 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msfeeds.dll [2014/04/11 21.43.14 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iesetup.dll [2014/04/11 21.43.13 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iesysprep.dll [2014/04/11 21.43.13 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ie4uinit.exe [2014/04/11 21.43.13 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iernonce.dll [2014/04/11 21.43.12 | 000,915,968 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\uxtheme.dll [2014/04/11 21.43.08 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iesysprep.dll [2014/04/11 21.43.07 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\jscript.dll [2014/04/11 21.42.48 | 003,959,808 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\jscript9.dll [2014/04/11 21.42.48 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\jscript.dll [2014/04/11 21.11.09 | 005,979,648 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mstscax.dll [2014/04/11 21.11.09 | 000,523,264 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\XpsGdiConverter.dll [2014/04/11 21.11.07 | 005,092,352 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mstscax.dll [2014/04/11 21.11.06 | 000,365,568 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\XpsGdiConverter.dll [2014/04/11 21.11.04 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WSShared.dll [2014/04/11 21.11.03 | 000,209,712 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\NotificationUI.exe [2014/04/11 21.11.02 | 000,564,736 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\WSShared.dll [2014/04/11 21.11.02 | 000,332,632 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\storport.sys [2014/04/11 21.11.01 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\Windows.ApplicationModel.Store.dll [2014/04/11 21.11.01 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll [2014/04/11 21.11.00 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\Windows.ApplicationModel.Store.TestingFramework.dll [2014/04/10 08.11.15 | 000,978,432 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KernelBase.dll [2014/04/10 08.11.14 | 001,257,984 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\kernel32.dll [2014/03/13 22.58.58 | 000,248,240 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\WdFilter.sys [2014/03/13 22.58.57 | 000,035,856 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\WdBoot.sys [2014/03/13 22.58.52 | 001,628,160 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WindowsCodecs.dll [2014/03/13 17.59.34 | 000,595,968 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\qedit.dll [2014/03/13 17.59.34 | 000,496,640 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\qedit.dll [color=#E56717]========== Files - Modified Within 60 Days ==========[/color] [2014/05/01 18.10.54 | 000,001,101 | ---- | M] () -- C:\Users\Otto\Desktop\OTL - collegamento.lnk [2014/05/01 18.06.00 | 000,000,978 | ---- | M] () -- C:\windows\tasks\Adobe Flash Player Updater.job [2014/05/01 18.04.32 | 000,000,416 | ---- | M] () -- C:\windows\tasks\find-a-deal Update.job [2014/05/01 18.01.06 | 000,000,396 | ---- | M] () -- C:\windows\tasks\find-a-deal_wd.job [2014/05/01 18.01.05 | 000,001,174 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore.job [2014/05/01 18.01.04 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat [2014/05/01 12.24.03 | 000,001,174 | ---- | M] () -- C:\Users\Otto\Desktop\HijackThis - collegamento.lnk [2014/05/01 10.50.00 | 000,001,178 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job [2014/04/30 23.17.20 | 000,001,156 | ---- | M] () -- C:\Users\Otto\Desktop\ComboFix - collegamento.lnk [2014/04/30 22.43.03 | 002,726,002 | ---- | M] () -- C:\windows\SysNative\PerfStringBackup.INI [2014/04/30 22.43.03 | 000,791,380 | ---- | M] () -- C:\windows\SysNative\perfh010.dat [2014/04/30 22.43.03 | 000,785,550 | ---- | M] () -- C:\windows\SysNative\perfh013.dat [2014/04/30 22.43.03 | 000,710,244 | ---- | M] () -- C:\windows\SysNative\perfh009.dat [2014/04/30 22.43.03 | 000,158,586 | ---- | M] () -- C:\windows\SysNative\perfc013.dat [2014/04/30 22.43.03 | 000,153,214 | ---- | M] () -- C:\windows\SysNative\perfc010.dat [2014/04/30 22.43.03 | 000,132,614 | ---- | M] () -- C:\windows\SysNative\perfc009.dat [2014/04/30 22.40.47 | 000,001,136 | ---- | M] () -- C:\Users\Otto\Desktop\JRT(1) - collegamento.lnk [2014/04/30 22.36.17 | 000,000,270 | RHS- | M] () -- C:\ProgramData\ntuser.pol [2014/04/30 22.35.28 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys [2014/04/30 22.35.09 | 3312,009,216 | -HS- | M] () -- C:\hiberfil.sys [2014/04/30 22.30.02 | 000,001,174 | ---- | M] () -- C:\Users\Otto\Desktop\AdwCleaner - collegamento.lnk [2014/04/27 17.24.53 | 002,403,007 | ---- | M] () -- C:\Users\Otto\Desktop\PLANIMETRIA PIANO TERRA MISURE.skp [2014/04/25 23.52.40 | 002,399,201 | ---- | M] () -- C:\Users\Otto\Desktop\PLANIMETRIA PIANO TERRA MISURE.skb [2014/04/25 11.06.12 | 000,002,036 | ---- | M] () -- C:\Users\Public\Desktop\Google SketchUp 7.lnk [2014/04/23 01.47.16 | 000,694,232 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\SysWow64\FlashPlayerApp.exe [2014/04/23 01.47.16 | 000,078,296 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\SysWow64\FlashPlayerCPLApp.cpl [2014/04/14 20.13.43 | 000,096,168 | ---- | M] (Oracle Corporation) -- C:\windows\SysWow64\WindowsAccessBridge-32.dll [2014/04/14 20.05.11 | 000,264,616 | ---- | M] (Oracle Corporation) -- C:\windows\SysWow64\javaws.exe [2014/04/14 20.05.06 | 000,175,528 | ---- | M] (Oracle Corporation) -- C:\windows\SysWow64\javaw.exe [2014/04/14 20.04.29 | 000,175,016 | ---- | M] (Oracle Corporation) -- C:\windows\SysWow64\java.exe [2014/04/10 18.47.19 | 000,426,648 | ---- | M] () -- C:\windows\SysNative\FNTCACHE.DAT [2014/03/07 02.47.36 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\msrating.dll [2014/03/07 02.47.24 | 000,690,688 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\jscript.dll [2014/03/07 02.08.37 | 000,051,712 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\ie4uinit.exe [2014/03/07 02.08.27 | 000,915,968 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\uxtheme.dll [2014/03/07 02.08.13 | 000,603,136 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\msfeeds.dll [2014/03/07 02.08.06 | 003,959,808 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\jscript9.dll [2014/03/07 02.08.06 | 000,855,552 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\jscript.dll [color=#E56717]========== Files Created - No Company Name ==========[/color] [2014/05/01 18.10.54 | 000,001,101 | ---- | C] () -- C:\Users\Otto\Desktop\OTL - collegamento.lnk [2014/05/01 12.24.03 | 000,001,174 | ---- | C] () -- C:\Users\Otto\Desktop\HijackThis - collegamento.lnk [2014/04/30 23.17.20 | 000,001,156 | ---- | C] () -- C:\Users\Otto\Desktop\ComboFix - collegamento.lnk [2014/04/30 22.40.47 | 000,001,136 | ---- | C] () -- C:\Users\Otto\Desktop\JRT(1) - collegamento.lnk [2014/04/30 22.30.02 | 000,001,174 | ---- | C] () -- C:\Users\Otto\Desktop\AdwCleaner - collegamento.lnk [2014/04/29 21.20.31 | 000,000,396 | ---- | C] () -- C:\windows\tasks\find-a-deal_wd.job [2014/04/25 23.52.39 | 002,399,201 | ---- | C] () -- C:\Users\Otto\Desktop\PLANIMETRIA PIANO TERRA MISURE.skb [2014/04/25 11.18.09 | 002,403,007 | ---- | C] () -- C:\Users\Otto\Desktop\PLANIMETRIA PIANO TERRA MISURE.skp [2014/04/25 11.06.12 | 000,002,036 | ---- | C] () -- C:\Users\Public\Desktop\Google SketchUp 7.lnk [2014/04/11 21.10.59 | 000,386,722 | ---- | C] () -- C:\windows\SysNative\ApnDatabase.xml [2014/04/11 20.14.53 | 000,081,048 | ---- | C] () -- C:\Users\Otto\Desktop\curriculum.one [2014/04/10 18.47.07 | 000,426,648 | ---- | C] () -- C:\windows\SysNative\FNTCACHE.DAT [2014/02/25 15.21.13 | 000,256,000 | ---- | C] () -- C:\windows\PEV.exe [2014/02/25 15.21.13 | 000,208,896 | ---- | C] () -- C:\windows\MBR.exe [2014/02/25 15.21.13 | 000,098,816 | ---- | C] () -- C:\windows\sed.exe [2014/02/25 15.21.13 | 000,080,412 | ---- | C] () -- C:\windows\grep.exe [2014/02/25 15.21.13 | 000,068,096 | ---- | C] () -- C:\windows\zip.exe [2014/02/07 22.30.10 | 000,000,270 | RHS- | C] () -- C:\ProgramData\ntuser.pol [2013/09/12 14.01.28 | 000,083,968 | ---- | C] () -- C:\windows\SysWow64\OEMLicense.dll [2013/06/10 12.37.01 | 000,178,688 | ---- | C] () -- C:\windows\SysWow64\unrar.dll [2013/06/08 21.27.16 | 268,435,456 | -HS- | C] () -- \swapfile.sys [2013/06/08 21.27.14 | 3312,009,216 | -HS- | C] () -- \hiberfil.sys [2013/06/08 11.35.20 | 000,004,746 | ---- | C] () -- C:\Users\Otto\AppData\Roaming\AbsoluteReminder.xml [2013/01/04 11.44.13 | 000,272,928 | ---- | C] () -- C:\windows\SysWow64\igvpkrng600.bin [2013/01/04 11.44.06 | 000,064,512 | ---- | C] () -- C:\windows\SysWow64\igdde32.dll [2013/01/04 11.44.05 | 000,963,388 | ---- | C] () -- C:\windows\SysWow64\igcodeckrng600.bin [2013/01/04 11.43.54 | 000,001,676 | ---- | C] () -- C:\windows\vm331Rmv.ini [2013/01/04 11.43.54 | 000,001,676 | ---- | C] () -- C:\windows\SysWow64\vm331Rmv.ini [2012/10/10 02.07.57 | 000,008,192 | RHS- | C] () -- \BOOTSECT.BAK [2012/07/26 10.18.43 | 000,398,156 | RHS- | C] () -- \bootmgr [2012/07/26 10.18.43 | 000,000,001 | -HS- | C] () -- \BOOTNXT [2012/07/26 10.13.10 | 000,215,943 | ---- | C] () -- C:\windows\SysWow64\dssec.dat [2012/07/26 10.13.09 | 000,000,741 | ---- | C] () -- C:\windows\SysWow64\NOISE.DAT [2012/07/26 09.21.26 | 000,067,584 | --S- | C] () -- C:\windows\bootstat.dat [2012/07/26 03.17.42 | 000,043,520 | ---- | C] () -- C:\windows\SysWow64\BWContextHandler.dll [2012/07/25 22.37.29 | 000,043,131 | ---- | C] () -- C:\windows\mib.bin [2012/07/25 22.28.31 | 000,364,544 | ---- | C] () -- C:\windows\SysWow64\msjetoledb40.dll [2012/06/02 16.31.19 | 000,673,088 | ---- | C] () -- C:\windows\SysWow64\mlang.dat [color=#E56717]========== ZeroAccess Check ==========[/color] [2013/01/04 11.57.27 | 000,000,227 | RHS- | M] () -- C:\windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = C:\Windows\SysNative\shell32.dll -- [2014/01/27 02.31.25 | 019,752,448 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2014/01/27 02.52.21 | 017,561,088 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2012/07/26 05.05.38 | 001,004,544 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2012/07/26 05.18.27 | 000,784,896 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2012/07/26 05.07.41 | 000,455,680 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] [color=#E56717]========== LOP Check ==========[/color] [2013/11/24 18.05.04 | 000,000,000 | ---D | M] -- C:\Users\Otto\AppData\Roaming\0F1F1C2Y1H1P1C0I0T [2013/06/10 13.08.35 | 000,000,000 | ---D | M] -- C:\Users\Otto\AppData\Roaming\Canneverbe Limited [2013/09/19 13.54.05 | 000,000,000 | ---D | M] -- C:\Users\Otto\AppData\Roaming\Canon [2014/04/30 22.40.00 | 000,000,000 | ---D | M] -- C:\Users\Otto\AppData\Roaming\ClassicShell [2013/10/27 09.43.36 | 000,000,000 | ---D | M] -- C:\Users\Otto\AppData\Roaming\Lenovo [2014/01/26 18.59.32 | 000,000,000 | ---D | M] -- C:\Users\Otto\AppData\Roaming\LSC [2014/04/30 22.46.01 | 000,000,000 | ---D | M] -- C:\Users\Otto\AppData\Roaming\Nitro PDF [2013/06/08 11.35.03 | 000,000,000 | ---D | M] -- C:\Users\Otto\AppData\Roaming\Synaptics [color=#E56717]========== Purity Check ==========[/color] < End of report >

di **Luke57** » 02/05/14 18:05

Ciao, apri otl.exe, copia e incolla nel suo box bianco il seguente script:

Codice: Seleziona tutto: :OTL PRC - C:\Program Files (x86)\find-a-deal\find-a-dealH.exe () PRC - C:\Program Files (x86)\find-a-deal\find-a-dealyd161.exe () MOD - C:\Program Files (x86)\find-a-deal\find-a-dealH.exe () RV - (find-a-deal) -- C:\Program Files (x86)\find-a-deal\find-a-dealyd161.exe () O2:[b]64bit:[/b] - BHO: (savingtuoyou) - {F15655CF-A85B-B770-22DF-48D010880FD6} - C:\ProgramData\savingtuoyou\QmOuHW.x64.dll File not found O18:[b]64bit:[/b] - Protocol\Handler\grooveLocalGWS - No CLSID value found O18:[b]64bit:[/b] - Protocol\Handler\ms-help - No CLSID value found O18:[b]64bit:[/b] - Protocol\Handler\skype4com - No CLSID value found O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. [2014/04/29 21.20.30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\find-a-deal :Files C:\Program Files (x86)\find-a-deal :Commands [emptytemp]

premi run fix e posta il log che trovi nella cartella C:\_OTL\ MovedFiles

di **mauri1974** » 03/05/14 14:03

Ho fatto copia e incolla di quello che devevo fare.
Il computer si è riavviato ed ora non mi naviga più e mi
dice il server proxy non risponde.
Con il cavo ethernet qualche sito (pochi) mi si apre...
ma non tutti, compreso pc-facile che non mi si apre più...
Ora ti sto scrivendo da un altro computer che ho a casa .... :cry:

Che faccio ?? :?:

di **mauri1974** » 03/05/14 14:08

Questo è il log che mi è comparso nel pc

Codice: Seleziona tutto: All processes killed ========== OTL ========== No active process named Program Files was found! No active process named Program Files was found! Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found. C:\Program Files (x86)\find-a-deal folder moved successfully. File ptytemp] not found. OTL by OldTimer - Version 3.2.69.0 log created on 05032014_134617 Files\Folders moved on Reboot... PendingFileRenameOperations files... Registry entries deleted on Reboot...

di **Luke57** » 03/05/14 14:55

Ciao, non so che dire perchè lo script ha eliminato tutta roba nociva; utilizzi un server proxy per navigare?

di **mauri1974** » 03/05/14 16:09

Per navigare uso un server D-Link

Non so, che dici, se faccio ripristino configurazione sistema, potrò ripristinare
anche quei file che mi permettevano di navigare ??

Se devo fare la prova, gradirei che mi spieghi tutti i passaggi, perchè non
vorrei fare peggio ....

di **Luke57** » 03/05/14 17:44

La procedura di ripristino configurazione di sistema è questa:
Recati nella Start Screen e cerca il termine ripristino. Dopodiché seleziona la voce Impostazioni dalla barra laterale di destra e clicca sull’icona Ripristino collocata nella parte sinistra dello schermo.

Nella finestra che si apre, seleziona la voce Configura ripristino di sistema e clicca sul pulsante Ripristino configurazione di sistema. Adesso, metti il segno di spunta accanto alla voce Ripristino consigliato oppure accanto alla voce Scegli un punto di ripristino diverso, a seconda se vuoi usare il punto di ripristino più recente oppure vuoi sceglierne uno precedente, e clicca sul pulsante Avanti per proseguire nella procedura.

Una volta fatta la tua scelta, clicca sul pulsante Fine e il computer si riavvierà per eseguire il ripristino di Windows. La procedura durerà diversi minuti.
tratta da http://aranzulla.tecnologia.virgilio.it ... 33271.html
(seconda parte)

di **mauri1974** » 03/05/14 18:09

Colpo di scena, funziona !
E' andata bene.

Ti aggiorno i prossimi giorni se mi compare ancora la pubblicità.

Per ora GRAZIE !

di **mauri1974** » 06/05/14 19:45

Giusto per non farmi mancare niente, ora il portatile naviga in internet solo con il cavo ethernet.
Se lo stacco, con il wireless non riesco più a navigare...

Qualche suggerimento, please ?? !! :undecided:

di **Luke57** » 07/05/14 07:52

Scarica hijackthis 2.0.5 da qui sul desktop:
http://goo.gl/woCKyP
click tasto destro su hijackthis.exe e scegli Esegui come amministratore
sulla pagina che si apre scegli main menu
clik su Do a System scan and save logfile
copia e incolla in un post il contenuto del file di testo che si formerà appena terminata la scansione

di **mauri1974** » 07/05/14 12:53

Ecco il log di HijackThis

Codice: Seleziona tutto: Logfile of Trend Micro HijackThis v2.0.5 Scan saved at 13.52.49, on 07/05/2014 Platform: Unknown Windows (WinNT 6.02.1008) MSIE: Internet Explorer v10.0 (10.00.9200.16537) FIREFOX: 29.0 (it) Boot mode: Normal Running processes: C:\Program Files (x86)\Lenovo\LocationAware\lpdagent.exe C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe C:\Program Files (x86)\Skype\Phone\Skype.exe C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe C:\Program Files (x86)\USB Camera\VM331STI.EXE C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files\AVAST Software\Avast\AvastUI.exe C:\windows\SysWOW64\RunDll32.exe C:\Program Files\ThinkPad\Bluetooth Software\Bluetooth Headset Helper.exe C:\Program Files\Lenovo Fingerprint Reader\x86\IEWebSiteLogon.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_206.exe C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_206.exe C:\Users\Otto\Desktop\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O4 - HKLM\..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331STI.EXE O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun O4 - HKCU\..\Run: [IncrediMail] C:\Program Files (x86)\IncrediMail\bin\IncMail.exe /c O4 - Startup: Ritaglio schermata e avvio di OneNote 2007.lnk = C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE O4 - Global Startup: Bluetooth.lnk = ? O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 O9 - Extra button: Invia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: I&nvia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing) O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: @oem14.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Radio Control Service (BcmBtRSupport) - Unknown owner - C:\windows\system32\BtwRSupportService.exe (file missing) O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\ThinkPad\Bluetooth Software\btwdins.exe O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\SysWow64\IntelCpHeciSvc.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing) O23 - Service: TrueSuiteService (FPLService) - AuthenTec, Inc - C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe O23 - Service: @oem2.inf,%ibm.svcDesc0%;Lenovo PM Service (IBMPMSVC) - Unknown owner - C:\windows\system32\ibmpmsvc.exe (file missing) O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing) O23 - Service: Lenovo System Agent Service - LENOVO INCORPORATED. - C:\Program Files\lenovo\SystemAgent\SystemAgentService.exe O23 - Service: Lenovo Camera Mute (LENOVO.CAMMUTE) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe O23 - Service: Lenovo Keyboard Noise Reduction (LENOVO.TPKNRSVC) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe O23 - Service: ThinkVantage Virtual Camera Controller (LENOVO.TVTVCAM) - Lenovo Corporation - C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe O23 - Service: Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: LnvMHService (LnvHotSpotSvc) - Lenovo - C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe O23 - Service: Location Task Manager (LocationTaskManager) - Unknown owner - C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing) O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing) O23 - Service: NitroPDFDriverCreatorReadSpool2 (NitroDriverReadSpool2) - Nitro PDF Software - C:\Program Files\Common Files\Nitro PDF\Professional\7.0\NitroPDFDriverService2x64.exe O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\windows\SysWOW64\NLSSRV32.EXE O23 - Service: Lenovo Settings Power Service (Power Manager DBC Service) - Lenovo - C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing) O23 - Service: System Update (SUService) - Unknown owner - C:\Program Files (x86)\Lenovo\System Update\SUService.exe O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe O23 - Service: TrueAPI Service component (TrueService) - AuthenTec, Inc. - C:\Program Files\Common Files\AuthenTec\TrueService.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing) O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 10621 bytes

di **mauri1974** » 11/05/14 08:32

Qualcosa ancora non va...
Mi compare ogni 15 minuti qualche pubblicità ....

Questa è una che mi compare spesso ...

http://static.bestusefuldownloads.com/l ... 1399793430

di **Luke57** » 11/05/14 10:27

Nel report non ci sono segni di infezioni; per eventuali pubblicità sgradite utilizza adwcleaner con le modalità già enunciate nei precedenti post.

di **mauri1974** » 11/05/14 11:13

ok

Codice: Seleziona tutto: # AdwCleaner v3.207 - Rapporto creato 11/05/2014 in 12:05:15 # Aggiornato 05/05/2014 di Xplode # Sistema operativo : Windows 8 (64 bits) # Nome utente : Otto - LENOVO-PC # In esecuzione da : C:\Users\Otto\Desktop\AdwCleaner.exe # Opzione : Pulisci ***** [ Servizi ] ***** Servizio Eliminato : 70e6ca8c [#] Servizio Eliminato : Update Fortunitas ***** [ File / Cartelle ] ***** Cartella Eliminato : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freesofttoday Cartella Eliminato : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\optimizer pro v3.2 Cartella Eliminato : C:\Program Files (x86)\Fortunitas Cartella Eliminato : C:\Program Files (x86)\MediaPlayerplus Cartella Eliminato : C:\Program Files (x86)\MyPC Backup Cartella Eliminato : C:\Program Files (x86)\Optimizer Pro Cartella Eliminato : C:\Program Files (x86)\fst_it_115 Cartella Eliminato : C:\Users\Otto\AppData\Local\fst_it_115 Cartella Eliminato : C:\Users\Otto\AppData\Local\Temp\Fortunitas Cartella Eliminato : C:\Users\Otto\AppData\Roaming\0F1F1C2Y1H1P1C0I0T ***** [ Collegamenti ] ***** ***** [ Registro ] ***** Valore Eliminati : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Optimizer Pro] Valore Eliminati : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [fst_it_115] Chiave Eliminati : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3} Chiave Eliminati : HKCU\Software\Optimizer Pro Chiave Eliminati : HKCU\Software\Tutorials Chiave Eliminati : HKCU\Software\TutoTag Chiave Eliminati : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F} Chiave Eliminati : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F} Chiave Eliminati : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0} Chiave Eliminati : HKLM\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C} Chiave Eliminati : HKLM\Software\FreeSoftToday Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MediaPlayerplus Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1 Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\fst_it_115_is1 Dato Eliminati : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~2\optimi~1\optpro~2.dll Dato Eliminati : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\OPTIMI~1\OPTPRO~3.DLL ***** [ Browser ] ***** -\\ Internet Explorer v10.0.9200.16537 -\\ Mozilla Firefox v29.0.1 (it) [ File : C:\Users\Otto\AppData\Roaming\Mozilla\Firefox\Profiles\7vwa7vl3.default\prefs.js ] -\\ Google Chrome v34.0.1847.131 [ File : C:\Users\Otto\AppData\Local\Google\Chrome\User Data\Default\preferences ] ************************* AdwCleaner[R0].txt - [8224 octets] - [24/02/2014 15:57:28] AdwCleaner[R1].txt - [1442 octets] - [25/02/2014 15:08:52] AdwCleaner[R2].txt - [1623 octets] - [30/04/2014 22:30:49] AdwCleaner[R3].txt - [3360 octets] - [11/05/2014 12:01:14] AdwCleaner[S0].txt - [7213 octets] - [24/02/2014 15:59:06] AdwCleaner[S1].txt - [1507 octets] - [25/02/2014 15:11:24] AdwCleaner[S2].txt - [1654 octets] - [30/04/2014 22:33:55] AdwCleaner[S3].txt - [3188 octets] - [11/05/2014 12:05:15] ########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [3248 octets] ##########

di **mauri1974** » 11/05/14 11:34

Fatto. Speriamo bene.
Grazie ancora.

Codice: Seleziona tutto: ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 6.1.4 (04.06.2014:1) OS: Windows 8 x64 Ran by Otto on 11/05/2014 at 12.15.28,75 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values ~~~ Registry Keys ~~~ Files ~~~ Folders ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on 11/05/2014 at 12.28.10,06 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

pp.developunit.info

Re: pp.developunit.info

Re: pp.developunit.info

Re: pp.developunit.info

Re: pp.developunit.info

Re: pp.developunit.info

Re: pp.developunit.info

Re: pp.developunit.info

Re: pp.developunit.info

Re: pp.developunit.info

Re: pp.developunit.info

Re: pp.developunit.info

Re: pp.developunit.info

Re: pp.developunit.info

Re: pp.developunit.info

Re: pp.developunit.info

Re: pp.developunit.info

Topic correlati a "pp.developunit.info":

Chi c’è in linea