Aiuto PC


(RISOLTO) Pc connesso ma non naviga

« Older   Newer »
 
  Share  
.
  1. Judgement1991
    Posted on 5/7/2013, 22:38 by: Judgement1991
     
    .

    Aiutante

    Group
    Member
    Posts
    518

    Status
    Offline
    Ho disinstallato tutti e due questo è il log

    SPOILER (clicca per visualizzare)
    Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 29-06-2013 01 (ATTENTION: FRST version is 6 days old)
    Ran by seven (administrator) on 05-07-2013 23:33:02
    Running from E:\
    Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: Italian Standard
    Internet Explorer Version 9
    Boot Mode: Normal

    ==================== Processes (Whitelisted) ===================

    (AMD) C:\Windows\system32\atiesrxx.exe
    (AMD) C:\Windows\system32\atieclxx.exe
    (SANDBOXIE L.T.D) C:\Program Files\Sandboxie\SbieSvc.exe
    (BlueStack Systems, Inc.) C:\Program Files\BlueStacks\HD-LogRotatorService.exe
    (Nitro PDF Software) C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe
    (TuneUp Software) C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe
    (The Eraser Project) C:\Program Files\Eraser\Eraser.exe
    (Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
    (Adobe Systems Incorporated) C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe
    (BlueStack Systems, Inc.) C:\Program Files\BlueStacks\HD-Service.exe
    (TuneUp Software) C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesApp32.exe
    (BlueStack Systems, Inc.) C:\Program Files\BlueStacks\HD-Network.exe
    (BlueStack Systems, Inc.) C:\Program Files\BlueStacks\HD-BlockDevice.exe
    (BlueStack Systems, Inc.) C:\Program Files\BlueStacks\HD-FileSystem.exe

    ==================== Registry (Whitelisted) ==================

    HKLM\...\Run: [Eraser] "C:\PROGRA~1\Eraser\Eraser.exe" --atRestart [980920 2012-05-22] (The Eraser Project)
    HKLM\...\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" [253816 2013-03-12] (Oracle Corporation)
    HKLM\...\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [37296 2012-01-03] (Adobe Systems Incorporated)
    HKLM\...\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [843712 2012-01-02] (Adobe Systems Incorporated)
    HKLM\...D6A79037F57F\InprocServer32: [Default-fastprox] ATTENTION! ====> ZeroAccess
    MountPoints2: {f02d9529-dea1-11e2-89e3-806e6f6e6963} - E:\LaunchU3.exe -a
    Startup: C:\Users\seven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk
    ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)

    ==================== Internet (Whitelisted) ====================

    HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://org.sexgamesbox.com/
    HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://it.msn.com/?ocid=iehp
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    SearchScopes: HKCU - {7DA81A60-7CFF-4FD8-8CA8-F993F73AD382} URL = www.ant.com/search?s=browser&q={searchTerms}
    BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
    BHO: Ant.com browser helper (video detector) - {346FDE31-DFF9-418A-90C8-BA31DC9FF2EF} - C:\Program Files\Ant.com\IE add-on\Download.dll (Ant.com)
    BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
    BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
    Toolbar: HKLM - Ant.com Video Downloader toolbar - {2E924F4F-67F0-4BD8-9560-49F468E843D2} - C:\Program Files\Ant.com\IE add-on\AntToolbar.dll (Ant.com)
    DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab

    FireFox:
    ========
    FF ProfilePath: C:\Users\seven\AppData\Roaming\Mozilla\Firefox\Profiles\sf5cy3j1.default
    FF Homepage: www.google.it
    FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
    FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
    FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
    FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
    FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
    FF Plugin: @microsoft.com/GENUINE - disabled No File
    FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
    FF Plugin: @nitropdf.com/NitroPDF - C:\Program Files\Nitro\Reader 3\npnitromozilla.dll (Nitro PDF)
    FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
    FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
    FF Plugin: @videolan.org/vlc,version=2.0.4 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
    FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
    FF Extension: Ant Video Downloader - C:\Users\seven\AppData\Roaming\Mozilla\Firefox\Profiles\sf5cy3j1.default\Extensions\[email protected]
    FF Extension: No Name - C:\Users\seven\AppData\Roaming\Mozilla\Firefox\Profiles\sf5cy3j1.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
    FF Extension: DownloadHelper - C:\Users\seven\AppData\Roaming\Mozilla\Firefox\Profiles\sf5cy3j1.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
    FF Extension: artur.dubovoy - C:\Users\seven\AppData\Roaming\Mozilla\Firefox\Profiles\sf5cy3j1.default\Extensions\[email protected]
    FF Extension: support - C:\Users\seven\AppData\Roaming\Mozilla\Firefox\Profiles\sf5cy3j1.default\Extensions\[email protected]
    FF Extension: No Name - C:\Users\seven\AppData\Roaming\Mozilla\Firefox\Profiles\sf5cy3j1.default\Extensions\{c50ca3c4-5656-43c2-a061-13e717f73fc8}.xpi

    Chrome:
    =======
    CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
    CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
    CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\27.0.1453.110\PepperFlash\pepflashplayer.dll ()
    CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
    CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\27.0.1453.110\ppGoogleNaClPluginChrome.dll ()
    CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\27.0.1453.110\pdf.dll ()
    CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
    CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File
    CHR Plugin: (Java(TM) Platform SE 7 U9) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
    CHR Plugin: (Nitro PDF plugin for Firefox and Chrome) - C:\Program Files\Nitro\Reader 3\npnitromozilla.dll (Nitro PDF)
    CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
    CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_4_402_287.dll No File
    CHR Plugin: (Java Deployment Toolkit 7.0.90.5) - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
    CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
    CHR Extension: (ABA English - Corso d'inglese Online Gratis) - C:\Users\seven\AppData\Local\Google\Chrome\User Data\Default\Extensions\afijefmpindeebpimdceopnjegfgfhob\2_0
    CHR Extension: (Google Drive) - C:\Users\seven\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
    CHR Extension: (YouTube) - C:\Users\seven\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
    CHR Extension: (Google Search) - C:\Users\seven\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
    CHR Extension: (Vimeo\u2122 Download Videos) - C:\Users\seven\AppData\Local\Google\Chrome\User Data\Default\Extensions\geeljcibkkackafmeepgadbfgmpjmdeg\2.9.1_0
    CHR Extension: (Gmail) - C:\Users\seven\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0

    ========================== Services (Whitelisted) =================

    R2 BstHdAndroidSvc; C:\Program Files\BlueStacks\HD-Service.exe [397176 2012-08-21] (BlueStack Systems, Inc.)
    R2 BstHdLogRotatorSvc; C:\Program Files\BlueStacks\HD-LogRotatorService.exe [384888 2012-08-21] (BlueStack Systems, Inc.)
    R2 NitroReaderDriverReadSpool3; C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe [196624 2012-10-30] (Nitro PDF Software)
    R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [85776 2012-08-25] (SANDBOXIE L.T.D)
    R2 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe [1479488 2011-11-07] (TuneUp Software)
    S3 WefiEngSvc; C:\Program Files\WeFi\WefiEngSvc.exe [120152 2010-11-03] (WeFi)

    ==================== Drivers (Whitelisted) ====================

    R2 BstHdDrv; C:\Program Files\BlueStacks\HD-Hypervisor-x86.sys [66424 2012-08-21] (BlueStack Systems)
    R3 MTsensor; C:\Windows\System32\DRIVERS\ATKACPI.sys [7680 2007-07-31] (ATK0100)
    R2 npf; C:\Windows\System32\drivers\npf.sys [35088 2010-06-25] (CACE Technologies, Inc.)
    R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [157776 2012-08-25] (SANDBOXIE L.T.D)
    R3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys [10064 2011-10-31] (TuneUp Software)
    S1 MpKslb4c4e980; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BDBB9857-0ABB-4D00-8709-FE9D8300ADE0}\MpKslb4c4e980.sys [x]
    S1 MpKslea8943f1; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BDBB9857-0ABB-4D00-8709-FE9D8300ADE0}\MpKslea8943f1.sys [x]
    S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [x]

    ==================== NetSvcs (Whitelisted) ===================


    ==================== One Month Created Files and Folders ========

    2013-07-05 23:22 - 2013-07-05 23:22 - 00001892 ____A C:\FixitRegBackup.reg
    2013-07-05 19:51 - 2013-07-05 19:51 - 00000000 ____D C:\Program Files\VS Revo Group
    2013-07-04 23:58 - 2013-07-05 23:30 - 00001266 ____A C:\Windows\PFRO.log
    2013-07-04 23:58 - 2013-07-05 23:30 - 00000336 ____A C:\Windows\setupact.log
    2013-07-04 23:58 - 2013-07-04 23:58 - 00000000 ____A C:\Windows\setuperr.log
    2013-07-04 23:10 - 2013-07-04 23:10 - 00000925 ____A C:\Users\Public\Desktop\CCleaner.lnk
    2013-07-04 23:10 - 2013-07-04 23:10 - 00000000 ____D C:\Program Files\CCleaner
    2013-07-04 23:07 - 2013-07-04 23:07 - 00001065 ____A C:\Users\Public\Desktop\Mozilla Firefox.lnk
    2013-07-04 23:07 - 2013-07-04 23:07 - 00000000 ____D C:\Program Files\Mozilla Firefox
    2013-07-04 22:56 - 2013-07-04 22:56 - 00001944 ____A C:\Users\Public\Desktop\Adobe Reader 9.lnk
    2013-07-04 22:42 - 2013-07-04 22:42 - 00263592 ____A (Oracle Corporation) C:\Windows\System32\javaws.exe
    2013-07-04 22:42 - 2013-07-04 22:42 - 00175016 ____A (Oracle Corporation) C:\Windows\System32\javaw.exe
    2013-07-04 22:42 - 2013-07-04 22:42 - 00175016 ____A (Oracle Corporation) C:\Windows\System32\java.exe
    2013-07-04 22:42 - 2013-07-04 22:42 - 00094632 ____A (Oracle Corporation) C:\Windows\System32\WindowsAccessBridge.dll
    2013-07-04 22:42 - 2013-07-04 22:42 - 00000000 ____D C:\Program Files\Common Files\Java
    2013-07-04 22:41 - 2013-07-04 22:41 - 00000000 ____D C:\Windows\System32\appmgmt
    2013-07-02 23:35 - 2013-07-05 19:53 - 00000000 ____D C:\Program Files\SexGamesBox
    2013-07-02 21:24 - 2013-07-02 21:24 - 00002131 ____A C:\Users\Public\Desktop\TuneUp Manutenzione in 1 clic.lnk
    2013-07-02 21:24 - 2013-07-02 21:24 - 00002087 ____A C:\Users\Public\Desktop\TuneUp Utilities 2012.lnk
    2013-07-02 21:24 - 2011-11-07 10:38 - 00031552 ____A (TuneUp Software) C:\Windows\System32\TURegOpt.exe
    2013-07-02 21:24 - 2011-11-07 10:38 - 00021312 ____A (TuneUp Software) C:\Windows\System32\authuitu.dll
    2013-07-02 21:23 - 2013-07-02 21:24 - 00000000 ____D C:\Program Files\TuneUp Utilities 2012
    2013-07-02 21:23 - 2013-07-02 21:23 - 00000000 ____D C:\Users\seven\AppData\Roaming\TuneUp Software
    2013-07-02 21:22 - 2013-07-02 21:24 - 00000000 ____D C:\ProgramData\TuneUp Software
    2013-07-02 21:22 - 2013-07-02 21:22 - 00000000 __SHD C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
    2013-07-02 20:06 - 2013-07-02 20:06 - 00000000 ____D C:\Windows\System32\config\HiveBackup
    2013-06-30 23:27 - 2013-06-30 23:27 - 00000000 ____D C:\FRST
    2013-06-27 17:33 - 2013-06-27 17:33 - 00000000 __SHD C:\found.000
    2013-06-26 23:28 - 2013-06-26 23:28 - 00000000 ____A C:\asdsetup.exe
    2013-06-26 23:18 - 2013-06-26 23:19 - 00000000 ___AD C:\.Trash-0
    2013-06-26 21:54 - 2013-06-26 23:01 - 00000000 ____D C:\Windows\pss
    2013-06-26 21:05 - 2013-06-26 21:05 - 43253760 ____A C:\Windows\System32\config\software.bhv
    2013-06-26 21:05 - 2013-06-26 21:05 - 24379392 ____A C:\Windows\System32\config\system.bhv
    2013-06-26 21:05 - 2013-06-26 21:05 - 00524288 ____A C:\Windows\System32\config\default.bhv
    2013-06-26 21:05 - 2013-06-26 21:05 - 00262144 ____A C:\Windows\System32\config\security.bhv
    2013-06-26 21:05 - 2013-06-26 21:05 - 00262144 ____A C:\Windows\System32\config\sam.bhv
    2013-06-26 21:05 - 2013-06-26 21:05 - 00000000 ___AD C:\$Anvi Rescue Disk$
    2013-06-26 18:37 - 2013-06-26 18:41 - 38001894 ____A C:\Users\seven\Downloads\Come navigare nel Deep Web.mp4
    2013-06-26 17:55 - 2013-06-26 23:02 - 00000000 ____D C:\Users\seven\AppData\Roaming\GetRight
    2013-06-26 17:55 - 2013-06-26 23:02 - 00000000 ____D C:\Program Files\GetRight
    2013-06-21 03:09 - 2013-06-21 03:09 - 00000000 ____D C:\Users\seven\Downloads\Miei salvataggi
    2013-06-19 23:16 - 2013-06-19 23:46 - 192163640 ____A C:\Users\seven\Downloads\Documentario su Parigi.mp4
    2013-06-19 02:04 - 2013-06-19 02:04 - 00000000 ____D C:\Users\seven\Documents\The Prince of Codes
    2013-06-18 17:25 - 2013-06-21 00:59 - 00000000 __SHD C:\Windows\System32\AI_RecycleBin
    2013-06-18 17:19 - 2013-06-19 02:17 - 00000000 ____D C:\Program Files\PutLockerDownloader.com
    2013-06-18 13:44 - 2013-06-18 13:44 - 00000000 ____D C:\Users\seven\Downloads\Vari Testi
    2013-06-18 13:38 - 2013-06-19 01:05 - 00000000 ____D C:\Users\seven\Downloads\Video
    2013-06-16 13:57 - 2013-06-16 14:29 - 00000000 ____D C:\Users\Public\Documents\STALKER-STCS
    2013-06-16 13:49 - 2013-06-16 13:49 - 00000000 ____D C:\Program Files\Deep Silver
    2013-06-15 00:42 - 2013-06-15 00:42 - 00000000 ____D C:\Users\seven\AppData\Roaming\AbaEnglishRt.19ECF44F1B9DAF7C7A64FDC21A008AB0C5135E2F.1
    2013-06-15 00:37 - 2013-06-15 00:37 - 00000513 ____A C:\Users\seven\Desktop\ABA English Course.lnk
    2013-06-15 00:35 - 2013-06-15 00:42 - 00000000 ____D C:\EnglishCourse
    2013-06-15 00:35 - 2013-06-15 00:35 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
    2013-06-15 00:35 - 2013-06-15 00:35 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
    2013-06-15 00:35 - 2013-06-15 00:35 - 00000000 ____D C:\Program Files\Common Files\Adobe AIR
    2013-06-14 23:57 - 2013-05-17 01:08 - 12329984 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
    2013-06-14 23:57 - 2013-05-17 00:49 - 09738752 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
    2013-06-14 23:57 - 2013-05-17 00:39 - 01800704 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
    2013-06-14 23:57 - 2013-05-17 00:28 - 01129472 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
    2013-06-14 23:57 - 2013-05-17 00:28 - 01104384 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
    2013-06-14 23:57 - 2013-05-17 00:27 - 01427968 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
    2013-06-14 23:57 - 2013-05-17 00:26 - 00231936 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
    2013-06-14 23:57 - 2013-05-17 00:23 - 00065024 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
    2013-06-14 23:57 - 2013-05-17 00:21 - 00717824 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
    2013-06-14 23:57 - 2013-05-17 00:21 - 00142848 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
    2013-06-14 23:57 - 2013-05-17 00:20 - 00420864 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
    2013-06-14 23:57 - 2013-05-17 00:19 - 00607744 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
    2013-06-14 23:57 - 2013-05-17 00:17 - 01796096 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
    2013-06-14 23:57 - 2013-05-17 00:17 - 00073216 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
    2013-06-14 23:57 - 2013-05-17 00:16 - 02382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
    2013-06-14 23:57 - 2013-05-17 00:12 - 00176640 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
    2013-06-14 23:11 - 2013-06-14 23:12 - 00161944 ____A C:\Users\seven\Downloads\corso-di-inglese-abaenglish-windows-downloader.exe
    2013-06-14 20:43 - 2013-05-13 06:45 - 01160192 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll
    2013-06-14 20:43 - 2013-05-13 06:45 - 00140288 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
    2013-06-14 20:43 - 2013-05-13 06:45 - 00103936 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll
    2013-06-14 20:43 - 2013-05-13 05:08 - 00903168 ____A (Microsoft Corporation) C:\Windows\System32\certutil.exe
    2013-06-14 20:43 - 2013-05-13 05:08 - 00043008 ____A (Microsoft Corporation) C:\Windows\System32\certenc.dll
    2013-06-14 20:43 - 2013-05-10 05:20 - 00024576 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll
    2013-06-14 20:43 - 2013-05-08 07:38 - 01293672 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
    2013-06-14 20:43 - 2013-05-06 07:06 - 03968872 ____A (Microsoft Corporation) C:\Windows\System32\ntkrnlpa.exe
    2013-06-14 20:43 - 2013-05-06 07:06 - 03913576 ____A (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
    2013-06-14 20:43 - 2013-04-26 06:55 - 00492544 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll
    2013-06-13 00:54 - 2013-06-26 23:10 - 00000000 ____D C:\Users\seven\Downloads\Da copiare nella chiavetta
    2013-06-11 20:05 - 2013-07-02 20:38 - 00000000 ____D C:\Program Files\Steam
    2013-06-11 20:05 - 2013-06-15 00:16 - 00000000 ____D C:\Program Files\Common Files\Steam
    2013-06-11 19:56 - 2013-06-11 19:58 - 01669632 ____A C:\Users\seven\Downloads\SteamInstall.msi
    2013-06-07 19:04 - 2013-06-07 19:04 - 00000000 ____D C:\Users\seven\Documents\VSO Downloader
    2013-06-07 19:03 - 2013-06-07 19:03 - 00000000 ____D C:\Users\seven\AppData\Roaming\KastorFreeVideoCatcher
    2013-06-07 19:03 - 2013-06-07 19:03 - 00000000 ____D C:\ProgramData\VSO
    2013-06-07 19:03 - 2013-06-07 19:03 - 00000000 ____D C:\Program Files\VSO
    2013-06-07 19:03 - 2013-06-07 19:03 - 00000000 ____D C:\Program Files\Kastor Free Video Catcher
    2013-06-07 19:03 - 2008-09-24 20:33 - 00484352 ____A C:\Windows\System32\lame_enc.dll
    2013-06-07 19:02 - 2013-06-26 23:10 - 00000000 ____D C:\Users\seven\AppData\Roaming\KastorAllVideoDownloader
    2013-06-07 19:02 - 2013-06-07 19:02 - 00000000 ____D C:\Program Files\Kastor All Video Downloader
    2013-06-07 19:01 - 2013-06-07 19:07 - 00000000 ____D C:\Program Files\TubeMaster++
    2013-06-05 15:36 - 2013-06-05 20:02 - 00000000 ____D C:\Users\seven\Documents\SpellForce
    2013-06-05 15:32 - 2013-06-05 15:32 - 00000926 ____A C:\Users\seven\Desktop\GameSpy Arcade.lnk
    2013-06-05 15:32 - 2013-06-05 15:32 - 00000000 ____D C:\Program Files\GameSpy Arcade
    2013-06-05 15:32 - 2013-06-05 15:32 - 00000000 ____D C:\Program Files\AWS
    2013-06-05 15:31 - 2013-06-05 15:31 - 00001124 ____A C:\Users\seven\Desktop\SpellForce - The Order of Dawn.lnk
    2013-06-05 15:25 - 2013-06-05 15:25 - 00000000 ____D C:\Program Files\JoWooD

    ==================== One Month Modified Files and Folders ========

    2013-07-05 23:30 - 2013-07-04 23:58 - 00001266 ____A C:\Windows\PFRO.log
    2013-07-05 23:30 - 2013-07-04 23:58 - 00000336 ____A C:\Windows\setupact.log
    2013-07-05 23:30 - 2009-07-14 06:53 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
    2013-07-05 23:29 - 2012-12-15 00:53 - 01533677 ____A C:\Windows\WindowsUpdate.log
    2013-07-05 23:28 - 2012-11-07 20:00 - 00001912 ____A C:\Windows\epplauncher.mif
    2013-07-05 23:22 - 2013-07-05 23:22 - 00001892 ____A C:\FixitRegBackup.reg
    2013-07-05 23:11 - 2009-07-14 06:34 - 00025616 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
    2013-07-05 23:11 - 2009-07-14 06:34 - 00025616 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
    2013-07-05 19:53 - 2013-07-02 23:35 - 00000000 ____D C:\Program Files\SexGamesBox
    2013-07-05 19:52 - 2012-11-09 18:36 - 00000978 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
    2013-07-05 19:51 - 2013-07-05 19:51 - 00000000 ____D C:\Program Files\VS Revo Group
    2013-07-04 23:58 - 2013-07-04 23:58 - 00000000 ____A C:\Windows\setuperr.log
    2013-07-04 23:58 - 2013-01-31 18:15 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
    2013-07-04 23:10 - 2013-07-04 23:10 - 00000925 ____A C:\Users\Public\Desktop\CCleaner.lnk
    2013-07-04 23:10 - 2013-07-04 23:10 - 00000000 ____D C:\Program Files\CCleaner
    2013-07-04 23:10 - 2012-11-08 16:33 - 00000000 ____D C:\Users\seven\AppData\Roaming\Adobe
    2013-07-04 23:07 - 2013-07-04 23:07 - 00001065 ____A C:\Users\Public\Desktop\Mozilla Firefox.lnk
    2013-07-04 23:07 - 2013-07-04 23:07 - 00000000 ____D C:\Program Files\Mozilla Firefox
    2013-07-04 23:06 - 2012-11-09 18:36 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerApp.exe
    2013-07-04 23:06 - 2012-11-09 18:36 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerCPLApp.cpl
    2013-07-04 22:58 - 2013-05-14 17:53 - 00000000 ____D C:\Users\seven\AppData\Local\Adobe
    2013-07-04 22:57 - 2012-11-08 16:28 - 00000000 ____D C:\ProgramData\Adobe
    2013-07-04 22:56 - 2013-07-04 22:56 - 00001944 ____A C:\Users\Public\Desktop\Adobe Reader 9.lnk
    2013-07-04 22:56 - 2013-05-14 17:34 - 00000000 ____D C:\Program Files\Common Files\Adobe
    2013-07-04 22:56 - 2013-02-26 22:02 - 00000000 ____D C:\Program Files\Adobe
    2013-07-04 22:50 - 2012-11-08 11:47 - 00000000 ____D C:\Users\seven\AppData\Roaming\Nitro PDF
    2013-07-04 22:42 - 2013-07-04 22:42 - 00263592 ____A (Oracle Corporation) C:\Windows\System32\javaws.exe
    2013-07-04 22:42 - 2013-07-04 22:42 - 00175016 ____A (Oracle Corporation) C:\Windows\System32\javaw.exe
    2013-07-04 22:42 - 2013-07-04 22:42 - 00175016 ____A (Oracle Corporation) C:\Windows\System32\java.exe
    2013-07-04 22:42 - 2013-07-04 22:42 - 00094632 ____A (Oracle Corporation) C:\Windows\System32\WindowsAccessBridge.dll
    2013-07-04 22:42 - 2013-07-04 22:42 - 00000000 ____D C:\Program Files\Common Files\Java
    2013-07-04 22:42 - 2012-11-10 00:22 - 00867240 ____A (Oracle Corporation) C:\Windows\System32\npDeployJava1.dll
    2013-07-04 22:42 - 2012-11-10 00:22 - 00789416 ____A (Oracle Corporation) C:\Windows\System32\deployJava1.dll
    2013-07-04 22:42 - 2012-11-10 00:21 - 00000000 ____D C:\Program Files\Java
    2013-07-04 22:41 - 2013-07-04 22:41 - 00000000 ____D C:\Windows\System32\appmgmt
    2013-07-02 23:24 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\System32\NDF
    2013-07-02 22:12 - 2012-11-08 11:16 - 00000266 ____A C:\Windows\Tasks\AutoKMS.job
    2013-07-02 21:28 - 2012-11-07 12:35 - 01680954 ____A C:\Windows\System32\PerfStringBackup.INI
    2013-07-02 21:28 - 2009-07-14 10:21 - 00753178 ____A C:\Windows\System32\perfh010.dat
    2013-07-02 21:28 - 2009-07-14 10:21 - 00151184 ____A C:\Windows\System32\perfc010.dat
    2013-07-02 21:24 - 2013-07-02 21:24 - 00002131 ____A C:\Users\Public\Desktop\TuneUp Manutenzione in 1 clic.lnk
    2013-07-02 21:24 - 2013-07-02 21:24 - 00002087 ____A C:\Users\Public\Desktop\TuneUp Utilities 2012.lnk
    2013-07-02 21:24 - 2013-07-02 21:23 - 00000000 ____D C:\Program Files\TuneUp Utilities 2012
    2013-07-02 21:24 - 2013-07-02 21:22 - 00000000 ____D C:\ProgramData\TuneUp Software
    2013-07-02 21:23 - 2013-07-02 21:23 - 00000000 ____D C:\Users\seven\AppData\Roaming\TuneUp Software
    2013-07-02 21:22 - 2013-07-02 21:22 - 00000000 __SHD C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
    2013-07-02 20:57 - 2012-12-17 22:36 - 00000000 ____D C:\Users\seven\AppData\Roaming\vlc
    2013-07-02 20:38 - 2013-06-11 20:05 - 00000000 ____D C:\Program Files\Steam
    2013-07-02 20:06 - 2013-07-02 20:06 - 00000000 ____D C:\Windows\System32\config\HiveBackup
    2013-07-02 19:56 - 2012-11-15 00:31 - 00001136 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
    2013-07-02 19:56 - 2012-11-15 00:31 - 00001132 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
    2013-07-02 19:10 - 2012-11-07 12:29 - 00092768 ____A C:\Users\seven\AppData\Local\GDIPFONTCACHEV1.DAT
    2013-07-02 19:09 - 2009-07-14 06:33 - 00380632 ____A C:\Windows\System32\FNTCACHE.DAT
    2013-06-30 23:27 - 2013-06-30 23:27 - 00000000 ____D C:\FRST
    2013-06-27 17:33 - 2013-06-27 17:33 - 00000000 __SHD C:\found.000
    2013-06-27 02:54 - 2013-01-25 16:33 - 00000318 ____A C:\Windows\System32\ayboot.ini
    2013-06-26 23:28 - 2013-06-26 23:28 - 00000000 ____A C:\asdsetup.exe
    2013-06-26 23:19 - 2013-06-26 23:18 - 00000000 ___AD C:\.Trash-0
    2013-06-26 23:10 - 2013-06-13 00:54 - 00000000 ____D C:\Users\seven\Downloads\Da copiare nella chiavetta
    2013-06-26 23:10 - 2013-06-07 19:02 - 00000000 ____D C:\Users\seven\AppData\Roaming\KastorAllVideoDownloader
    2013-06-26 23:10 - 2012-12-04 20:52 - 00000000 ____D C:\ProgramData\Ant.com
    2013-06-26 23:10 - 2012-11-08 11:16 - 00000000 ____D C:\Windows\AutoKMS
    2013-06-26 23:10 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\System32\wfp
    2013-06-26 23:10 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\System32\DriverStore
    2013-06-26 23:10 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\registration
    2013-06-26 23:02 - 2013-06-26 17:55 - 00000000 ____D C:\Users\seven\AppData\Roaming\GetRight
    2013-06-26 23:02 - 2013-06-26 17:55 - 00000000 ____D C:\Program Files\GetRight
    2013-06-26 23:01 - 2013-06-26 21:54 - 00000000 ____D C:\Windows\pss
    2013-06-26 21:05 - 2013-06-26 21:05 - 43253760 ____A C:\Windows\System32\config\software.bhv
    2013-06-26 21:05 - 2013-06-26 21:05 - 24379392 ____A C:\Windows\System32\config\system.bhv
    2013-06-26 21:05 - 2013-06-26 21:05 - 00524288 ____A C:\Windows\System32\config\default.bhv
    2013-06-26 21:05 - 2013-06-26 21:05 - 00262144 ____A C:\Windows\System32\config\security.bhv
    2013-06-26 21:05 - 2013-06-26 21:05 - 00262144 ____A C:\Windows\System32\config\sam.bhv
    2013-06-26 21:05 - 2013-06-26 21:05 - 00000000 ___AD C:\$Anvi Rescue Disk$
    2013-06-26 19:47 - 2012-12-21 21:29 - 00000000 ____D C:\Users\seven\AppData\Roaming\NetSpeedMonitor
    2013-06-26 18:41 - 2013-06-26 18:37 - 38001894 ____A C:\Users\seven\Downloads\Come navigare nel Deep Web.mp4
    2013-06-21 03:09 - 2013-06-21 03:09 - 00000000 ____D C:\Users\seven\Downloads\Miei salvataggi
    2013-06-21 00:59 - 2013-06-18 17:25 - 00000000 __SHD C:\Windows\System32\AI_RecycleBin
    2013-06-21 00:59 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system
    2013-06-20 01:42 - 2013-01-25 16:17 - 00000000 ____D C:\WinWebExplorer
    2013-06-19 23:46 - 2013-06-19 23:16 - 192163640 ____A C:\Users\seven\Downloads\Documentario su Parigi.mp4
    2013-06-19 02:17 - 2013-06-18 17:19 - 00000000 ____D C:\Program Files\PutLockerDownloader.com
    2013-06-19 02:04 - 2013-06-19 02:04 - 00000000 ____D C:\Users\seven\Documents\The Prince of Codes
    2013-06-19 01:05 - 2013-06-18 13:38 - 00000000 ____D C:\Users\seven\Downloads\Video
    2013-06-18 13:44 - 2013-06-18 13:44 - 00000000 ____D C:\Users\seven\Downloads\Vari Testi
    2013-06-17 00:41 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\Microsoft.NET
    2013-06-16 14:29 - 2013-06-16 13:57 - 00000000 ____D C:\Users\Public\Documents\STALKER-STCS
    2013-06-16 13:49 - 2013-06-16 13:49 - 00000000 ____D C:\Program Files\Deep Silver
    2013-06-15 00:42 - 2013-06-15 00:42 - 00000000 ____D C:\Users\seven\AppData\Roaming\AbaEnglishRt.19ECF44F1B9DAF7C7A64FDC21A008AB0C5135E2F.1
    2013-06-15 00:42 - 2013-06-15 00:35 - 00000000 ____D C:\EnglishCourse
    2013-06-15 00:37 - 2013-06-15 00:37 - 00000513 ____A C:\Users\seven\Desktop\ABA English Course.lnk
    2013-06-15 00:35 - 2013-06-15 00:35 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
    2013-06-15 00:35 - 2013-06-15 00:35 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
    2013-06-15 00:35 - 2013-06-15 00:35 - 00000000 ____D C:\Program Files\Common Files\Adobe AIR
    2013-06-15 00:16 - 2013-06-11 20:05 - 00000000 ____D C:\Program Files\Common Files\Steam
    2013-06-15 00:10 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\System32\it-IT
    2013-06-14 23:58 - 2012-11-07 13:14 - 73381792 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
    2013-06-14 23:12 - 2013-06-14 23:11 - 00161944 ____A C:\Users\seven\Downloads\corso-di-inglese-abaenglish-windows-downloader.exe
    2013-06-12 00:59 - 2013-06-04 19:31 - 00000000 ____D C:\Users\seven\Downloads\Cfake
    2013-06-11 19:58 - 2013-06-11 19:56 - 01669632 ____A C:\Users\seven\Downloads\SteamInstall.msi
    2013-06-08 23:40 - 2012-12-15 23:03 - 00000000 ____D C:\Users\seven\Documents\Conersazioni What's App
    2013-06-08 23:32 - 2013-01-29 16:14 - 00000000 ____D C:\Users\seven\.VirtualBox
    2013-06-07 19:07 - 2013-06-07 19:01 - 00000000 ____D C:\Program Files\TubeMaster++
    2013-06-07 19:06 - 2013-01-29 16:09 - 00000000 ____D C:\Program Files\Oracle
    2013-06-07 19:04 - 2013-06-07 19:04 - 00000000 ____D C:\Users\seven\Documents\VSO Downloader
    2013-06-07 19:03 - 2013-06-07 19:03 - 00000000 ____D C:\Users\seven\AppData\Roaming\KastorFreeVideoCatcher
    2013-06-07 19:03 - 2013-06-07 19:03 - 00000000 ____D C:\ProgramData\VSO
    2013-06-07 19:03 - 2013-06-07 19:03 - 00000000 ____D C:\Program Files\VSO
    2013-06-07 19:03 - 2013-06-07 19:03 - 00000000 ____D C:\Program Files\Kastor Free Video Catcher
    2013-06-07 19:02 - 2013-06-07 19:02 - 00000000 ____D C:\Program Files\Kastor All Video Downloader
    2013-06-07 19:02 - 2012-12-10 22:26 - 00000000 ____D C:\Program Files\WinPcap
    2013-06-05 20:02 - 2013-06-05 15:36 - 00000000 ____D C:\Users\seven\Documents\SpellForce
    2013-06-05 15:32 - 2013-06-05 15:32 - 00000926 ____A C:\Users\seven\Desktop\GameSpy Arcade.lnk
    2013-06-05 15:32 - 2013-06-05 15:32 - 00000000 ____D C:\Program Files\GameSpy Arcade
    2013-06-05 15:32 - 2013-06-05 15:32 - 00000000 ____D C:\Program Files\AWS
    2013-06-05 15:31 - 2013-06-05 15:31 - 00001124 ____A C:\Users\seven\Desktop\SpellForce - The Order of Dawn.lnk
    2013-06-05 15:25 - 2013-06-05 15:25 - 00000000 ____D C:\Program Files\JoWooD
    2013-06-05 01:23 - 2012-11-09 21:37 - 00000000 ____D C:\Users\seven\Downloads\eMule

    ==================== Bamital & volsnap Check =================

    C:\Windows\explorer.exe => MD5 is legit
    C:\Windows\System32\winlogon.exe => MD5 is legit
    C:\Windows\System32\wininit.exe => MD5 is legit
    C:\Windows\System32\svchost.exe => MD5 is legit
    C:\Windows\System32\services.exe => MD5 is legit
    C:\Windows\System32\User32.dll => MD5 is legit
    C:\Windows\System32\userinit.exe => MD5 is legit
    C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


    LastRegBack: 2013-05-14 16:37

    ==================== End Of Log ============================
     
    .
282 replies since 2/6/2013, 12:32   40235 views
  Share  
.

Reti e connessioni
Create your forum and your blog! · Top Forum · Categories · Help · Status · Contacts · Powered by ForumFree