Accedi per seguire   
Seguaci 0
gigio3367

Pc Bloccato Virus Polizia Di Stato

7 messaggi in questa discussione

Ciao a tutti, dopo svariati tentativi sono riuscito a far partire il pc in modalità provvisoria e ho fatto partire la scansione con AVG, che ovviamente ha già rilevato dei virus, finita la scansione, cosa mi consigliate di fare?

Grazie a tutti.

Condividi questo messaggio


Link di questo messaggio
Condividi su altri siti

Ciao gigio

OTL

•OTL

  • Scarica OTL By OldTimer: http://oldtimer.geekstogo.com/OTL.exe
  • Fare doppio clic sull'icona per eseguirlo
  • Quando appare la schermata di OTL, in alto nel box Output modificare in Minimal output.
  • Mettere un segno di spunta alle voci "LOP Check e Purity Check"
  • Nel box Custom scan fixes incolla le seguenti direttive:

      netsvcs
      drivers32
      %SYSTEMDRIVE%\*.*
      %systemroot%\Fonts\*.com
      %systemroot%\Fonts\*.dll
      %systemroot%\Fonts\*.ini
      %systemroot%\Fonts\*.ini2
      %systemroot%\Fonts\*.exe
      %systemroot%\system32\spool\prtprocs\w32x86\*.*
      %systemroot%\REPAIR\*.bak1
      %systemroot%\REPAIR\*.ini
      %systemroot%\system32\*.jpg
      %systemroot%\*.jpg
      %systemroot%\*.png
      %systemroot%\*.scr
      %systemroot%\*._sy
      %APPDATA%\Adobe\Update\*.*
      %ALLUSERSPROFILE%\Favorites\*.*
      %APPDATA%\Microsoft\*.*
      %PROGRAMFILES%\*.*
      %APPDATA%\Update\*.*
      %systemroot%\*. /mp /s
      CREATERESTOREPOINT
      %systemroot%\System32\config\*.sav
      %PROGRAMFILES%\bak. /s
      %systemroot%\system32\bak. /s
      %ALLUSERSPROFILE%\Start Menu\*.lnk /x
      %systemroot%\system32\config\systemprofile\*.dat /x
      %systemroot%\*.config
      %systemroot%\system32\*.db
      %PROGRAMFILES%\Internet Explorer\*.dat
      %APPDATA%\Microsoft\Internet Explorer\Quick Launch\*.lnk /x
      %USERPROFILE%\Desktop\*.exe
      %PROGRAMFILES%\Common Files\*.*
      %systemroot%\*.src
      %systemroot%\install\*.*
      %systemroot%\system32\DLL\*.*
      %systemroot%\system32\HelpFiles\*.*
      %systemroot%\system32\rundll\*.*
      %systemroot%\winn32\*.*
      %systemroot%\Java\*.*
      %systemroot%\system32\test\*.*
      %systemroot%\system32\Rundll32\*.*
      %systemroot%\AppPatch\Custom\*.*
      HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU
      HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs

  • Fare clic sul pulsante Run Scan situato in alto a sinistra. Non modificare le impostazioni se non istruiti a farlo. La scansione durera' un bel po' , abbiate pazienza.
    • Quando la scansione è completata, si apriranno due finestre notepad. OTL.Txt e Extras.Txt.
    • Questi sono salvati nella stessa posizione dove si trova OTL.
    • Si prega di copiare (Edit-> Seleziona tutto, Modifica-> Copia) il contenuto di questi file, uno alla volta, e postarli nella successiva risposta.
    • Potrebbero essere necessari due post.

Dopo

Scarica aswMBR.exe e salvalo sul tuo desktop.

  • Doppio click sua swMBR.exe per avviare il tool. (Vista/Windows 7 - click destro, Esegui come amministratore)
  • Click Scan
  • Al termine della scansione clicca su Save log salvalo sul tuo desktop, e postalo nella tua prossima risposta.
  • Attenzione: non eseguire nessun fix.
  • Noterete anche un altro file creato sul desktop denominatoMBR.dat. Tasto destro del mouse al file e selezionare Invia a> file compresso (zip) . Allega anche il file compresso nella tua prossima risposta .

Condividi questo messaggio


Link di questo messaggio
Condividi su altri siti

OTL Extras logfile created on: 20/02/2013 10.31.45 - Run 1

OTL by OldTimer - Version 3.2.69.0 Folder = J:\

Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 8.0.6001.18702)

Locale: 00000410 | Country: Italia | Language: ITA | Date Format: dd/MM/yyyy

2,00 Gb Total Physical Memory | 1,35 Gb Available Physical Memory | 67,71% Memory free

3,85 Gb Paging File | 3,45 Gb Available in Paging File | 89,51% Paging File free

Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programmi

Drive C: | 97,65 Gb Total Space | 3,82 Gb Free Space | 3,91% Space Free | Partition Type: NTFS

Drive D: | 232,88 Gb Total Space | 231,20 Gb Free Space | 99,28% Space Free | Partition Type: NTFS

Drive E: | 465,76 Gb Total Space | 342,69 Gb Free Space | 73,58% Space Free | Partition Type: NTFS

Drive F: | 195,31 Gb Total Space | 193,72 Gb Free Space | 99,19% Space Free | Partition Type: NTFS

Drive G: | 172,79 Gb Total Space | 172,62 Gb Free Space | 99,90% Space Free | Partition Type: NTFS

Drive H: | 232,88 Gb Total Space | 227,81 Gb Free Space | 97,83% Space Free | Partition Type: NTFS

Drive J: | 971,61 Mb Total Space | 664,63 Mb Free Space | 68,40% Space Free | Partition Type: FAT

Drive K: | 3,64 Gb Total Space | 0,68 Gb Free Space | 18,66% Space Free | Partition Type: FAT32

Computer Name: STUDIO-8BAE2A6B | User Name: Luigi | Logged in as Administrator.

Boot Mode: SafeMode | Scan Mode: Current user

Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]

batfile [open] -- "%1" %*

cmdfile [open] -- "%1" %*

comfile [open] -- "%1" %*

cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

exefile [open] -- "%1" %*

piffile [open] -- "%1" %*

regfile [merge] -- Reg Error: Key error.

scrfile [config] -- "%1"

scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l

scrfile [open] -- "%1" /S

txtfile [edit] -- Reg Error: Key error.

Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1

Directory [AddToPlaylistVLC] -- "C:\Programmi\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)

Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

Directory [PlayWithVLC] -- "C:\Programmi\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)

Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)

Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)

Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

"FirstRunDisabled" = 1

"AntiVirusDisableNotify" = 0

"FirewallDisableNotify" = 0

"UpdatesDisableNotify" = 0

"AntiVirusOverride" = 0

"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]

"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]

"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]

"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

"EnableFirewall" = 1

"DisableNotifications" = 0

"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007

"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

"3587:TCP" = 3587:TCP:*:Enabled:Gruppi peer-to-peer Windows

"3540:UDP" = 3540:UDP:*:Enabled:Peer Name Resolution Protocol (PNRP)

"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004

"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005

"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001

"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

"EnableFirewall" = 1

"DisableNotifications" = 0

"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007

"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

"3587:TCP" = 3587:TCP:*:Enabled:Gruppi peer-to-peer Windows

"3540:UDP" = 3540:UDP:*:Enabled:Peer Name Resolution Protocol (PNRP)

"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004

"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005

"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001

"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)

"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)

"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)

"C:\Programmi\uTorrent\uTorrent.exe" = C:\Programmi\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)

"C:\Programmi\AVG\AVG2013\avgmfapx.exe" = C:\Programmi\AVG\AVG2013\avgmfapx.exe:*:Enabled:Installazione di AVG -- (AVG Technologies CZ, s.r.o.)

"C:\Programmi\Microsoft Office\Office12\OUTLOOK.EXE" = C:\Programmi\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook -- (Microsoft Corporation)

"C:\Programmi\Microsoft Office\Office12\GROOVE.EXE" = C:\Programmi\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove -- (Microsoft Corporation)

"C:\Programmi\Microsoft Office\Office12\ONENOTE.EXE" = C:\Programmi\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote -- (Microsoft Corporation)

"C:\WINDOWS\system32\msiexec.exe" = C:\WINDOWS\system32\msiexec.exe:*:Enabled:UpdateManagerSetup -- (Microsoft Corporation)

"C:\Programmi\SweetIM\Communicator\SweetPacksUpdateManager.exe" = C:\Programmi\SweetIM\Communicator\SweetPacksUpdateManager.exe:*:Enabled:SweetPacksUpdateManager -- (SweetIM Technologies Ltd.)

"C:\Programmi\TeamViewer\Version8\TeamViewer.exe" = C:\Programmi\TeamViewer\Version8\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application -- (TeamViewer GmbH)

"C:\Programmi\TeamViewer\Version8\TeamViewer_Service.exe" = C:\Programmi\TeamViewer\Version8\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service -- (TeamViewer GmbH)

"C:\Programmi\AVG\AVG2013\avgnsx.exe" = C:\Programmi\AVG\AVG2013\avgnsx.exe:*:Enabled:Online Shield -- (AVG Technologies CZ, s.r.o.)

"C:\Programmi\AVG\AVG2013\avgdiagex.exe" = C:\Programmi\AVG\AVG2013\avgdiagex.exe:*:Enabled:Diagnostica AVG 2013 -- (AVG Technologies CZ, s.r.o.)

"C:\Programmi\AVG\AVG2013\avgemcx.exe" = C:\Programmi\AVG\AVG2013\avgemcx.exe:*:Enabled:Scansione e-mail personale -- (AVG Technologies CZ, s.r.o.)

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center

"{0669D3C5-8CE7-A442-ADCD-2A64EB770A92}" = Catalyst Control Center Localization Chinese Standard

"{073FF7B5-3146-D772-0B64-F785E806579C}" = CCC Help French

"{076086B0-478A-4380-B965-8AB5F8ABE8D0}" = DiKe 5.3.0

"{0D41AA1A-C1AF-377C-1187-853B685933F6}" = Catalyst Control Center Localization Thai

"{13BAE4FB-9686-4DA7-A76A-7B34C21DEDD5}" = Catalyst Control Center Localization Spanish

"{162EA8FB-0278-DC20-1005-7A3BA4150C1E}" = ccc-core-static

"{1ADB558F-1E50-43F2-8EAC-E7D75294C1D8}" = OpenOffice.org 3.4.1

"{1E04D0BC-E0F6-4392-8EB2-CF5B30966A86}" = DiKe Util 2.2.1

"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform

"{22644FC4-9EA9-4F67-A76C-91C51E9E0963}" = AVG 2013

"{24151875-0CBF-0CB6-550D-D3E448FC648B}" = Catalyst Control Center Localization Turkish

"{2488CF04-78E7-2602-0A2A-302BA1353610}" = CCC Help Thai

"{26A24AE4-039D-4CA4-87B4-2F83216038FF}" = Java 6 Update 38

"{26A24AE4-039D-4CA4-87B4-2F83217013FF}" = Java 7 Update 13

"{2BC2781A-F7F6-452E-95EB-018A522F1B2C}" = PaperPort Image Printer

"{2CCC5C78-20FF-478E-8B65-46B58CC5781B}" = AVG 2013

"{2D705A49-46E0-9932-EF9C-101FE0765DD0}" = CCC Help Swedish

"{2E7D11C7-614D-7EC6-C8B7-31D0FE7B1C8B}" = Catalyst Control Center Graphics Light

"{2E8AC436-A019-8A22-4D49-86C933FE26EB}" = Catalyst Control Center Graphics Full Existing

"{3248F0A8-6813-11D6-A77B-00B0D0150160}" = J2SE Runtime Environment 5.0 Update 16

"{33483DFE-9B7C-7BE3-0757-E2DDBF93D4C3}" = CCC Help Japanese

"{350C9410-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP

"{36CDA33B-909B-4719-97D1-C4B99309BDC7}" = ATI Parental Control & Encoder

"{3EA9D975-BFDC-4E8E-B88B-0446FBC8CA66}" = ATI HYDRAVISION

"{446FD200-A20E-C432-4251-C51FE4D565D3}" = Catalyst Control Center Localization Swedish

"{46CD025D-CFAE-5C2B-6676-D67B1815B055}" = Catalyst Control Center Graphics Full New

"{46E1B1F2-A279-4356-9B17-029F9CC72EAE}" = Brother MFL-Pro Suite

"{479291EF-4939-D71A-731C-355DF19F09FA}" = Catalyst Control Center Localization Dutch

"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater

"{4E93FE2D-AEDB-534F-349E-EB37C915F6E4}" = CCC Help Hungarian

"{50CF64ED-4742-43B3-B455-3D6801E8677A}" = B.Point Solution Platform

"{52FE4D31-0975-B1BC-A3FE-461EF9205068}" = CCC Help Norwegian

"{531A39A0-081A-4ABB-51CB-16C715762EAA}" = CCC Help Greek

"{5AD4193A-A8E4-365F-2E80-24156325DDF1}" = Catalyst Control Center Localization Italian

"{5D412B61-F3A7-42C6-9C07-29BBD3D442B1}" = AVG 2013

"{5DA3B539-4F89-4EB4-AC35-1ED7E8732897}" = Editoria_seac

"{5DA6F06A-B389-407B-BF8C-1548767914D8}" = ATI Problem Report Wizard

"{5EC7BCD4-1AAD-FF35-6781-D3B27C17897A}" = CCC Help German

"{62B5E921-968C-C306-4501-684DFE6E9FD1}" = CCC Help Portuguese

"{631164A5-3CC8-75A6-EFC4-C8293D47B1F5}" = CCC Help Spanish

"{64C98D2D-2850-26E6-9EDA-D0AEC7AEA3EE}" = ccc-core-preinstall

"{6B7CEA03-2AEE-F4C2-12D1-952049C144AE}" = Catalyst Control Center Localization Korean

"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable

"{7236672F-6430-439E-9B27-27EDEAF1D676}" = Diagnostic Utility

"{731E713B-C13E-4527-B624-8A6DF2D33DAF}" = AVG 2013

"{76103A13-EB5E-93DE-5EE0-26ED0663DEE7}" = CCC Help Chinese Standard

"{7683B745-6060-41FD-AA75-0BBB383FEAD4}" = SweetIM for Messenger 3.7

"{7A8FF745-BBC5-482B-88E4-18D3178249A9}" = ScanSoft PaperPort 11

"{7BF50B0D-7D67-66FB-0D6A-83AD08AC31F7}" = Catalyst Control Center Graphics Previews Common

"{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}" = NVIDIA ForceWare Network Access Manager

"{7E66D448-7E4E-BF0F-95CF-CB753B2B62BD}" = Catalyst Control Center Localization Japanese

"{7FD093C2-3493-4B17-BB15-B129A7D1DC51}" = AVG 2013

"{84974D55-E43F-5C75-EE0F-85DD4964B5C1}" = CCC Help Czech

"{89DE67AD-08B8-4699-A55D-CA5C0AF82BF3}" = ATI AVIVO Codecs

"{8D5088A9-4376-4765-B5E4-695AFFBA4F7A}" = TuneUp Utilities Language Pack (it-IT)

"{8D6181F3-CACB-4B48-8B08-981F3A7F318B}" = SAP Crystal Reports runtime engine for .NET Framework 4 (32-bit)

"{8F582872-E137-9B32-0297-26A322492D76}" = Catalyst Control Center Localization Czech

"{90120000-0010-0410-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Italian) 12

"{90120000-0015-0410-0000-0000000FF1CE}" = Microsoft Office Access MUI (Italian) 2007

"{90120000-0015-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3)

"{90120000-0016-0410-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Italian) 2007

"{90120000-0016-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3)

"{90120000-0018-0410-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Italian) 2007

"{90120000-0018-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3)

"{90120000-0019-0410-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Italian) 2007

"{90120000-0019-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3)

"{90120000-001A-0410-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Italian) 2007

"{90120000-001A-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3)

"{90120000-001B-0410-0000-0000000FF1CE}" = Microsoft Office Word MUI (Italian) 2007

"{90120000-001B-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3)

"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007

"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)

"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007

"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)

"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007

"{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)

"{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007

"{90120000-001F-0410-0000-0000000FF1CE}_ENTERPRISE_{A23BFC95-4A73-410F-9248-4C2B48E38C49}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)

"{90120000-002C-0410-0000-0000000FF1CE}" = Microsoft Office Proofing (Italian) 2007

"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007

"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)

"{90120000-0044-0410-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Italian) 2007

"{90120000-0044-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3)

"{90120000-006E-0410-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Italian) 2007

"{90120000-006E-0410-0000-0000000FF1CE}_ENTERPRISE_{C0C7E58F-D0A1-4102-855B-0B7AA2E8F1C1}" = Microsoft Office 2007 Service Pack 3 (SP3)

"{90120000-00A1-0410-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Italian) 2007

"{90120000-00A1-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3)

"{90120000-00BA-0410-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Italian) 2007

"{90120000-00BA-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3)

"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In

"{9436F92D-78C9-D586-29DC-7D31067C1E59}" = Catalyst Control Center Localization Danish

"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting

"{98EABC7F-B1A1-43A5-B505-5B4EC3908DCD}" = Microsoft Security Client

"{9B4E116C-C887-24C2-1FDB-4123E627C23D}" = Catalyst Control Center Localization Norwegian

"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

"{A0F857A0-9FC6-32B5-E422-3B36BB815D3D}" = Catalyst Control Center Localization Polish

"{A142E531-C598-4C74-895B-7EEACF0D571E}" = QuickShare

"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2

"{A5712DE7-F7EE-3DA6-7ED2-1C469F249FCF}" = Catalyst Control Center Localization Portuguese

"{AC76BA86-1040-7D70-7761-000000000004}" = Adobe Acrobat 9 Pro Extended - Italiano, Español, Nederlands, Português

"{AC76BA86-1040-7D70-7761-000000000004}{AC76BA86-1040-7D70-7761-000000000004}" = Adobe Acrobat 9 Pro Extended - Italiano, Español, Nederlands, Português

"{AC76BA86-7AD7-1040-7B44-AB0000000001}" = Adobe Reader XI (11.0.01) - Italiano

"{ACCA20B0-C4D1-4BF5-BF21-0A0EB5EF9730}" = REALTEK GbE & FE Ethernet PCI NIC Driver

"{B2322A74-EB33-75BB-6572-A9E0DD77A314}" = CCC Help Russian

"{B623975B-36C3-6DCA-02D3-E29E1AF90A27}" = Catalyst Control Center Localization French

"{B863E98C-4BA0-E793-2942-916297A2B39E}" = CCC Help Finnish

"{BD091A58-5BDA-E978-FD48-5BD89452F68D}" = CCC Help Dutch

"{BF9053A3-9D54-2A33-BDCD-343496F4C0E2}" = CCC Help Chinese Traditional

"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2

"{C11AE6D7-E4C9-F268-3087-9F3B4129146C}" = Catalyst Control Center Localization Greek

"{C1335BCD-78AD-0120-025B-F29FDA97F226}" = Catalyst Control Center Localization German

"{C151CE54-E7EA-4804-854B-F515368B0798}" = AMD Processor Driver

"{C2ED9B4E-1600-DAA0-1756-8CBD02DFD7A0}" = CCC Help English

"{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}" = Internet Explorer Toolbar 4.6 by SweetPacks

"{C4A8F596-7CA5-0EEB-64DD-C776FC3825D0}" = Catalyst Control Center Core Implementation

"{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}" = TuneUp Utilities 2013

"{C6BEE1F0-CFC4-3EFA-8C02-F30F5B154CF6}" = ccc-utility

"{C9BED750-1211-4480-B1A5-718A3BE15525}" = REALTEK GbE & FE Ethernet PCI-E NIC Driver

"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1

"{DB4A0243-F8DE-E620-7612-0A12A3FCE8EF}" = CCC Help Korean

"{DB4DA2B2-FABF-F40E-0C33-38C58E44D4BF}" = CCC Help Turkish

"{DD2F0D22-938B-6254-A342-3AB53DB4300D}" = CCC Help Danish

"{DDC6D344-7279-983D-208C-A32F40F3FCBE}" = CCC Help Italian

"{E061DCC9-C052-F723-C3FE-C7EEC2E069D3}" = CCC Help Polish

"{E1C12CC6-2DFA-90EF-A8C5-68BA7F7FDF26}" = Catalyst Control Center Localization Hungarian

"{E22E8C17-DBD3-89ED-F533-B2A6BB552339}" = Catalyst Control Center Localization Chinese Traditional

"{EA8FA6BE-29BE-4AF2-9352-841F83215EB0}" = Update Manager for SweetPacks 1.1

"{ECEE5531-9C6E-9941-B79F-304CCF5EAE54}" = Skins

"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219

"{FBA5EE6B-6D52-FA65-CA02-6D7F3E128A06}" = Catalyst Control Center Localization Finnish

"{FBA8A045-5889-80B9-6598-D187B3F677C6}" = Catalyst Control Center Localization Russian

"435403D41CB143EFFFCE801AFA6A0778EBC1DB1F" = Pacchetto driver Windows - Microsoft (USBCCID) SmartCardReader (08/01/2006 5.2.3790.2724)

"Adobe Digital Editions 2.0" = Adobe Digital Editions 2.0

"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX

"All ATI Software" = ATI - Programma di disinstallazione

"Anagrafico - Attribuzione P.IVA Ditta 2.2.1" = Anagrafico - Attribuzione P.IVA Ditta 2.2.1

"Anagrafico - Cessazione Partita IVA 2.0.0" = Anagrafico - Cessazione Partita IVA 2.0.0

"Anagrafico - Controlli_AA7_AA9 1.8.1" = Anagrafico - Controlli_AA7_AA9 1.8.1

"Anagrafico -Variazione P.IVA Ditta 2.0.1" = Anagrafico -Variazione P.IVA Ditta 2.0.1

"ATI Display Driver" = ATI Display Driver

"aTube Catcher" = aTube Catcher

"AVG" = AVG 2013

"Contratti di Locazione - Pagamenti successivi alla registrazione vers. 4.4.2" = Contratti di Locazione - Pagamenti successivi alla registrazione vers. 4.4.2

"Contratti di Locazione 9.4.6" = Contratti di Locazione 9.4.6

"Contratti di Locazione vers. 9.5.2" = Contratti di Locazione vers. 9.5.2

"ENTERPRISE" = Microsoft Office Enterprise 2007

"Entratel" = Entratel

"GIMP-2_is1" = GIMP 2.8.2

"Google Desktop" = Google Desktop

"ie8" = Windows Internet Explorer 8

"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Manager Piattaforma

"InstallShield_{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}" = NVIDIA ForceWare Network Access Manager

"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1

"Microsoft Security Client" = Microsoft Security Essentials

"ModuliControlloOCS2011" = ModuliControlloOCS2011

"mySudokuEngine Free 1.0_is1" = mySudokuEngine Free 1.0

"Nero - Burning Rom!UninstallKey" = Nero OEM

"NVIDIA Drivers" = NVIDIA Drivers

"Parcella Facile Plus" = Parcella Facile Plus

"Pdf995" = Pdf995

"Servizio Telematico" = Entratel - Servizio Telematico 5.0.4

"TeamViewer 8" = TeamViewer 8

"TuneUp Utilities 2013" = TuneUp Utilities 2013

"uTorrent" = µTorrent

"Validazione_F24" = Validazione_F24

"VLC media player" = VLC media player 2.0.4

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

"Comunicazione Dichiarazioni di intento 2010" = Comunicazione Dichiarazioni di intento 2010

"I.R.I.S" = I.R.I.S

========== Last 20 Event Log Errors ==========

[ Application Events ]

Error - 24/12/2012 5.30.12 | Computer Name = STUDIO-8BAE2A6B | Source = MsiInstaller | ID = 1024

Description = Prodotto Microsoft Office Professional Edition 2003: impossibile installare

aggiornamento "Update for Office 2003 (KB907417): OTKLOADR". Codice errore 1603.

È possibile impostare Windows Installer per la creazione di log, che possono facilitare

la risoluzione di problemi di installazione dei pacchetti software. Istruzioni

per l'attivazione del supporto della registrazione sono disponibili tramite il seguente

collegamento: http://go.microsoft.com/fwlink/?LinkId=23127

Error - 24/12/2012 7.00.34 | Computer Name = STUDIO-8BAE2A6B | Source = MsiInstaller | ID = 10005

Description = Prodotto: Microsoft Office Professional Edition 2003 -- Errore 25090.

Si è verificato un problema con Office Source Engine, errore di sistema: -2147023836.

Per informazioni sulla risoluzione del problema, aprire C:\Programmi\Microsoft

Office\OFFICE11\1040\SETUP.CHM, quindi cercare "Office Source Engine".

Error - 24/12/2012 7.00.34 | Computer Name = STUDIO-8BAE2A6B | Source = MsiInstaller | ID = 1024

Description = Prodotto Microsoft Office Professional Edition 2003: impossibile installare

aggiornamento "Office 2003 - Service Pack 3 (SP3): MAINSP3". Codice errore 1603.

È possibile impostare Windows Installer per la creazione di log, che possono facilitare

la risoluzione di problemi di installazione dei pacchetti software. Istruzioni

per l'attivazione del supporto della registrazione sono disponibili tramite il seguente

collegamento: http://go.microsoft.com/fwlink/?LinkId=23127

Error - 24/12/2012 7.00.37 | Computer Name = STUDIO-8BAE2A6B | Source = MsiInstaller | ID = 10005

Description = Prodotto: Microsoft Office Professional Edition 2003 -- Errore 25090.

Si è verificato un problema con Office Source Engine, errore di sistema: -2147023836.

Per informazioni sulla risoluzione del problema, aprire C:\Programmi\Microsoft

Office\OFFICE11\1040\SETUP.CHM, quindi cercare "Office Source Engine".

Error - 24/12/2012 7.00.37 | Computer Name = STUDIO-8BAE2A6B | Source = MsiInstaller | ID = 1024

Description = Prodotto Microsoft Office Professional Edition 2003: impossibile installare

aggiornamento "Update for Outlook 2003 Junk E-mail Filter (KB2760582): OUTLFLTR".

Codice errore 1603. È possibile impostare Windows Installer per la creazione di

log, che possono facilitare la risoluzione di problemi di installazione dei pacchetti

software. Istruzioni per l'attivazione del supporto della registrazione sono disponibili

tramite il seguente collegamento: http://go.microsoft.com/fwlink/?LinkId=23127

Error - 24/12/2012 7.00.41 | Computer Name = STUDIO-8BAE2A6B | Source = MsiInstaller | ID = 10005

Description = Prodotto: Microsoft Office Professional Edition 2003 -- Errore 25090.

Si è verificato un problema con Office Source Engine, errore di sistema: -2147023836.

Per informazioni sulla risoluzione del problema, aprire C:\Programmi\Microsoft

Office\OFFICE11\1040\SETUP.CHM, quindi cercare "Office Source Engine".

Error - 24/12/2012 7.00.41 | Computer Name = STUDIO-8BAE2A6B | Source = MsiInstaller | ID = 1024

Description = Prodotto Microsoft Office Professional Edition 2003: impossibile installare

aggiornamento "Update for Office 2003 (KB907417): OTKLOADR". Codice errore 1603.

È possibile impostare Windows Installer per la creazione di log, che possono facilitare

la risoluzione di problemi di installazione dei pacchetti software. Istruzioni

per l'attivazione del supporto della registrazione sono disponibili tramite il seguente

collegamento: http://go.microsoft.com/fwlink/?LinkId=23127

Error - 27/12/2012 3.30.26 | Computer Name = STUDIO-8BAE2A6B | Source = MsiInstaller | ID = 11719

Description = Prodotto: Microsoft Office Enterprise 2007 -- Errore 1719.Impossibile

accedere al servizio Windows Installer. Ciò può verificarsi se Windows è in esecuzione

in modalità provvisoria o se Windows Installer non è stato installato correttamente.

Contattare il personale di supporto.

Error - 27/12/2012 6.53.26 | Computer Name = STUDIO-8BAE2A6B | Source = Application Hang | ID = 1002

Description = Applicazione in stallo rundll32.exe, versione 5.1.2600.5512, modulo

in stallo hungapp, versione 0.0.0.0, indirizzo stallo 0x00000000.

Error - 27/12/2012 6.58.27 | Computer Name = STUDIO-8BAE2A6B | Source = Application Hang | ID = 1002

Description = Applicazione in stallo soffice.bin, versione 3.4.9593.500, modulo

in stallo hungapp, versione 0.0.0.0, indirizzo stallo 0x00000000.

[ OSession Events ]

Error - 31/01/2013 3.33.41 | Computer Name = STUDIO-8BAE2A6B | Source = Microsoft Office 12 Sessions | ID = 7001

Description = ID: 0, Application Name: Microsoft Office Word, Application Version:

12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 394

seconds with 360 seconds of active time. This session ended with a crash.

[ System Events ]

Error - 20/02/2013 2.53.27 | Computer Name = STUDIO-8BAE2A6B | Source = DCOM | ID = 10005

Description = DCOM ha ricevuto l'errore "%1084" durante il tentativo di avviare

il servizio EventSystem con gli argomenti "" per eseguire il server {1BE1F766-5536-11D1-B726-00C04FB926AF}

Error - 20/02/2013 2.55.42 | Computer Name = STUDIO-8BAE2A6B | Source = DCOM | ID = 10005

Description = DCOM ha ricevuto l'errore "%1084" durante il tentativo di avviare

il servizio netman con gli argomenti "" per eseguire il server {BA126AE5-2166-11D1-B1D0-00805FC1270E}

Error - 20/02/2013 2.55.47 | Computer Name = STUDIO-8BAE2A6B | Source = DCOM | ID = 10005

Description = DCOM ha ricevuto l'errore "%1084" durante il tentativo di avviare

il servizio EventSystem con gli argomenti "" per eseguire il server {1BE1F766-5536-11D1-B726-00C04FB926AF}

Error - 20/02/2013 3.18.54 | Computer Name = STUDIO-8BAE2A6B | Source = DCOM | ID = 10005

Description = DCOM ha ricevuto l'errore "%1084" durante il tentativo di avviare

il servizio StiSvc con gli argomenti "" per eseguire il server {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 20/02/2013 3.19.45 | Computer Name = STUDIO-8BAE2A6B | Source = DCOM | ID = 10010

Description = Il server {8BC3F05E-D86B-11D0-A075-00C04FB68820} non si è registrato

con DCOM entro il tempo d'attesa richiesto.

Error - 20/02/2013 4.46.53 | Computer Name = STUDIO-8BAE2A6B | Source = DCOM | ID = 10005

Description = DCOM ha ricevuto l'errore "%1084" durante il tentativo di avviare

il servizio StiSvc con gli argomenti "" per eseguire il server {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 20/02/2013 4.47.00 | Computer Name = STUDIO-8BAE2A6B | Source = DCOM | ID = 10005

Description = DCOM ha ricevuto l'errore "%1084" durante il tentativo di avviare

il servizio StiSvc con gli argomenti "" per eseguire il server {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 20/02/2013 5.27.17 | Computer Name = STUDIO-8BAE2A6B | Source = DCOM | ID = 10005

Description = DCOM ha ricevuto l'errore "%1084" durante il tentativo di avviare

il servizio StiSvc con gli argomenti "" per eseguire il server {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 20/02/2013 5.29.53 | Computer Name = STUDIO-8BAE2A6B | Source = DCOM | ID = 10005

Description = DCOM ha ricevuto l'errore "%1084" durante il tentativo di avviare

il servizio StiSvc con gli argomenti "" per eseguire il server {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 20/02/2013 5.33.03 | Computer Name = STUDIO-8BAE2A6B | Source = DCOM | ID = 10010

Description = Il server {8BC3F05E-D86B-11D0-A075-00C04FB68820} non si è registrato

con DCOM entro il tempo d'attesa richiesto.

< End of report >

Condividi questo messaggio


Link di questo messaggio
Condividi su altri siti

OTL logfile created on: 20/02/2013 10.31.45 - Run 1

OTL by OldTimer - Version 3.2.69.0 Folder = J:\

Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 8.0.6001.18702)

Locale: 00000410 | Country: Italia | Language: ITA | Date Format: dd/MM/yyyy

2,00 Gb Total Physical Memory | 1,35 Gb Available Physical Memory | 67,71% Memory free

3,85 Gb Paging File | 3,45 Gb Available in Paging File | 89,51% Paging File free

Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programmi

Drive C: | 97,65 Gb Total Space | 3,82 Gb Free Space | 3,91% Space Free | Partition Type: NTFS

Drive D: | 232,88 Gb Total Space | 231,20 Gb Free Space | 99,28% Space Free | Partition Type: NTFS

Drive E: | 465,76 Gb Total Space | 342,69 Gb Free Space | 73,58% Space Free | Partition Type: NTFS

Drive F: | 195,31 Gb Total Space | 193,72 Gb Free Space | 99,19% Space Free | Partition Type: NTFS

Drive G: | 172,79 Gb Total Space | 172,62 Gb Free Space | 99,90% Space Free | Partition Type: NTFS

Drive H: | 232,88 Gb Total Space | 227,81 Gb Free Space | 97,83% Space Free | Partition Type: NTFS

Drive J: | 971,61 Mb Total Space | 664,63 Mb Free Space | 68,40% Space Free | Partition Type: FAT

Drive K: | 3,64 Gb Total Space | 0,68 Gb Free Space | 18,66% Space Free | Partition Type: FAT32

Computer Name: STUDIO-8BAE2A6B | User Name: Luigi | Logged in as Administrator.

Boot Mode: SafeMode | Scan Mode: Current user

Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - J:\OTL.exe (OldTimer Tools)

PRC - C:\Programmi\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)

PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)

========== Modules (No Company Name) ==========

MOD - C:\Programmi\File comuni\Microsoft Shared\OFFICE12\MSPTLS.DLL ()

========== Services (SafeList) ==========

SRV - (winmgmt) -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\19144265.exe ()

SRV - (AdobeFlashPlayerUpdateSvc) -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)

SRV - (JavaQuickStarterService) -- C:\Programmi\Java\jre7\bin\jqs.exe (Oracle Corporation)

SRV - (TeamViewer8) -- C:\Programmi\TeamViewer\Version8\TeamViewer_Service.exe (TeamViewer GmbH)

SRV - (AVGIDSAgent) -- C:\Programmi\AVG\AVG2013\avgidsagent.exe (AVG Technologies CZ, s.r.o.)

SRV - (avgwd) -- C:\Programmi\AVG\AVG2013\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)

SRV - (TuneUp.UtilitiesSvc) -- C:\Programmi\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe (TuneUp Software)

SRV - (MsMpSvc) -- C:\Programmi\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)

SRV - (odserv) -- C:\Programmi\File comuni\Microsoft Shared\OFFICE12\ODSERV.EXE (Microsoft Corporation)

SRV - (cligrafsrv) -- C:\Programmi\WKICOSIMI\ClientGrafico\bin\cligrafsrv.exe ()

SRV - (FLEXnet Licensing Service) -- C:\Programmi\File comuni\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Macrovision Europe Ltd.)

SRV - (ForceWare Intelligent Application Manager (IAM) -- C:\Programmi\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe ()

SRV - (nSvcIp) -- C:\Programmi\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe ()

SRV - (p2pgasvc) -- C:\WINDOWS\system32\p2pgasvc.dll (Microsoft Corporation)

SRV - (Iprip) -- C:\WINDOWS\system32\iprip.dll (Microsoft Corporation)

SRV - (ose) -- C:\Programmi\File comuni\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)

========== Driver Services (SafeList) ==========

DRV - (WDICA) -- File not found

DRV - (radzumuv) -- C:\WINDOWS\system32\drivers\radzumuv.sys File not found

DRV - (PDRFRAME) -- File not found

DRV - (PDRELI) -- File not found

DRV - (PDFRAME) -- File not found

DRV - (PDCOMP) -- File not found

DRV - (PCIDump) -- File not found

DRV - (ltaaqjnx) -- C:\WINDOWS\system32\drivers\ltaaqjnx.sys File not found

DRV - (lbrtfdc) -- File not found

DRV - (i2omgmt) -- File not found

DRV - (Changer) -- File not found

DRV - (Avgmfx86) -- C:\WINDOWS\system32\drivers\avgmfx86.sys (AVG Technologies CZ, s.r.o.)

DRV - (AVGIDSDriver) -- C:\WINDOWS\system32\drivers\avgidsdriverx.sys (AVG Technologies CZ, s.r.o. )

DRV - (AVGIDSHX) -- C:\WINDOWS\system32\drivers\avgidshx.sys (AVG Technologies CZ, s.r.o. )

DRV - (Avgldx86) -- C:\WINDOWS\system32\drivers\avgldx86.sys (AVG Technologies CZ, s.r.o.)

DRV - (Avgtdix) -- C:\WINDOWS\system32\drivers\avgtdix.sys (AVG Technologies CZ, s.r.o.)

DRV - (Avglogx) -- C:\WINDOWS\system32\drivers\avglogx.sys (AVG Technologies CZ, s.r.o.)

DRV - (AVGIDSShim) -- C:\WINDOWS\system32\drivers\avgidsshimx.sys (AVG Technologies CZ, s.r.o. )

DRV - (TuneUpUtilitiesDrv) -- C:\Programmi\TuneUp Utilities 2013\TuneUpUtilitiesDriver32.sys (TuneUp Software)

DRV - (Avgrkx86) -- C:\WINDOWS\system32\drivers\avgrkx86.sys (AVG Technologies CZ, s.r.o.)

DRV - (Tcpip6) -- C:\WINDOWS\system32\drivers cpip6.sys (Microsoft Corporation)

DRV - (VIAHdAudAddService) -- C:\WINDOWS\system32\drivers\viahduaa.sys (VIA Technologies, Inc.)

DRV - (nvsmu) -- C:\WINDOWS\system32\drivers\nvsmu.sys (NVIDIA Corporation)

DRV - (nvnetbus) -- C:\WINDOWS\system32\drivers\nvnetbus.sys (NVIDIA Corporation)

DRV - (NVENETFD) -- C:\WINDOWS\system32\drivers\NVENETFD.sys (NVIDIA Corporation)

DRV - (RtNdPt5x) -- C:\WINDOWS\system32\drivers\RtNdPt5x.sys (Realtek Semiconductor Corporation )

DRV - (RTLVLAN) -- C:\WINDOWS\system32\drivers\RTLVLAN.SYS (Realtek Semiconductor Corporation )

DRV - (ati2mtag) -- C:\WINDOWS\system32\drivers\ati2mtag.sys (ATI Technologies Inc.)

DRV - (RTLTEAMING) -- C:\WINDOWS\system32\drivers\RTLTEAMING.SYS (Realtek Semiconductor Corporation)

DRV - (AtiHdmiService) -- C:\WINDOWS\system32\drivers\AtiHdmi.sys (ATI Research Inc.)

DRV - (AmdPPM) -- C:\WINDOWS\system32\drivers\AmdPPM.sys (Advanced Micro Devices)

DRV - (USBCCID) -- C:\WINDOWS\system32\drivers\usbccid.sys (Microsoft Corporation)

DRV - (MTsensor) -- C:\WINDOWS\system32\drivers\ASACPI.sys ()

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.v9.com/?utm_source=b&utm_medium=mlv&from=mlv&uid=STM3500418AS_9VM6HYCTXXXX9VM6HYCT&ts=1356603086

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.v9.com/?utm_source=b&utm_medium=mlv&from=mlv&uid=STM3500418AS_9VM6HYCTXXXX9VM6HYCT&ts=1356603086

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://search.v9.com/web/?utm_source=b&utm_medium=mlv&from=mlv&uid=STM3500418AS_9VM6HYCTXXXX9VM6HYCT&ts=1356603086

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie

IE - HKLM\..\SearchScopes,DefaultScope = {006ee092-9658-4fd6-bd8e-a21a348e59f5}

IE - HKLM\..\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}: "URL" = http://feed.snap.do/?publisher=QuickOC&dpid=QuickOC&co=IT&userid=ddb6b426-64cd-485c-8cb0-0be193ea4da7&searchtype=ds&q={searchTerms}&installDate=01/01/1970

IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.v9.com/?utm_source=b&utm_medium=mlv&from=mlv&uid=STM3500418AS_9VM6HYCTXXXX9VM6HYCT&ts=1356603086

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar =

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/

IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

IE - HKCU\..\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}: "URL" = http://feed.snap.do/?publisher=QuickOC&dpid=QuickOC&co=IT&userid=ddb6b426-64cd-485c-8cb0-0be193ea4da7&searchtype=ds&q={searchTerms}&installDate=01/01/1970

IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC

IE - HKCU\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://search.v9.com/web/?utm_source=b&utm_medium=mlv&from=mlv&uid=STM3500418AS_9VM6HYCTXXXX9VM6HYCT&ts=1356603086

IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rlz=1I7GGLD_en&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7

IE - HKCU\..\SearchScopes\{70D46D94-BF1E-45ED-B567-48701376298E}: "URL" = http://127.0.0.1:4664/search&s=ac9iuWm3GHyQu6qHr0eBb37pqvU?q={searchTerms}

IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2851640

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.13.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)

FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.13.2: C:\Programmi\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)

FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)

FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.4: C:\Programmi\VideoLAN\VLC\npvlc.dll (VideoLAN)

FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Programmi\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

[2012/12/19 11.05.29 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\Mozilla\Firefox\extensions

[2012/12/19 11.05.34 | 000,000,000 | ---D | M] (uTorrentBar_IT) -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\Mozilla\Firefox\extensions\{4ae0c3d6-f713-4eed-bc65-25dc3ffdaac1}

O1 HOSTS File: ([2012/12/19 08.21.48 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts

O1 - Hosts: 127.0.0.1 localhost

O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)

O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programmi\Java\jre7\bin\ssv.dll (Oracle Corporation)

O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)

O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programmi\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)

O2 - BHO: (SweetPacks Browser Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Programmi\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)

O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)

O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)

O3 - HKLM\..\Toolbar: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Programmi\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)

O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)

O3 - HKCU\..\Toolbar\WebBrowser: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Programmi\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)

O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0

O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0

O8 - Extra context menu item: Aggiungi a PDF esistente - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)

O8 - Extra context menu item: Aggiungi destinazione link a PDF esistente - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)

O8 - Extra context menu item: Converti destinazione link in Adobe PDF - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)

O8 - Extra context menu item: Converti in Adobe PDF - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)

O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmi\Java\jre1.5.0_16\bin\NPJPI150_16.dll (Sun Microsystems, Inc.)

O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe File not found

O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\system32\nvLsp.dll (NVIDIA)

O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\system32\nvLsp.dll (NVIDIA)

O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\system32\nvLsp.dll (NVIDIA)

O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\system32\nvLsp.dll (NVIDIA)

O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\system32\nvLsp.dll (NVIDIA)

O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\WINDOWS\system32\nvLsp.dll (NVIDIA)

O10 - Protocol_Catalog9\Catalog_Entries\000000000025 - C:\WINDOWS\system32\nvLsp.dll (NVIDIA)

O15 - HKCU\..Trusted Domains: localhost ([]http in Intranet locale)

O15 - HKCU\..Trusted Ranges: GD ([http] in Intranet locale)

O16 - DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} http://office.microsoft.com/_layouts/ClientBin/ieawsdc32.cab (Microsoft Office Template and Media Control)

O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool)

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_10-windows-i586.cab (Reg Error: Value error.)

O16 - DPF: {CAFEEFAC-0015-0000-0016-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_16-windows-i586.cab (Java Plug-in 1.5.0_16)

O16 - DPF: {CAFEEFAC-0016-0000-0038-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_38-windows-i586.cab (Java Plug-in 1.6.0_38)

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_38-windows-i586.cab (Java Plug-in 1.7.0_10)

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1

O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B9960F21-D84A-42A1-A704-737D44E34AE5}: DhcpNameServer = 192.168.1.1 192.168.1.1

O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programmi\File comuni\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)

O18 - Protocol\Filter ext/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Programmi\File comuni\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)

O20 - AppInit_DLLs: (acaptuser32.dll) - C:\WINDOWS\System32\acaptuser32.dll (Adobe Systems, Inc.)

O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL) - C:\Programmi\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google)

O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)

O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)

O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)

O24 - Desktop Components:0 (Pagina iniziale corrente) - About:Home

O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Colline.bmp

O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Colline.bmp

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2009/11/25 17.14.06 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]

O34 - HKLM BootExecute: (autocheck autochk *)

O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG2013\avgrsx.exe /sync /restart)

O35 - HKLM\..comfile [open] -- "%1" %*

O35 - HKLM\..exefile [open] -- "%1" %*

O37 - HKLM\...com [@ = ComFile] -- "%1" %*

O37 - HKLM\...exe [@ = exefile] -- "%1" %*

O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)

O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

NetSvcs: Ias - File not found

NetSvcs: Iprip - C:\WINDOWS\system32\iprip.dll (Microsoft Corporation)

NetSvcs: Irmon - File not found

NetSvcs: NWCWorkstation - File not found

NetSvcs: Nwsapagent - File not found

NetSvcs: WmdmPmSp - File not found

NetSvcs: winmgmt - C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\19144265.exe ()

Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)

Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)

Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)

Drivers32: msacm.trspch - C:\WINDOWS\System32 ssoft32.acm (DSP GROUP, INC.)

Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)

Drivers32: VIDC.FMVC - C:\WINDOWS\System32\fmcodec.DLL (Fox Magic Software)

Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()

Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()

Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)

Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)

CREATERESTOREPOINT

System Restore Service not available.

========== Files/Folders - Created Within 30 Days ==========

[2013/02/19 13.37.46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\TeamViewer

[2013/02/14 18.05.56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\Marino

[2013/02/13 11.43.50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Documenti\Modello di delega per il ritiro o la richiesta di documenti

[2013/02/13 09.45.01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\AVG

[2013/02/08 13.03.32 | 015,739,760 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerInstaller.exe

[2013/02/07 16.48.32 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ptpusd.dll

[2013/02/07 16.48.32 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ptpusb.dll

[2013/02/07 16.48.31 | 000,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbscan.sys

[2013/02/06 07.22.22 | 000,262,560 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe

[2013/02/06 07.22.18 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe

[2013/02/06 07.22.18 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe

[2013/02/06 07.22.18 | 000,094,112 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll

[2013/02/05 10.47.50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\mySudokuEngine Futura Software

[2013/02/01 08.28.25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\bilanci

[2013/01/31 17.20.59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\BERTENASCO

[2013/01/31 09.12.28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\pdf995

[2013/01/31 09.12.27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Impostazioni locali\Dati applicazioni\pdf995

[2013/01/31 09.11.20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\pdf995

[2013/01/31 09.11.19 | 001,671,168 | ---- | C] (TODO: <Company name>) -- C:\WINDOWS\System32\pdfmona.dll

[2013/01/31 09.11.19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Software995

[2013/01/31 09.10.15 | 000,000,000 | ---D | C] -- C:\Programmi\pdf995

[2013/01/30 14.24.09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\CARTELLA

[2013/01/28 10.26.52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Documenti\My Google Gadgets

[2013/01/28 10.26.27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Google Desktop

[2013/01/28 10.25.54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Impostazioni locali\Dati applicazioni\Google

[2013/01/28 09.32.06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Documenti\CARTELLA

[2013/01/24 16.08.48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\Nuova cartella

[2013/01/23 09.10.48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Documenti\CONTRATTI

[2013/01/23 07.42.30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\AVG January 2013 Campaign

[2013/01/22 09.35.15 | 000,045,392 | R--- | C] (Adobe Systems Inc) -- C:\WINDOWS\System32\AdobePDF.dll

[2013/01/22 09.35.15 | 000,022,872 | R--- | C] (Adobe Systems Inc.) -- C:\WINDOWS\System32\AdobePDFUI.dll

[2013/01/21 10.53.47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Documenti\ISTRUZIONI

[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[2 C:\*.tmp files -> C:\*.tmp -> ]

[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/02/20 08.28.45 | 000,000,398 | -H-- | M] () -- C:\WINDOWS asks\Microsoft Antimalware Scheduled Scan.job

[2013/02/20 08.19.15 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl

[2013/02/20 08.19.10 | 000,000,242 | RHS- | M] () -- C:\boot.ini

[2013/02/20 08.18.28 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat

[2013/02/20 07.55.37 | 095,023,320 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\56244191.pad

[2013/02/19 14.03.15 | 000,000,978 | ---- | M] () -- C:\WINDOWS asks\Adobe Flash Player Updater.job

[2013/02/19 12.52.59 | 000,096,256 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\19144265.exe

[2013/02/19 12.36.35 | 000,009,572 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\PROVA.pdf

[2013/02/19 08.17.34 | 000,459,761 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\estratto-sicuro-di-te-in-60-giorni.pdf

[2013/02/18 17.59.08 | 000,006,508 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\LIQ.pdf

[2013/02/18 17.57.22 | 000,012,311 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\BONAF1.pdf

[2013/02/18 16.21.17 | 000,080,570 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\2012-UNIPF-2011.pdf

[2013/02/18 11.59.36 | 000,228,538 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\MailUp_Ebook_01-Le_tue_email_arrivano_nella_casella_giusta[1].pdf

[2013/02/18 11.22.46 | 000,134,144 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Impostazioni locali\Dati applicazioni\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2013/02/18 08.29.35 | 000,015,416 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Impostazioni locali\Dati applicazioni\recently-used.xbel

[2013/02/15 14.55.09 | 000,018,169 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\CALGIO-INPS.pdf

[2013/02/14 17.20.52 | 000,370,203 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\F24.pdf

[2013/02/14 07.30.52 | 000,302,824 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT

[2013/02/13 18.57.26 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK

[2013/02/13 18.53.33 | 000,479,574 | ---- | M] () -- C:\WINDOWS\System32\perfh010.dat

[2013/02/13 18.53.33 | 000,432,928 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat

[2013/02/13 18.53.33 | 000,079,932 | ---- | M] () -- C:\WINDOWS\System32\perfc010.dat

[2013/02/13 18.53.33 | 000,067,884 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat

[2013/02/13 16.31.51 | 000,378,548 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\VERMAR-CI.pdf

[2013/02/13 09.45.01 | 000,000,697 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\AVG 2013.lnk

[2013/02/12 17.38.21 | 000,099,748 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\PESARE-MENNILLO.pdf

[2013/02/12 10.40.31 | 000,044,925 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\prova1.pdf

[2013/02/11 15.54.09 | 000,153,070 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\Visura.pdf

[2013/02/11 15.48.38 | 000,077,680 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\ELENCO FORNITORI-CLIENTI.pdf

[2013/02/11 15.26.37 | 000,038,410 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Documenti\BILANCIO.pdf

[2013/02/11 09.12.43 | 000,262,905 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\MUAZ04-2012-BANCA.pdf

[2013/02/08 13.03.39 | 000,697,712 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe

[2013/02/08 13.03.39 | 000,074,096 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl

[2013/02/08 13.03.33 | 015,739,760 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerInstaller.exe

[2013/02/07 11.44.16 | 000,053,466 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\documento.zip

[2013/02/07 11.36.47 | 000,014,465 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\VERS-12.pdf

[2013/02/07 10.27.14 | 000,080,902 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\RICEVUTA.pdf

[2013/02/07 10.26.56 | 000,088,117 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\michea.pdf

[2013/02/06 07.22.09 | 000,094,112 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll

[2013/02/06 07.22.07 | 000,262,560 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe

[2013/02/06 07.22.07 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe

[2013/02/06 07.22.07 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe

[2013/02/06 07.22.07 | 000,143,872 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl

[2013/02/06 07.22.06 | 000,861,088 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\npDeployJava1.dll

[2013/02/06 07.22.06 | 000,782,240 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\deployJava1.dll

[2013/02/05 16.04.02 | 000,000,420 | ---- | M] () -- C:\WINDOWS\BRWMARK.INI

[2013/02/05 15.03.27 | 002,490,088 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\image.jpeg

[2013/02/04 11.18.41 | 000,058,071 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\lautoliquida.pdf

[2013/02/01 08.35.49 | 000,000,060 | ---- | M] () -- C:\WINDOWS\wpd99.drv

[2013/01/31 09.57.45 | 000,031,285 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\Ricevuta-2010.pdf

[2013/01/31 09.56.13 | 000,029,176 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\Ricevuta-2011.pdf

[2013/01/31 09.12.28 | 000,000,028 | ---- | M] () -- C:\WINDOWS\pdf995.ini

[2013/01/31 09.11.19 | 001,671,168 | ---- | M] (TODO: <Company name>) -- C:\WINDOWS\System32\pdfmona.dll

[2013/01/31 09.11.19 | 000,036,864 | ---- | M] () -- C:\WINDOWS\System32\pdf995mon.dll

[2013/01/31 08.58.14 | 000,095,442 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\Senza titolo.pdf

[2013/01/31 08.52.33 | 000,025,642 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\ConsumeWS.pdf

[2013/01/30 11.53.21 | 000,232,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MpSigStub.exe

[2013/01/29 17.37.20 | 000,044,394 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\idp=7515.pdf

[2013/01/28 10.55.19 | 000,547,447 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\OEView_en.zip

[2013/01/28 09.02.49 | 000,822,534 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Documenti\RSORNN71C48L219P_DSU.pdf

[2013/01/26 04.55.42 | 000,552,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oleaut32.dll

[2013/01/24 16.05.55 | 000,062,165 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Documenti\parcella n..pdf

[2013/01/23 16.47.47 | 000,255,878 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\SISATU-BIL12.pdf

[2013/01/22 11.49.36 | 000,557,933 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\pec.pdf

[2013/01/22 11.45.13 | 000,623,737 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\Modulo di Login.pdf

[2013/01/22 11.43.23 | 000,533,442 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\- WebMail PEC -.pdf

[2013/01/22 10.39.06 | 000,013,753 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Documenti\Rendiconto 2012.pdf

[2013/01/22 09.34.50 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Adobe Acrobat 9 Pro Extended.lnk

[2013/01/21 15.45.33 | 000,242,802 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Documenti\Senzanome.pdf

[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[2 C:\*.tmp files -> C:\*.tmp -> ]

[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/02/19 12.53.00 | 095,023,320 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\56244191.pad

[2013/02/19 12.52.47 | 000,096,256 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\19144265.exe

[2013/02/19 08.17.34 | 000,459,761 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\estratto-sicuro-di-te-in-60-giorni.pdf

[2013/02/18 17.59.08 | 000,006,508 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\LIQ.pdf

[2013/02/18 17.57.22 | 000,012,311 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\BONAF1.pdf

[2013/02/18 16.21.17 | 000,080,570 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\2012-UNIPF-2011.pdf

[2013/02/18 11.59.35 | 000,228,538 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\MailUp_Ebook_01-Le_tue_email_arrivano_nella_casella_giusta[1].pdf

[2013/02/18 11.14.44 | 000,009,572 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\PROVA.pdf

[2013/02/18 11.10.37 | 1463,810,048 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\Argo.2012.iTALiAN.MD.R6.XviD-BmA.avi

[2013/02/18 08.29.35 | 000,015,416 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Impostazioni locali\Dati applicazioni\recently-used.xbel

[2013/02/15 14.55.09 | 000,018,169 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\CALGIO-INPS.pdf

[2013/02/14 17.20.52 | 000,370,203 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\F24.pdf

[2013/02/12 17.38.21 | 000,099,748 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\PESARE-MENNILLO.pdf

[2013/02/11 15.54.09 | 000,153,070 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\Visura.pdf

[2013/02/11 15.48.38 | 000,077,680 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\ELENCO FORNITORI-CLIENTI.pdf

[2013/02/11 15.26.37 | 000,038,410 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Documenti\BILANCIO.pdf

[2013/02/11 10.24.38 | 000,044,925 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\prova1.pdf

[2013/02/11 09.12.43 | 000,262,905 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\MUAZ04-2012-BANCA.pdf

[2013/02/07 11.44.15 | 000,053,466 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\documento.zip

[2013/02/07 11.36.47 | 000,014,465 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\VERS-12.pdf

[2013/02/07 10.26.56 | 000,088,117 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\michea.pdf

[2013/02/07 10.13.09 | 000,080,902 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\RICEVUTA.pdf

[2013/02/05 15.03.19 | 002,490,088 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\image.jpeg

[2013/02/04 11.17.52 | 000,058,071 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\lautoliquida.pdf

[2013/01/31 09.56.13 | 000,029,176 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\Ricevuta-2011.pdf

[2013/01/31 09.47.31 | 000,031,285 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\Ricevuta-2010.pdf

[2013/01/31 09.12.28 | 000,000,028 | ---- | C] () -- C:\WINDOWS\pdf995.ini

[2013/01/31 09.11.19 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\pdf995mon.dll

[2013/01/31 09.11.19 | 000,000,060 | ---- | C] () -- C:\WINDOWS\wpd99.drv

[2013/01/31 08.52.33 | 000,025,642 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\ConsumeWS.pdf

[2013/01/31 08.51.48 | 000,095,442 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\Senza titolo.pdf

[2013/01/29 17.37.20 | 000,044,394 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\idp=7515.pdf

[2013/01/28 10.55.18 | 000,547,447 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\OEView_en.zip

[2013/01/28 08.54.21 | 000,822,534 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Documenti\RSORNN71C48L219P_DSU.pdf

[2013/01/24 16.05.55 | 000,062,165 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Documenti\parcella n..pdf

[2013/01/23 16.47.47 | 000,255,878 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\SISATU-BIL12.pdf

[2013/01/22 11.46.03 | 000,557,933 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\pec.pdf

[2013/01/22 11.44.22 | 000,623,737 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\Modulo di Login.pdf

[2013/01/22 11.36.22 | 000,533,442 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\- WebMail PEC -.pdf

[2013/01/22 10.39.06 | 000,013,753 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Documenti\Rendiconto 2012.pdf

[2013/01/22 09.34.50 | 000,001,729 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Adobe Acrobat 9 Pro Extended.lnk

[2013/01/22 09.34.49 | 000,001,920 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Adobe 3D Reviewer.lnk

[2013/01/22 09.34.48 | 000,001,814 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Adobe Acrobat 9 Pro Extended.lnk

[2013/01/22 09.34.47 | 000,001,812 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Acrobat Distiller 9.lnk

[2013/01/21 15.45.33 | 000,242,802 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Documenti\Senzanome.pdf

[2013/01/03 11.19.56 | 006,397,138 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\crlCache

[2013/01/03 11.19.04 | 000,222,850 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\caCertsList

[2013/01/03 11.19.04 | 000,000,447 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\dike.ini

[2013/01/03 10.29.58 | 000,000,185 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\dikeutil.ini

[2012/12/21 11.08.47 | 000,134,144 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Impostazioni locali\Dati applicazioni\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2012/12/20 09.26.02 | 000,000,424 | ---- | C] () -- C:\WINDOWS\ODBC.INI

[2012/12/19 18.52.58 | 000,000,036 | ---- | C] () -- C:\WINDOWS\sispac.ini

[2012/12/19 18.49.00 | 000,155,136 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll

[2012/12/19 18.48.58 | 000,018,944 | ---- | C] ( ) -- C:\WINDOWS\System32\implode.dll

[2012/12/19 16.12.53 | 000,528,384 | ---- | C] () -- C:\WINDOWS\System32 x32.dll

[2012/12/19 16.12.53 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\skeylink.dll

[2012/12/19 16.12.50 | 000,000,466 | ---- | C] () -- C:\WINDOWS\System32\ic32.ini

[2012/12/19 16.12.49 | 000,748,160 | ---- | C] () -- C:\WINDOWS\System32\co2c40en.dll

[2012/12/19 16.12.49 | 000,031,232 | ---- | C] () -- C:\WINDOWS\System32\bcfont32.dll

[2012/12/19 16.11.39 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\wkiconf.dll

[2012/12/19 11.27.24 | 000,000,420 | ---- | C] () -- C:\WINDOWS\BRWMARK.INI

[2012/12/19 09.41.00 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll

[2012/12/19 09.24.49 | 000,004,984 | R--- | C] () -- C:\WINDOWS\System32\drivers\nvphy.bin

[2012/12/19 07.38.53 | 000,000,253 | ---- | C] () -- C:\WINDOWS\Brpfx04a.ini

[2012/12/19 07.38.53 | 000,000,093 | ---- | C] () -- C:\WINDOWS\brpcfx.ini

[2012/12/19 07.38.53 | 000,000,065 | ---- | C] () -- C:\WINDOWS\System32\bd7320.dat

[2012/12/19 07.37.59 | 000,000,009 | ---- | C] () -- C:\WINDOWS\Brfaxrx.ini

[2012/12/19 07.37.57 | 000,106,496 | ---- | C] () -- C:\WINDOWS\System32\BrMuSNMP.dll

[2012/12/19 07.36.01 | 000,031,652 | ---- | C] () -- C:\WINDOWS\maxlink.ini

[2012/12/18 18.22.33 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys

[2012/12/18 18.22.26 | 000,001,769 | ---- | C] () -- C:\WINDOWS\Language_trs.ini

[2012/12/18 18.22.25 | 000,049,152 | R--- | C] () -- C:\WINDOWS\DAOD.exe

[2012/12/18 18.22.20 | 000,025,937 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini

[2012/12/18 18.22.20 | 000,010,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS

[2012/12/18 17.54.05 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI

[2012/12/18 17.53.00 | 000,302,824 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT

[2012/12/18 17.43.30 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin

[2012/12/18 17.37.00 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll

[2012/12/18 17.33.47 | 000,593,920 | ---- | C] () -- C:\WINDOWS\System32\ati2sgag.exe

[2012/12/18 17.33.39 | 000,887,724 | R--- | C] () -- C:\WINDOWS\System32\ativva6x.dat

[2012/12/18 17.33.36 | 003,107,788 | R--- | C] () -- C:\WINDOWS\System32\ativva5x.dat

[2012/12/18 17.33.34 | 003,107,788 | R--- | C] () -- C:\WINDOWS\System32\ativvaxx.dat

[2012/12/18 17.33.34 | 000,168,883 | R--- | C] () -- C:\WINDOWS\System32\atiicdxx.dat

[2012/12/18 17.07.16 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat

[2012/12/18 17.02.45 | 000,021,840 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat

[2012/07/19 07.50.11 | 000,176,480 | ---- | C] () -- C:\Documents and Settings\LocalService\Impostazioni locali\Dati applicazioni\FontCache3.0.0.0.dat

[2011/05/12 16.57.38 | 000,148,195 | ---- | C] () -- C:\Programmi\File comuni\BookViewer.xap

========== ZeroAccess Check ==========

[2012/12/18 17.35.33 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

"" = %SystemRoot%\system32\shdocvw.dll -- [2012/10/31 12.33.16 | 001,510,912 | ---- | M] (Microsoft Corporation)

"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]

"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/02/09 11.51.43 | 000,473,600 | ---- | M] (Microsoft Corporation)

"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

"" = %systemroot%\system32\wbem\wbemess.dll -- [2008/04/14 13.00.00 | 000,273,920 | ---- | M] (Microsoft Corporation)

"ThreadingModel" = Both

========== LOP Check ==========

[2013/01/23 07.44.01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\AVG January 2013 Campaign

[2012/12/19 11.59.23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\AVG2013

[2012/12/19 10.32.59 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Common Files

[2012/12/19 11.07.51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Connectify

[2012/12/20 10.17.44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\DAEMON Tools Lite

[2013/02/19 17.58.31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\MFAData

[2013/02/01 08.35.53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\pdf995

[2012/12/19 11.43.37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\regid.1986-12.com.adobe

[2012/12/19 07.36.00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\ScanSoft

[2012/12/27 11.20.36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\SweetIM

[2012/12/20 10.09.52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\TuneUp Software

[2012/12/20 10.09.11 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}

[2012/12/19 10.40.48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\AVG2013

[2012/12/19 18.48.39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\CyberInstaller Studio 2011

[2012/12/20 10.17.44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\DAEMON Tools Lite

[2013/01/25 11.01.09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\ntr

[2012/12/20 10.07.54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\OpenCandy

[2012/12/20 08.57.09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\OpenOffice.org

[2013/01/31 09.12.28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\pdf995

[2012/12/19 11.57.18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\PriceGong

[2012/12/19 16.05.48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\ScanSoft

[2013/02/19 13.37.46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\TeamViewer

[2012/12/20 10.09.35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\TuneUp Software

[2013/02/13 12.57.17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\uTorrent

[2013/01/07 12.53.25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\WinZip

========== Purity Check ==========

========== Custom Scans ==========

< %SYSTEMDRIVE%\*.* >

[2008/04/14 13.00.00 | 000,261,328 | R--- | M] () -- C:\$LDR$

[2009/11/25 17.14.06 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT

[2012/12/18 10.28.31 | 000,000,213 | -HS- | M] () -- C:\BOOT.BAK

[2013/02/20 08.19.10 | 000,000,242 | RHS- | M] () -- C:\boot.ini

[2008/04/14 13.00.00 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin

[2012/12/18 09.45.13 | 000,000,016 | ---- | M] () -- C:\chdir.bat

[2009/11/25 17.14.06 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS

[2011/10/05 09.03.12 | 000,015,737 | ---- | M] () -- C:\Contratti_di_Locazione_-_Pagamenti_successivi_alla_registrazione_vers._4.4.0_InstallLog.log

[2012/01/12 09.29.00 | 000,015,964 | ---- | M] () -- C:\Contratti_di_Locazione_-_Pagamenti_successivi_alla_registrazione_vers._4.4.1_InstallLog.log

[2013/01/16 16.57.00 | 000,013,317 | ---- | M] () -- C:\Contratti_di_Locazione_-_Pagamenti_successivi_alla_registrazione_vers._4.4.2_InstallLog.log

[2011/10/05 09.02.46 | 000,045,217 | ---- | M] () -- C:\Contratti_di_Locazione_vers._9.5.0_InstallLog.log

[2012/04/24 08.32.54 | 000,046,030 | ---- | M] () -- C:\Contratti_di_Locazione_vers._9.5.1_InstallLog.log

[2013/01/16 16.56.38 | 000,027,990 | ---- | M] () -- C:\Contratti_di_Locazione_vers._9.5.2_InstallLog.log

[2013/01/28 12.32.44 | 000,000,000 | ---- | M] () -- C:\ctapi_out_gr.txt

[2010/07/07 11.28.28 | 000,000,207 | ---- | M] () -- C:\DelIndex.bat

[2012/12/27 11.11.25 | 000,000,000 | ---- | M] () -- C:\extensions.sqlite

[2009/11/25 17.14.06 | 000,000,000 | RHS- | M] () -- C:\IO.SYS

[2010/07/12 12.24.08 | 000,152,282 | ---- | M] () -- C:\ModuliControlloStudi2010_InstallLog.log

[2011/09/27 13.26.46 | 002,123,797 | ---- | M] () -- C:\ModuliControlloStudi2011_InstallLog.log

[2012/07/19 08.34.07 | 000,010,455 | ---- | M] () -- C:\ModuliControlloStudi2012_InstallLog.log

[2009/11/25 17.14.06 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS

[2008/04/14 13.00.00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM

[2008/04/14 13.00.00 | 000,251,600 | RHS- | M] () -- C:\ntldr

[2013/02/20 08.18.19 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys

[2010/10/25 13.38.16 | 000,013,030 | ---- | M] () -- C:\PDOXUSRS.NET

[2009/12/01 10.05.44 | 000,000,055 | ---- | M] () -- C:\sis2002.bat

[2009/12/01 10.05.44 | 000,000,055 | ---- | M] () -- C:\sis2003.bat

[2009/12/01 10.05.45 | 000,000,055 | ---- | M] () -- C:\sis2004.bat

[2009/12/01 10.05.45 | 000,000,055 | ---- | M] () -- C:\sis2005.bat

[2009/12/01 10.05.45 | 000,000,055 | ---- | M] () -- C:\sis2006.bat

[2009/12/01 10.05.45 | 000,000,055 | ---- | M] () -- C:\sis2007.bat

[2009/12/01 10.05.46 | 000,000,055 | ---- | M] () -- C:\sis2008.bat

[2010/02/15 10.16.37 | 000,000,055 | ---- | M] () -- C:\sis2009.bat

[2009/12/01 09.30.24 | 000,000,042 | ---- | M] () -- C:\sispac.bat

[2011/06/15 10.10.03 | 000,000,493 | ---- | M] () -- C:\Tol2009.ini

[2011/06/15 10.15.07 | 000,001,159 | ---- | M] () -- C:\Tol2010.ini

[2011/06/15 10.08.54 | 000,007,385 | ---- | M] () -- C:\Tol2011.ini

[2011/06/15 10.21.30 | 000,006,312 | ---- | M] () -- C:\TolGestionali.Ini

[2008/04/14 13.00.00 | 000,475,370 | R--- | M] () -- C: xtsetup.sif

[2009/11/26 10.24.50 | 027,262,976 | ---- | M] () -- C:\VIRTPART.DAT

[2 C:\*.tmp files -> C:\*.tmp -> ]

< %systemroot%\Fonts\*.com >

< %systemroot%\Fonts\*.dll >

< %systemroot%\Fonts\*.ini >

[2012/12/18 17.05.05 | 000,000,067 | -HS- | M] () -- C:\WINDOWS\Fonts\desktop.ini

< %systemroot%\Fonts\*.ini2 >

< %systemroot%\Fonts\*.exe >

< %systemroot%\system32\spool\prtprocs\w32x86\*.* >

[2008/07/06 13.06.10 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll

[2006/10/26 19.56.12 | 000,033,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\msonpppr.dll

[2008/07/06 11.50.03 | 000,597,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\printfilterpipelinesvc.exe

< %systemroot%\REPAIR\*.bak1 >

< %systemroot%\REPAIR\*.ini >

< %systemroot%\system32\*.jpg >

< %systemroot%\*.jpg >

< %systemroot%\*.png >

< %systemroot%\*.scr >

< %systemroot%\*._sy >

< %APPDATA%\Adobe\Update\*.* >

< %ALLUSERSPROFILE%\Favorites\*.* >

< %APPDATA%\Microsoft\*.* >

< %PROGRAMFILES%\*.* >

< %APPDATA%\Update\*.* >

< %systemroot%\*. /mp /s >

< %systemroot%\System32\config\*.sav >

[2012/12/18 17.51.38 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav

[2012/12/18 17.51.38 | 001,093,632 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav

[2012/12/18 17.51.38 | 000,479,232 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav

< %PROGRAMFILES%\bak. /s >

< %systemroot%\system32\bak. /s >

< %ALLUSERSPROFILE%\Start Menu\*.lnk /x >

< %systemroot%\system32\config\systemprofile\*.dat /x >

< %systemroot%\*.config >

< %systemroot%\system32\*.db >

< %PROGRAMFILES%\Internet Explorer\*.dat >

< %APPDATA%\Microsoft\Internet Explorer\Quick Launch\*.lnk /x >

[2012/12/18 17.09.57 | 000,000,123 | -HS- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\Microsoft\Internet Explorer\Quick Launch\desktop.ini

[2012/12/18 17.09.56 | 000,000,079 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\Microsoft\Internet Explorer\Quick Launch\Mostra Desktop.scf

< %USERPROFILE%\Desktop\*.exe >

< %PROGRAMFILES%\Common Files\*.* >

< %systemroot%\*.src >

< %systemroot%\install\*.* >

< %systemroot%\system32\DLL\*.* >

< %systemroot%\system32\HelpFiles\*.* >

< %systemroot%\system32\rundll\*.* >

< %systemroot%\winn32\*.* >

< %systemroot%\Java\*.* >

< %systemroot%\system32 est\*.* >

< %systemroot%\system32\Rundll32\*.* >

< %systemroot%\AppPatch\Custom\*.* >

< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2013-02-13 17:59:25

< End of report >

Condividi questo messaggio


Link di questo messaggio
Condividi su altri siti

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software

Run date: 2013-02-20 10:56:57

-----------------------------

10:56:57.890 OS Version: Windows 5.1.2600 Service Pack 3

10:56:57.890 Number of processors: 4 586 0x402

10:56:57.890 ComputerName: STUDIO-8BAE2A6B UserName: Luigi

10:56:59.406 Initialize success

10:57:36.015 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-6

10:57:36.015 Disk 0 Vendor: STM3500418AS CC38 Size: 476940MB BusType: 3

10:57:36.015 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP2T1L0-e

10:57:36.015 Disk 1 Vendor: STM3500418AS CC38 Size: 476940MB BusType: 3

10:57:36.031 Disk 2 \Device\Harddisk2\DR2 -> \Device\Ide\IdeDeviceP3T0L0-1a

10:57:36.031 Disk 2 Vendor: STM3500418AS CC38 Size: 476940MB BusType: 3

10:57:36.046 Disk 0 MBR read successfully

10:57:36.046 Disk 0 MBR scan

10:57:36.046 Disk 0 Windows XP default MBR code

10:57:36.062 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 99998 MB offset 63

10:57:36.062 Disk 0 Partition - 00 0F Extended LBA 376931 MB offset 204796620

10:57:36.078 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 199996 MB offset 204796683

10:57:36.078 Disk 0 Partition - 00 05 Extended 176934 MB offset 614389860

10:57:36.093 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 176934 MB offset 614389923

10:57:36.109 Disk 0 scanning sectors +976752000

10:57:36.265 Disk 0 scanning C:\WINDOWS\system32\drivers

10:57:42.968 Service scanning

10:58:00.125 Modules scanning

10:58:05.531 Disk 0 trace - called modules:

10:58:05.593 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys

10:58:05.671 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x89b07ab8]

10:58:05.750 3 CLASSPNP.SYS[f7637fd7] -> nt!IofCallDriver -> \Device\0000006f[0x89b3b9e8]

10:58:05.812 5 ACPI.sys[f75ae620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-6[0x89b3bd98]

10:58:05.890 Scan finished successfully

10:58:25.234 Disk 0 MBR has been saved successfully to "J:\MBR.dat"

10:58:25.265 The log file has been saved successfully to "J:\aswMBR.txt"

MBR.zip

Condividi questo messaggio


Link di questo messaggio
Condividi su altri siti

Ciao gigio

Leggere attentamente queste istruzioni per familiarizare con questo strumento

Fare riferimento a Questa Guida

Scarica ComboFix da una delle seguenti posizioni:

Link 1

Link 2

* IMPORTANTE-Salva ComboFix.exe sul Desktop

================================================== ==

disattivare antivirus e antispyware , in quanto interferiscono con gli strumenti di rimozione.

Se non siete sicuri su come effettuare questa operazione, fare riferimento al nostro argomento: disabilitare le applicazioni di sicurezza

================================================== ==

Fare doppio clic su ComboFix.exe e seguire le istruzioni.

  • Come parte del suo processo, ComboFix verifica se il ripristino di Microsoft Windows Console è installato. Con infezioni da malware che sono come lo sono oggi, è fortemente raccomandato avere questo pre-installato sul computer prima di eseguire qualsiasi rimozione di malware. Essa vi permetterà di avviare in uno speciale recupero / riparazione modalità che ci permetterà di aiutarvi più facilmente con il vostro computer se dovesse avere un problema dopo un tentativo di rimozione di malware.
  • Seguire le istruzioni per consentire a ComboFix di scaricare e installare la Console di ripristino di Microsoft Windows, e, quando richiesto, accetta la -User License Agreement per installare la Recovery Console di Microsoft Windows.

** Si prega di notare:. Se la Console di ripristino di Microsoft Windows è già installato, ComboFix continuerà le sue procedure di rimozione di malware

RC_update.png

Una volta che il ripristino di Microsoft Windows Console viene installato utilizzando ComboFix, si dovrebbe vedere il seguente messaggio:

cfRC_screen_2.png

Fare clic su Sì, per continuare la scansione alla ricerca di malware.

Al termine, si deve produrre un registro per voi. Si prega di includere il C:\ComboFix.txt nella risposta successiva per un'ulteriore revisione.

Condividi questo messaggio


Link di questo messaggio
Condividi su altri siti

Crea un account o accedi per lasciare un commento

Devi essere un utente registrato per partecipare

Crea un account

Iscriviti per un nuovo account nella nostra community. È facile!


Registra un nuovo account

Accedi

Sei già registrato? Accedi qui.


Accedi Ora
Accedi per seguire   
Seguaci 0