-
.
Ho provato a danalizzare archivi rar e un video ma non risultano infezioni, posso procedere alla forattazione? è possibile salvare i preferiti di firefox per averli una volta formattato il computer? -
.
Questo è il log di falbar: http://wikisend.com/download/264116/FRST.txt
Questo è il log additional: http://wikisend.com/download/901050/Addition.txt
Questo invece è l'errore che mi da con eset:mi potresti spiegare come funziona rimuovi tutto è reinstalla windows di windows non potrei usare quella dato che.non ho dati.importanti nel.pc, ho sbagliato sh.messo il link del download spero vada bene.lo stessoSPOILER (clicca per visualizzare)
Edited by Judgement1991 - 11/10/2013, 19:33 -
.
Ho comprato un nuovo pc portatile con preinstallato norton internet security che è attivo per un periodo limitato ora ho dovuto ripristinare il sistema per un problema non grave ma l'antivirus non funziona più mi dice che è da aggiornare ma se ci provo mi da errore e non so più cosa fare ho provato disinstallando l'antivirus e ho provato a ripristinare il sistema per vedere se risolvevo il problenma ma mi da quest errore quando provo a ripristinare di nuovo il sistema. Ho anche un problema con dei video scaricati da youtube tramite keepvid e altri siti praticamente il video viene scaricato e funziona ma dopo 2 o 3 minuti a seconda della durata del video il video si blocca e il timer scorre ma le immagini non cambiano non so proprio come fare non vorrei portare il pc in riparazione o comunque apparte queste cose funziona alla perfezione è quasi un mese che lo ho comprato e non lo voglio portare in riparazione i miei si arrabbierebbero se fosse gia da portare in riparazione per leggere i video uso vlc ho l'applicazione gia instalata sul computer per i video credo si chiami xbox video inoltre volevo sapere se uso gli emulatori per ps1 n64 e gb con le rom dei giochi il computer si rovini forse ho problemi anche con un virus dato che spesso mi si aprono pagine di pubblicità e inoltre non si aggiorna l'antivirus cosa faccio? anche un problema con gli archivi rar che mi dice sono corrotti o altro credo sia un virus aiuto. Inoltre il pc si rallenta molto quando uso internet credo sia un virus.quasi tutti i file che scarico da internet sono corrotti non voglio portarlo in riparazione, come funziona il rimuovi tutto e reinstalla windows? Ciao e Grazie dell'aiuto che mi darete.SPOILER (clicca per visualizzare)
Edited by Judgement1991 - 10/10/2013, 01:56 -
.
Ho un problema con il mio pc fisso con windows xp ogni volta che lo uso questo si riavvia dopo un pò di tempo e succede dopo mezz'ora o a volte dopo un ora il pc si riavvia cosa posso fare? Ho installato il service pack 3 e ho 2 gb di hard disk disponibili ma il problema si era gia presentato prima. -
.
Scusa non ho avuto modo di rispondere prima ora internet funziona. Grazie mille. -
.
Ho disinstallato tutti e due questo è il log SPOILER (clicca per visualizzare)Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 29-06-2013 01 (ATTENTION: FRST version is 6 days old)
Ran by seven (administrator) on 05-07-2013 23:33:02
Running from E:\
Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: Italian Standard
Internet Explorer Version 9
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(SANDBOXIE L.T.D) C:\Program Files\Sandboxie\SbieSvc.exe
(BlueStack Systems, Inc.) C:\Program Files\BlueStacks\HD-LogRotatorService.exe
(Nitro PDF Software) C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe
(The Eraser Project) C:\Program Files\Eraser\Eraser.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe
(BlueStack Systems, Inc.) C:\Program Files\BlueStacks\HD-Service.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesApp32.exe
(BlueStack Systems, Inc.) C:\Program Files\BlueStacks\HD-Network.exe
(BlueStack Systems, Inc.) C:\Program Files\BlueStacks\HD-BlockDevice.exe
(BlueStack Systems, Inc.) C:\Program Files\BlueStacks\HD-FileSystem.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [Eraser] "C:\PROGRA~1\Eraser\Eraser.exe" --atRestart [980920 2012-05-22] (The Eraser Project)
HKLM\...\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" [253816 2013-03-12] (Oracle Corporation)
HKLM\...\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [37296 2012-01-03] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [843712 2012-01-02] (Adobe Systems Incorporated)
HKLM\...D6A79037F57F\InprocServer32: [Default-fastprox] ATTENTION! ====> ZeroAccess
MountPoints2: {f02d9529-dea1-11e2-89e3-806e6f6e6963} - E:\LaunchU3.exe -a
Startup: C:\Users\seven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://org.sexgamesbox.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://it.msn.com/?ocid=iehp
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKCU - {7DA81A60-7CFF-4FD8-8CA8-F993F73AD382} URL = www.ant.com/search?s=browser&q={searchTerms}
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Ant.com browser helper (video detector) - {346FDE31-DFF9-418A-90C8-BA31DC9FF2EF} - C:\Program Files\Ant.com\IE add-on\Download.dll (Ant.com)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Ant.com Video Downloader toolbar - {2E924F4F-67F0-4BD8-9560-49F468E843D2} - C:\Program Files\Ant.com\IE add-on\AntToolbar.dll (Ant.com)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab
FireFox:
========
FF ProfilePath: C:\Users\seven\AppData\Roaming\Mozilla\Firefox\Profiles\sf5cy3j1.default
FF Homepage: www.google.it
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
FF Plugin: @nitropdf.com/NitroPDF - C:\Program Files\Nitro\Reader 3\npnitromozilla.dll (Nitro PDF)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
FF Plugin: @videolan.org/vlc,version=2.0.4 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Extension: Ant Video Downloader - C:\Users\seven\AppData\Roaming\Mozilla\Firefox\Profiles\sf5cy3j1.default\Extensions\[email protected]
FF Extension: No Name - C:\Users\seven\AppData\Roaming\Mozilla\Firefox\Profiles\sf5cy3j1.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
FF Extension: DownloadHelper - C:\Users\seven\AppData\Roaming\Mozilla\Firefox\Profiles\sf5cy3j1.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF Extension: artur.dubovoy - C:\Users\seven\AppData\Roaming\Mozilla\Firefox\Profiles\sf5cy3j1.default\Extensions\[email protected]
FF Extension: support - C:\Users\seven\AppData\Roaming\Mozilla\Firefox\Profiles\sf5cy3j1.default\Extensions\[email protected]
FF Extension: No Name - C:\Users\seven\AppData\Roaming\Mozilla\Firefox\Profiles\sf5cy3j1.default\Extensions\{c50ca3c4-5656-43c2-a061-13e717f73fc8}.xpi
Chrome:
=======
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\27.0.1453.110\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\27.0.1453.110\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\27.0.1453.110\pdf.dll ()
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U9) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Nitro PDF plugin for Firefox and Chrome) - C:\Program Files\Nitro\Reader 3\npnitromozilla.dll (Nitro PDF)
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_4_402_287.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.90.5) - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
CHR Extension: (ABA English - Corso d'inglese Online Gratis) - C:\Users\seven\AppData\Local\Google\Chrome\User Data\Default\Extensions\afijefmpindeebpimdceopnjegfgfhob\2_0
CHR Extension: (Google Drive) - C:\Users\seven\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\seven\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\seven\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Vimeo\u2122 Download Videos) - C:\Users\seven\AppData\Local\Google\Chrome\User Data\Default\Extensions\geeljcibkkackafmeepgadbfgmpjmdeg\2.9.1_0
CHR Extension: (Gmail) - C:\Users\seven\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
========================== Services (Whitelisted) =================
R2 BstHdAndroidSvc; C:\Program Files\BlueStacks\HD-Service.exe [397176 2012-08-21] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files\BlueStacks\HD-LogRotatorService.exe [384888 2012-08-21] (BlueStack Systems, Inc.)
R2 NitroReaderDriverReadSpool3; C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe [196624 2012-10-30] (Nitro PDF Software)
R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [85776 2012-08-25] (SANDBOXIE L.T.D)
R2 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe [1479488 2011-11-07] (TuneUp Software)
S3 WefiEngSvc; C:\Program Files\WeFi\WefiEngSvc.exe [120152 2010-11-03] (WeFi)
==================== Drivers (Whitelisted) ====================
R2 BstHdDrv; C:\Program Files\BlueStacks\HD-Hypervisor-x86.sys [66424 2012-08-21] (BlueStack Systems)
R3 MTsensor; C:\Windows\System32\DRIVERS\ATKACPI.sys [7680 2007-07-31] (ATK0100)
R2 npf; C:\Windows\System32\drivers\npf.sys [35088 2010-06-25] (CACE Technologies, Inc.)
R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [157776 2012-08-25] (SANDBOXIE L.T.D)
R3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys [10064 2011-10-31] (TuneUp Software)
S1 MpKslb4c4e980; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BDBB9857-0ABB-4D00-8709-FE9D8300ADE0}\MpKslb4c4e980.sys [x]
S1 MpKslea8943f1; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BDBB9857-0ABB-4D00-8709-FE9D8300ADE0}\MpKslea8943f1.sys [x]
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-07-05 23:22 - 2013-07-05 23:22 - 00001892 ____A C:\FixitRegBackup.reg
2013-07-05 19:51 - 2013-07-05 19:51 - 00000000 ____D C:\Program Files\VS Revo Group
2013-07-04 23:58 - 2013-07-05 23:30 - 00001266 ____A C:\Windows\PFRO.log
2013-07-04 23:58 - 2013-07-05 23:30 - 00000336 ____A C:\Windows\setupact.log
2013-07-04 23:58 - 2013-07-04 23:58 - 00000000 ____A C:\Windows\setuperr.log
2013-07-04 23:10 - 2013-07-04 23:10 - 00000925 ____A C:\Users\Public\Desktop\CCleaner.lnk
2013-07-04 23:10 - 2013-07-04 23:10 - 00000000 ____D C:\Program Files\CCleaner
2013-07-04 23:07 - 2013-07-04 23:07 - 00001065 ____A C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-07-04 23:07 - 2013-07-04 23:07 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-07-04 22:56 - 2013-07-04 22:56 - 00001944 ____A C:\Users\Public\Desktop\Adobe Reader 9.lnk
2013-07-04 22:42 - 2013-07-04 22:42 - 00263592 ____A (Oracle Corporation) C:\Windows\System32\javaws.exe
2013-07-04 22:42 - 2013-07-04 22:42 - 00175016 ____A (Oracle Corporation) C:\Windows\System32\javaw.exe
2013-07-04 22:42 - 2013-07-04 22:42 - 00175016 ____A (Oracle Corporation) C:\Windows\System32\java.exe
2013-07-04 22:42 - 2013-07-04 22:42 - 00094632 ____A (Oracle Corporation) C:\Windows\System32\WindowsAccessBridge.dll
2013-07-04 22:42 - 2013-07-04 22:42 - 00000000 ____D C:\Program Files\Common Files\Java
2013-07-04 22:41 - 2013-07-04 22:41 - 00000000 ____D C:\Windows\System32\appmgmt
2013-07-02 23:35 - 2013-07-05 19:53 - 00000000 ____D C:\Program Files\SexGamesBox
2013-07-02 21:24 - 2013-07-02 21:24 - 00002131 ____A C:\Users\Public\Desktop\TuneUp Manutenzione in 1 clic.lnk
2013-07-02 21:24 - 2013-07-02 21:24 - 00002087 ____A C:\Users\Public\Desktop\TuneUp Utilities 2012.lnk
2013-07-02 21:24 - 2011-11-07 10:38 - 00031552 ____A (TuneUp Software) C:\Windows\System32\TURegOpt.exe
2013-07-02 21:24 - 2011-11-07 10:38 - 00021312 ____A (TuneUp Software) C:\Windows\System32\authuitu.dll
2013-07-02 21:23 - 2013-07-02 21:24 - 00000000 ____D C:\Program Files\TuneUp Utilities 2012
2013-07-02 21:23 - 2013-07-02 21:23 - 00000000 ____D C:\Users\seven\AppData\Roaming\TuneUp Software
2013-07-02 21:22 - 2013-07-02 21:24 - 00000000 ____D C:\ProgramData\TuneUp Software
2013-07-02 21:22 - 2013-07-02 21:22 - 00000000 __SHD C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
2013-07-02 20:06 - 2013-07-02 20:06 - 00000000 ____D C:\Windows\System32\config\HiveBackup
2013-06-30 23:27 - 2013-06-30 23:27 - 00000000 ____D C:\FRST
2013-06-27 17:33 - 2013-06-27 17:33 - 00000000 __SHD C:\found.000
2013-06-26 23:28 - 2013-06-26 23:28 - 00000000 ____A C:\asdsetup.exe
2013-06-26 23:18 - 2013-06-26 23:19 - 00000000 ___AD C:\.Trash-0
2013-06-26 21:54 - 2013-06-26 23:01 - 00000000 ____D C:\Windows\pss
2013-06-26 21:05 - 2013-06-26 21:05 - 43253760 ____A C:\Windows\System32\config\software.bhv
2013-06-26 21:05 - 2013-06-26 21:05 - 24379392 ____A C:\Windows\System32\config\system.bhv
2013-06-26 21:05 - 2013-06-26 21:05 - 00524288 ____A C:\Windows\System32\config\default.bhv
2013-06-26 21:05 - 2013-06-26 21:05 - 00262144 ____A C:\Windows\System32\config\security.bhv
2013-06-26 21:05 - 2013-06-26 21:05 - 00262144 ____A C:\Windows\System32\config\sam.bhv
2013-06-26 21:05 - 2013-06-26 21:05 - 00000000 ___AD C:\$Anvi Rescue Disk$
2013-06-26 18:37 - 2013-06-26 18:41 - 38001894 ____A C:\Users\seven\Downloads\Come navigare nel Deep Web.mp4
2013-06-26 17:55 - 2013-06-26 23:02 - 00000000 ____D C:\Users\seven\AppData\Roaming\GetRight
2013-06-26 17:55 - 2013-06-26 23:02 - 00000000 ____D C:\Program Files\GetRight
2013-06-21 03:09 - 2013-06-21 03:09 - 00000000 ____D C:\Users\seven\Downloads\Miei salvataggi
2013-06-19 23:16 - 2013-06-19 23:46 - 192163640 ____A C:\Users\seven\Downloads\Documentario su Parigi.mp4
2013-06-19 02:04 - 2013-06-19 02:04 - 00000000 ____D C:\Users\seven\Documents\The Prince of Codes
2013-06-18 17:25 - 2013-06-21 00:59 - 00000000 __SHD C:\Windows\System32\AI_RecycleBin
2013-06-18 17:19 - 2013-06-19 02:17 - 00000000 ____D C:\Program Files\PutLockerDownloader.com
2013-06-18 13:44 - 2013-06-18 13:44 - 00000000 ____D C:\Users\seven\Downloads\Vari Testi
2013-06-18 13:38 - 2013-06-19 01:05 - 00000000 ____D C:\Users\seven\Downloads\Video
2013-06-16 13:57 - 2013-06-16 14:29 - 00000000 ____D C:\Users\Public\Documents\STALKER-STCS
2013-06-16 13:49 - 2013-06-16 13:49 - 00000000 ____D C:\Program Files\Deep Silver
2013-06-15 00:42 - 2013-06-15 00:42 - 00000000 ____D C:\Users\seven\AppData\Roaming\AbaEnglishRt.19ECF44F1B9DAF7C7A64FDC21A008AB0C5135E2F.1
2013-06-15 00:37 - 2013-06-15 00:37 - 00000513 ____A C:\Users\seven\Desktop\ABA English Course.lnk
2013-06-15 00:35 - 2013-06-15 00:42 - 00000000 ____D C:\EnglishCourse
2013-06-15 00:35 - 2013-06-15 00:35 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2013-06-15 00:35 - 2013-06-15 00:35 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2013-06-15 00:35 - 2013-06-15 00:35 - 00000000 ____D C:\Program Files\Common Files\Adobe AIR
2013-06-14 23:57 - 2013-05-17 01:08 - 12329984 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-06-14 23:57 - 2013-05-17 00:49 - 09738752 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-06-14 23:57 - 2013-05-17 00:39 - 01800704 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-06-14 23:57 - 2013-05-17 00:28 - 01129472 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-06-14 23:57 - 2013-05-17 00:28 - 01104384 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-06-14 23:57 - 2013-05-17 00:27 - 01427968 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-06-14 23:57 - 2013-05-17 00:26 - 00231936 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2013-06-14 23:57 - 2013-05-17 00:23 - 00065024 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-06-14 23:57 - 2013-05-17 00:21 - 00717824 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-06-14 23:57 - 2013-05-17 00:21 - 00142848 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-06-14 23:57 - 2013-05-17 00:20 - 00420864 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-06-14 23:57 - 2013-05-17 00:19 - 00607744 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-06-14 23:57 - 2013-05-17 00:17 - 01796096 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-06-14 23:57 - 2013-05-17 00:17 - 00073216 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-06-14 23:57 - 2013-05-17 00:16 - 02382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-06-14 23:57 - 2013-05-17 00:12 - 00176640 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-06-14 23:11 - 2013-06-14 23:12 - 00161944 ____A C:\Users\seven\Downloads\corso-di-inglese-abaenglish-windows-downloader.exe
2013-06-14 20:43 - 2013-05-13 06:45 - 01160192 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2013-06-14 20:43 - 2013-05-13 06:45 - 00140288 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
2013-06-14 20:43 - 2013-05-13 06:45 - 00103936 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll
2013-06-14 20:43 - 2013-05-13 05:08 - 00903168 ____A (Microsoft Corporation) C:\Windows\System32\certutil.exe
2013-06-14 20:43 - 2013-05-13 05:08 - 00043008 ____A (Microsoft Corporation) C:\Windows\System32\certenc.dll
2013-06-14 20:43 - 2013-05-10 05:20 - 00024576 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll
2013-06-14 20:43 - 2013-05-08 07:38 - 01293672 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2013-06-14 20:43 - 2013-05-06 07:06 - 03968872 ____A (Microsoft Corporation) C:\Windows\System32\ntkrnlpa.exe
2013-06-14 20:43 - 2013-05-06 07:06 - 03913576 ____A (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
2013-06-14 20:43 - 2013-04-26 06:55 - 00492544 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll
2013-06-13 00:54 - 2013-06-26 23:10 - 00000000 ____D C:\Users\seven\Downloads\Da copiare nella chiavetta
2013-06-11 20:05 - 2013-07-02 20:38 - 00000000 ____D C:\Program Files\Steam
2013-06-11 20:05 - 2013-06-15 00:16 - 00000000 ____D C:\Program Files\Common Files\Steam
2013-06-11 19:56 - 2013-06-11 19:58 - 01669632 ____A C:\Users\seven\Downloads\SteamInstall.msi
2013-06-07 19:04 - 2013-06-07 19:04 - 00000000 ____D C:\Users\seven\Documents\VSO Downloader
2013-06-07 19:03 - 2013-06-07 19:03 - 00000000 ____D C:\Users\seven\AppData\Roaming\KastorFreeVideoCatcher
2013-06-07 19:03 - 2013-06-07 19:03 - 00000000 ____D C:\ProgramData\VSO
2013-06-07 19:03 - 2013-06-07 19:03 - 00000000 ____D C:\Program Files\VSO
2013-06-07 19:03 - 2013-06-07 19:03 - 00000000 ____D C:\Program Files\Kastor Free Video Catcher
2013-06-07 19:03 - 2008-09-24 20:33 - 00484352 ____A C:\Windows\System32\lame_enc.dll
2013-06-07 19:02 - 2013-06-26 23:10 - 00000000 ____D C:\Users\seven\AppData\Roaming\KastorAllVideoDownloader
2013-06-07 19:02 - 2013-06-07 19:02 - 00000000 ____D C:\Program Files\Kastor All Video Downloader
2013-06-07 19:01 - 2013-06-07 19:07 - 00000000 ____D C:\Program Files\TubeMaster++
2013-06-05 15:36 - 2013-06-05 20:02 - 00000000 ____D C:\Users\seven\Documents\SpellForce
2013-06-05 15:32 - 2013-06-05 15:32 - 00000926 ____A C:\Users\seven\Desktop\GameSpy Arcade.lnk
2013-06-05 15:32 - 2013-06-05 15:32 - 00000000 ____D C:\Program Files\GameSpy Arcade
2013-06-05 15:32 - 2013-06-05 15:32 - 00000000 ____D C:\Program Files\AWS
2013-06-05 15:31 - 2013-06-05 15:31 - 00001124 ____A C:\Users\seven\Desktop\SpellForce - The Order of Dawn.lnk
2013-06-05 15:25 - 2013-06-05 15:25 - 00000000 ____D C:\Program Files\JoWooD
==================== One Month Modified Files and Folders ========
2013-07-05 23:30 - 2013-07-04 23:58 - 00001266 ____A C:\Windows\PFRO.log
2013-07-05 23:30 - 2013-07-04 23:58 - 00000336 ____A C:\Windows\setupact.log
2013-07-05 23:30 - 2009-07-14 06:53 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-07-05 23:29 - 2012-12-15 00:53 - 01533677 ____A C:\Windows\WindowsUpdate.log
2013-07-05 23:28 - 2012-11-07 20:00 - 00001912 ____A C:\Windows\epplauncher.mif
2013-07-05 23:22 - 2013-07-05 23:22 - 00001892 ____A C:\FixitRegBackup.reg
2013-07-05 23:11 - 2009-07-14 06:34 - 00025616 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-07-05 23:11 - 2009-07-14 06:34 - 00025616 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-07-05 19:53 - 2013-07-02 23:35 - 00000000 ____D C:\Program Files\SexGamesBox
2013-07-05 19:52 - 2012-11-09 18:36 - 00000978 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-07-05 19:51 - 2013-07-05 19:51 - 00000000 ____D C:\Program Files\VS Revo Group
2013-07-04 23:58 - 2013-07-04 23:58 - 00000000 ____A C:\Windows\setuperr.log
2013-07-04 23:58 - 2013-01-31 18:15 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-07-04 23:10 - 2013-07-04 23:10 - 00000925 ____A C:\Users\Public\Desktop\CCleaner.lnk
2013-07-04 23:10 - 2013-07-04 23:10 - 00000000 ____D C:\Program Files\CCleaner
2013-07-04 23:10 - 2012-11-08 16:33 - 00000000 ____D C:\Users\seven\AppData\Roaming\Adobe
2013-07-04 23:07 - 2013-07-04 23:07 - 00001065 ____A C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-07-04 23:07 - 2013-07-04 23:07 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-07-04 23:06 - 2012-11-09 18:36 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerApp.exe
2013-07-04 23:06 - 2012-11-09 18:36 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerCPLApp.cpl
2013-07-04 22:58 - 2013-05-14 17:53 - 00000000 ____D C:\Users\seven\AppData\Local\Adobe
2013-07-04 22:57 - 2012-11-08 16:28 - 00000000 ____D C:\ProgramData\Adobe
2013-07-04 22:56 - 2013-07-04 22:56 - 00001944 ____A C:\Users\Public\Desktop\Adobe Reader 9.lnk
2013-07-04 22:56 - 2013-05-14 17:34 - 00000000 ____D C:\Program Files\Common Files\Adobe
2013-07-04 22:56 - 2013-02-26 22:02 - 00000000 ____D C:\Program Files\Adobe
2013-07-04 22:50 - 2012-11-08 11:47 - 00000000 ____D C:\Users\seven\AppData\Roaming\Nitro PDF
2013-07-04 22:42 - 2013-07-04 22:42 - 00263592 ____A (Oracle Corporation) C:\Windows\System32\javaws.exe
2013-07-04 22:42 - 2013-07-04 22:42 - 00175016 ____A (Oracle Corporation) C:\Windows\System32\javaw.exe
2013-07-04 22:42 - 2013-07-04 22:42 - 00175016 ____A (Oracle Corporation) C:\Windows\System32\java.exe
2013-07-04 22:42 - 2013-07-04 22:42 - 00094632 ____A (Oracle Corporation) C:\Windows\System32\WindowsAccessBridge.dll
2013-07-04 22:42 - 2013-07-04 22:42 - 00000000 ____D C:\Program Files\Common Files\Java
2013-07-04 22:42 - 2012-11-10 00:22 - 00867240 ____A (Oracle Corporation) C:\Windows\System32\npDeployJava1.dll
2013-07-04 22:42 - 2012-11-10 00:22 - 00789416 ____A (Oracle Corporation) C:\Windows\System32\deployJava1.dll
2013-07-04 22:42 - 2012-11-10 00:21 - 00000000 ____D C:\Program Files\Java
2013-07-04 22:41 - 2013-07-04 22:41 - 00000000 ____D C:\Windows\System32\appmgmt
2013-07-02 23:24 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\System32\NDF
2013-07-02 22:12 - 2012-11-08 11:16 - 00000266 ____A C:\Windows\Tasks\AutoKMS.job
2013-07-02 21:28 - 2012-11-07 12:35 - 01680954 ____A C:\Windows\System32\PerfStringBackup.INI
2013-07-02 21:28 - 2009-07-14 10:21 - 00753178 ____A C:\Windows\System32\perfh010.dat
2013-07-02 21:28 - 2009-07-14 10:21 - 00151184 ____A C:\Windows\System32\perfc010.dat
2013-07-02 21:24 - 2013-07-02 21:24 - 00002131 ____A C:\Users\Public\Desktop\TuneUp Manutenzione in 1 clic.lnk
2013-07-02 21:24 - 2013-07-02 21:24 - 00002087 ____A C:\Users\Public\Desktop\TuneUp Utilities 2012.lnk
2013-07-02 21:24 - 2013-07-02 21:23 - 00000000 ____D C:\Program Files\TuneUp Utilities 2012
2013-07-02 21:24 - 2013-07-02 21:22 - 00000000 ____D C:\ProgramData\TuneUp Software
2013-07-02 21:23 - 2013-07-02 21:23 - 00000000 ____D C:\Users\seven\AppData\Roaming\TuneUp Software
2013-07-02 21:22 - 2013-07-02 21:22 - 00000000 __SHD C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
2013-07-02 20:57 - 2012-12-17 22:36 - 00000000 ____D C:\Users\seven\AppData\Roaming\vlc
2013-07-02 20:38 - 2013-06-11 20:05 - 00000000 ____D C:\Program Files\Steam
2013-07-02 20:06 - 2013-07-02 20:06 - 00000000 ____D C:\Windows\System32\config\HiveBackup
2013-07-02 19:56 - 2012-11-15 00:31 - 00001136 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-07-02 19:56 - 2012-11-15 00:31 - 00001132 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-07-02 19:10 - 2012-11-07 12:29 - 00092768 ____A C:\Users\seven\AppData\Local\GDIPFONTCACHEV1.DAT
2013-07-02 19:09 - 2009-07-14 06:33 - 00380632 ____A C:\Windows\System32\FNTCACHE.DAT
2013-06-30 23:27 - 2013-06-30 23:27 - 00000000 ____D C:\FRST
2013-06-27 17:33 - 2013-06-27 17:33 - 00000000 __SHD C:\found.000
2013-06-27 02:54 - 2013-01-25 16:33 - 00000318 ____A C:\Windows\System32\ayboot.ini
2013-06-26 23:28 - 2013-06-26 23:28 - 00000000 ____A C:\asdsetup.exe
2013-06-26 23:19 - 2013-06-26 23:18 - 00000000 ___AD C:\.Trash-0
2013-06-26 23:10 - 2013-06-13 00:54 - 00000000 ____D C:\Users\seven\Downloads\Da copiare nella chiavetta
2013-06-26 23:10 - 2013-06-07 19:02 - 00000000 ____D C:\Users\seven\AppData\Roaming\KastorAllVideoDownloader
2013-06-26 23:10 - 2012-12-04 20:52 - 00000000 ____D C:\ProgramData\Ant.com
2013-06-26 23:10 - 2012-11-08 11:16 - 00000000 ____D C:\Windows\AutoKMS
2013-06-26 23:10 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\System32\wfp
2013-06-26 23:10 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\System32\DriverStore
2013-06-26 23:10 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\registration
2013-06-26 23:02 - 2013-06-26 17:55 - 00000000 ____D C:\Users\seven\AppData\Roaming\GetRight
2013-06-26 23:02 - 2013-06-26 17:55 - 00000000 ____D C:\Program Files\GetRight
2013-06-26 23:01 - 2013-06-26 21:54 - 00000000 ____D C:\Windows\pss
2013-06-26 21:05 - 2013-06-26 21:05 - 43253760 ____A C:\Windows\System32\config\software.bhv
2013-06-26 21:05 - 2013-06-26 21:05 - 24379392 ____A C:\Windows\System32\config\system.bhv
2013-06-26 21:05 - 2013-06-26 21:05 - 00524288 ____A C:\Windows\System32\config\default.bhv
2013-06-26 21:05 - 2013-06-26 21:05 - 00262144 ____A C:\Windows\System32\config\security.bhv
2013-06-26 21:05 - 2013-06-26 21:05 - 00262144 ____A C:\Windows\System32\config\sam.bhv
2013-06-26 21:05 - 2013-06-26 21:05 - 00000000 ___AD C:\$Anvi Rescue Disk$
2013-06-26 19:47 - 2012-12-21 21:29 - 00000000 ____D C:\Users\seven\AppData\Roaming\NetSpeedMonitor
2013-06-26 18:41 - 2013-06-26 18:37 - 38001894 ____A C:\Users\seven\Downloads\Come navigare nel Deep Web.mp4
2013-06-21 03:09 - 2013-06-21 03:09 - 00000000 ____D C:\Users\seven\Downloads\Miei salvataggi
2013-06-21 00:59 - 2013-06-18 17:25 - 00000000 __SHD C:\Windows\System32\AI_RecycleBin
2013-06-21 00:59 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system
2013-06-20 01:42 - 2013-01-25 16:17 - 00000000 ____D C:\WinWebExplorer
2013-06-19 23:46 - 2013-06-19 23:16 - 192163640 ____A C:\Users\seven\Downloads\Documentario su Parigi.mp4
2013-06-19 02:17 - 2013-06-18 17:19 - 00000000 ____D C:\Program Files\PutLockerDownloader.com
2013-06-19 02:04 - 2013-06-19 02:04 - 00000000 ____D C:\Users\seven\Documents\The Prince of Codes
2013-06-19 01:05 - 2013-06-18 13:38 - 00000000 ____D C:\Users\seven\Downloads\Video
2013-06-18 13:44 - 2013-06-18 13:44 - 00000000 ____D C:\Users\seven\Downloads\Vari Testi
2013-06-17 00:41 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\Microsoft.NET
2013-06-16 14:29 - 2013-06-16 13:57 - 00000000 ____D C:\Users\Public\Documents\STALKER-STCS
2013-06-16 13:49 - 2013-06-16 13:49 - 00000000 ____D C:\Program Files\Deep Silver
2013-06-15 00:42 - 2013-06-15 00:42 - 00000000 ____D C:\Users\seven\AppData\Roaming\AbaEnglishRt.19ECF44F1B9DAF7C7A64FDC21A008AB0C5135E2F.1
2013-06-15 00:42 - 2013-06-15 00:35 - 00000000 ____D C:\EnglishCourse
2013-06-15 00:37 - 2013-06-15 00:37 - 00000513 ____A C:\Users\seven\Desktop\ABA English Course.lnk
2013-06-15 00:35 - 2013-06-15 00:35 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2013-06-15 00:35 - 2013-06-15 00:35 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2013-06-15 00:35 - 2013-06-15 00:35 - 00000000 ____D C:\Program Files\Common Files\Adobe AIR
2013-06-15 00:16 - 2013-06-11 20:05 - 00000000 ____D C:\Program Files\Common Files\Steam
2013-06-15 00:10 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\System32\it-IT
2013-06-14 23:58 - 2012-11-07 13:14 - 73381792 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-06-14 23:12 - 2013-06-14 23:11 - 00161944 ____A C:\Users\seven\Downloads\corso-di-inglese-abaenglish-windows-downloader.exe
2013-06-12 00:59 - 2013-06-04 19:31 - 00000000 ____D C:\Users\seven\Downloads\Cfake
2013-06-11 19:58 - 2013-06-11 19:56 - 01669632 ____A C:\Users\seven\Downloads\SteamInstall.msi
2013-06-08 23:40 - 2012-12-15 23:03 - 00000000 ____D C:\Users\seven\Documents\Conersazioni What's App
2013-06-08 23:32 - 2013-01-29 16:14 - 00000000 ____D C:\Users\seven\.VirtualBox
2013-06-07 19:07 - 2013-06-07 19:01 - 00000000 ____D C:\Program Files\TubeMaster++
2013-06-07 19:06 - 2013-01-29 16:09 - 00000000 ____D C:\Program Files\Oracle
2013-06-07 19:04 - 2013-06-07 19:04 - 00000000 ____D C:\Users\seven\Documents\VSO Downloader
2013-06-07 19:03 - 2013-06-07 19:03 - 00000000 ____D C:\Users\seven\AppData\Roaming\KastorFreeVideoCatcher
2013-06-07 19:03 - 2013-06-07 19:03 - 00000000 ____D C:\ProgramData\VSO
2013-06-07 19:03 - 2013-06-07 19:03 - 00000000 ____D C:\Program Files\VSO
2013-06-07 19:03 - 2013-06-07 19:03 - 00000000 ____D C:\Program Files\Kastor Free Video Catcher
2013-06-07 19:02 - 2013-06-07 19:02 - 00000000 ____D C:\Program Files\Kastor All Video Downloader
2013-06-07 19:02 - 2012-12-10 22:26 - 00000000 ____D C:\Program Files\WinPcap
2013-06-05 20:02 - 2013-06-05 15:36 - 00000000 ____D C:\Users\seven\Documents\SpellForce
2013-06-05 15:32 - 2013-06-05 15:32 - 00000926 ____A C:\Users\seven\Desktop\GameSpy Arcade.lnk
2013-06-05 15:32 - 2013-06-05 15:32 - 00000000 ____D C:\Program Files\GameSpy Arcade
2013-06-05 15:32 - 2013-06-05 15:32 - 00000000 ____D C:\Program Files\AWS
2013-06-05 15:31 - 2013-06-05 15:31 - 00001124 ____A C:\Users\seven\Desktop\SpellForce - The Order of Dawn.lnk
2013-06-05 15:25 - 2013-06-05 15:25 - 00000000 ____D C:\Program Files\JoWooD
2013-06-05 01:23 - 2012-11-09 21:37 - 00000000 ____D C:\Users\seven\Downloads\eMule
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-05-14 16:37
==================== End Of Log ============================ -
.
No pultroppo non posso testare la connessione con cavo appenna faccio ti allego il log. Ho provato on il programmache mi hai detto ma le voci di microsoft security essential e roboscannon compaiono nemmeno usando la modalita vanzata. -
.
Questi sono i log. SPOILER (clicca per visualizzare)Farbar Service Scanner Version: 27-06-2013
Ran by seven (administrator) on 05-07-2013 at 18:01:06
Running from "E:\"
Microsoft Windows 7 Professional Service Pack 1 (X86)
Boot Mode: Normal
****************************************************************
Internet Services:
============
Connection Status:
==============
Localhost is accessible.
There is no connection to network.
Attempt to access Google IP returned error.
Attempt to access Google.com returned error: Other errors
Attempt to access Yahoo.com returned error: Other errors
Windows Firewall:
=============
Firewall Disabled Policy:
==================
System Restore:
============
System Restore Disabled Policy:
========================
Action Center:
============
Action Center Notification Icon =====> Unable to open HKLM\...\ShellServiceObjects\{F56F6FDD-AA9D-4618-A949-C1B91AF43B1A} key. The key does not exist.
Windows Update:
============
Windows Autoupdate Disabled Policy:
============================
Windows Defender:
==============
Other Services:
==============
File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcore.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll => MD5 is legit
C:\Windows\system32\iphlpsvc.dll => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
**** End of log ****SPOILER (clicca per visualizzare)MiniToolBox by Farbar Version: 16-06-2013
Ran by seven (administrator) on 05-07-2013 at 18:05:41
Running from "E:\"
Windows 7 Professional Service Pack 1 (X86)
Boot Mode: Normal
***************************************************************************
========================= Flush DNS: ===================================
Configurazione IP di Windows
Cache del resolver DNS svuotata.
========================= IE Proxy Settings: ==============================
Proxy is not enabled.
No Proxy Server is set.
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= FF Proxy Settings: ==============================
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
========================= Hosts content: =================================
========================= IP Configuration: ================================
Scheda di rete wireless Atheros AR928X = Connessione rete wireless (Connected)
VirtualBox Host-Only Ethernet Adapter = VirtualBox Host-Only Network (Hardware not present)
Controller Ethernet SiS191 = Connessione alla rete locale (LAN) (Media disconnected)
Dispositivo Bluetooth (Personal Area Network) = Connessione di rete Bluetooth (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Connessione rete wireless 2 (Media disconnected)
# ----------------------------------
# Configurazione IPv4
# ----------------------------------
pushd interface ipv4
reset
set global icmpredirects=enabled
add address name="VirtualBox Host-Only Network" address=192.168.56.1 mask=255.255.255.0
popd
# Fine configurazione IPv4
Configurazione IP di Windows
Nome host . . . . . . . . . . . . . . : seven-PC
Suffisso DNS primario . . . . . . . . :
Tipo nodo . . . . . . . . . . . . . . : Ibrido
Routing IP abilitato. . . . . . . . . : No
Proxy WINS abilitato . . . . . . . . : No
Scheda Ethernet Connessione di rete Bluetooth:
Stato supporto. . . . . . . . . . . . : Supporto disconnesso
Suffisso DNS specifico per connessione:
Descrizione . . . . . . . . . . . . . : Dispositivo Bluetooth (Personal Area Network)
Indirizzo fisico. . . . . . . . . . . : 00-22-43-A0-9B-DF
DHCP abilitato. . . . . . . . . . . . : S
Configurazione automatica abilitata : S
Scheda Tunnel isatap.{D330ADBE-CEA6-4ABE-8F79-35201AE87C30}:
Stato supporto. . . . . . . . . . . . : Supporto disconnesso
Suffisso DNS specifico per connessione:
Descrizione . . . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Indirizzo fisico. . . . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP abilitato. . . . . . . . . . . . : No
Configurazione automatica abilitata : S
Scheda Tunnel Teredo Tunneling Pseudo-Interface:
Stato supporto. . . . . . . . . . . . : Supporto disconnesso
Suffisso DNS specifico per connessione:
Descrizione . . . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Indirizzo fisico. . . . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP abilitato. . . . . . . . . . . . : No
Configurazione automatica abilitata : S
Server: UnKnown
Address: 127.0.0.1
Impossibile trovare l'host google.com. Verificare che il nome sia corretto e riprovare.
Server: UnKnown
Address: 127.0.0.1
Impossibile trovare l'host yahoo.com. Verificare che il nome sia corretto e riprovare.
Esecuzione di Ping 127.0.0.1 con 32 byte di dati:
Risposta da 127.0.0.1: byte=32 durata<1ms TTL=128
Risposta da 127.0.0.1: byte=32 durata<1ms TTL=128
Statistiche Ping per 127.0.0.1:
Pacchetti: Trasmessi = 2, Ricevuti = 2,
Persi = 0 (0% persi),
Tempo approssimativo percorsi andata/ritorno in millisecondi:
Minimo = 0ms, Massimo = 0ms, Medio = 0ms
===========================================================================
Elenco interfacce
13...00 22 43 a0 9b df ......Dispositivo Bluetooth (Personal Area Network)
1...........................Software Loopback Interface 1
21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
14...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================
IPv4 Tabella route
===========================================================================
Route attive:
Indirizzo rete Mask Gateway Interfaccia Metrica
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
===========================================================================
Route permanenti:
Nessuna
IPv6 Tabella route
===========================================================================
Route attive:
Interf Metrica Rete Destinazione Gateway
1 306 ::1/128 On-link
1 306 ff00::/8 On-link
===========================================================================
Route permanenti:
Nessuna
========================= Winsock entries =====================================
Catalog5 01 C:\Windows\system32\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 06 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 07 C:\Windows\system32\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 29 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 30 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 31 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 32 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 33 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 34 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 35 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 36 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 37 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 38 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 39 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 40 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 41 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
========================= Event log errors: ===============================
Application errors:
==================
Error: (07/04/2013 11:58:33 PM) (Source: Windows Search Service) (User: )
Description: Impossibile inizializzare l'indice.
Dettagli:
Il catalogo dell'indice del contenuto è danneggiato. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/04/2013 11:58:33 PM) (Source: Windows Search Service) (User: )
Description: Impossibile inizializzare l'applicazione.
Contesto: applicazione Windows
Dettagli:
Il catalogo dell'indice del contenuto è danneggiato. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/04/2013 11:58:33 PM) (Source: Windows Search Service) (User: )
Description: Impossibile inizializzare l'oggetto Gatherer.
Contesto: applicazione Windows, catalogo SystemIndex
Dettagli:
Il catalogo dell'indice del contenuto è danneggiato. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/04/2013 11:58:33 PM) (Source: Windows Search Service) (User: )
Description: Impossibile inizializzare il plug-in <search.TripoliIndexer>.
Contesto: applicazione Windows, catalogo SystemIndex
Dettagli:
Impossibile trovare elemento. (HRESULT : 0x80070490) (0x80070490)
Error: (07/04/2013 11:58:31 PM) (Source: Windows Search Service) (User: )
Description: Impossibile inizializzare il plug-in <search.JetPropStore>.
Contesto: applicazione Windows, catalogo SystemIndex
Dettagli:
Il catalogo dell'indice del contenuto è danneggiato. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/04/2013 11:58:31 PM) (Source: Windows Search Service) (User: )
Description: Impossibile caricare le informazioni dell'archivio di proprietà.
Contesto: applicazione Windows, catalogo SystemIndex
Dettagli:
Il database dell'indice del contenuto è danneggiato. (HRESULT : 0xc0041800) (0xc0041800)
Error: (07/04/2013 11:58:31 PM) (Source: Windows Search Service) (User: )
Description: È in corso l'interruzione del servizio Windows Search. Problema dell'indicizzatore, The catalog is corrupt.
Dettagli:
Il catalogo dell'indice del contenuto è danneggiato. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/04/2013 11:58:31 PM) (Source: Windows Search Service) (User: )
Description: Il servizio di ricerca ha rilevato dati danneggiati nell'indice {id=4700}. Il servizio eseguirà un tentativo di correzione automatica del problema mediante la ricreazione dell'indice.
Dettagli:
Il catalogo dell'indice del contenuto è danneggiato. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/04/2013 11:58:30 PM) (Source: Windows Search Service) (User: )
Description: Impossibile aprire l'archivio di proprietà di Jet.
Dettagli:
0x%08x (0xc0041800 - Il database dell'indice del contenuto è danneggiato. (HRESULT : 0xc0041800))
Error: (07/04/2013 11:58:30 PM) (Source: ESENT) (User: )
Description: Windows (2764) Windows: Errore -1811 durante l'apertura del file di registro C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS003E9.log.
System errors:
=============
Error: (07/05/2013 05:59:02 PM) (Source: Service Control Manager) (User: )
Description: Il servizio Servizio Google Update (gupdate) non è stato avviato per il seguente errore:
%%1053
Error: (07/05/2013 05:59:02 PM) (Source: Service Control Manager) (User: )
Description: Timeout (30000 millisecondi) durante l'attesa della connessione del servizio Servizio Google Update (gupdate).
Error: (07/05/2013 05:56:54 PM) (Source: Service Control Manager) (User: )
Description: Il servizio Roboscan Update Service non è stato avviato per il seguente errore:
%%2
Error: (07/05/2013 05:56:54 PM) (Source: Service Control Manager) (User: )
Description: Il servizio Roboscan Real-time Service non è stato avviato per il seguente errore:
%%2
Error: (07/05/2013 05:56:47 PM) (Source: atikmdag) (User: )
Description: Display is not active
Error: (07/05/2013 05:56:47 PM) (Source: atikmdag) (User: )
Description: CPLIB :: General - Invalid Parameter
Error: (07/05/2013 00:28:44 AM) (Source: atikmdag) (User: )
Description: Display is not active
Error: (07/05/2013 00:00:21 AM) (Source: Service Control Manager) (User: )
Description: Il servizio Servizio Google Update (gupdate) non è stato avviato per il seguente errore:
%%1053
Error: (07/05/2013 00:00:21 AM) (Source: Service Control Manager) (User: )
Description: Timeout (30000 millisecondi) durante l'attesa della connessione del servizio Servizio Google Update (gupdate).
Error: (07/04/2013 11:58:33 PM) (Source: Service Control Manager) (User: )
Description: Il servizio Windows Search è stato arrestato in modo imprevisto. Questo problema si è verificato 1 volta/e. Le seguenti azioni di correzione saranno eseguite tra 30000 millisecondi: Riavvia il servizio.
Microsoft Office Sessions:
=========================
Error: (07/04/2013 11:58:33 PM) (Source: Windows Search Service)(User: )
Description: Dettagli:
Il catalogo dell'indice del contenuto è danneggiato. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/04/2013 11:58:33 PM) (Source: Windows Search Service)(User: )
Description: Contesto: applicazione Windows
Dettagli:
Il catalogo dell'indice del contenuto è danneggiato. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/04/2013 11:58:33 PM) (Source: Windows Search Service)(User: )
Description: Contesto: applicazione Windows, catalogo SystemIndex
Dettagli:
Il catalogo dell'indice del contenuto è danneggiato. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/04/2013 11:58:33 PM) (Source: Windows Search Service)(User: )
Description: Contesto: applicazione Windows, catalogo SystemIndex
Dettagli:
Impossibile trovare elemento. (HRESULT : 0x80070490) (0x80070490)
Search.TripoliIndexer
Error: (07/04/2013 11:58:31 PM) (Source: Windows Search Service)(User: )
Description: Contesto: applicazione Windows, catalogo SystemIndex
Dettagli:
Il catalogo dell'indice del contenuto è danneggiato. (HRESULT : 0xc0041801) (0xc0041801)
Search.JetPropStore
Error: (07/04/2013 11:58:31 PM) (Source: Windows Search Service)(User: )
Description: Contesto: applicazione Windows, catalogo SystemIndex
Dettagli:
Il database dell'indice del contenuto è danneggiato. (HRESULT : 0xc0041800) (0xc0041800)
Error: (07/04/2013 11:58:31 PM) (Source: Windows Search Service)(User: )
Description: Dettagli:
Il catalogo dell'indice del contenuto è danneggiato. (HRESULT : 0xc0041801) (0xc0041801)
The catalog is corrupt
Error: (07/04/2013 11:58:31 PM) (Source: Windows Search Service)(User: )
Description: Dettagli:
Il catalogo dell'indice del contenuto è danneggiato. (HRESULT : 0xc0041801) (0xc0041801)
4700
Error: (07/04/2013 11:58:30 PM) (Source: Windows Search Service)(User: )
Description: Dettagli:
0x%08x (0xc0041800 - Il database dell'indice del contenuto è danneggiato. (HRESULT : 0xc0041800))
Error: (07/04/2013 11:58:30 PM) (Source: ESENT)(User: )
Description: Windows2764Windows: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS003E9.log-1811
=========================== Installed Programs ============================
µTorrent (Version: 3.2.2.28500)
Adobe Flash Player 11 Plugin (Version: 11.7.700.224)
Adobe Reader 9.5.0 - Italiano (Version: 9.5.0)
Adobe Shockwave Player 11.6 (Version: 11.6.4.634)
AGEIA PhysX v7.11.13 (Version: 7.11.13)
Ant.com IE add-on (Version: 2.2.3.1074)
aTube Catcher (Version: 2.9.1347)
Auslogics Internet Optimizer (Version: version 2.0)
AVS DVD Player version 2.4
AVS4YOU Software Navigator 1.2
BlueStacks (Version: 0.7.3.2601)
CCleaner (Version: 4.02)
CDBurnerXP (Version: 4.4.2.3442)
Dawn of War - Soulstorm (Version: 1.00.0000)
eMule
Eraser 6.0.10.2620 (Version: 6.0.2620)
FotoSketcher 2.35
Free Studio version 5.6.3.706 (Version: 5.6.3.706)
GIMP 2.8.2 (Version: 2.8.2)
GMapCatcher
Google Earth (Version: 7.0.2.8415)
Google Update Helper (Version: 1.3.21.135)
Java 7 Update 25 (Version: 7.0.250)
Java Auto Updater (Version: 2.1.9.5)
LibreOffice 3.6 (Version: 3.6.3.2)
Malwarebytes Anti-Malware versione 1.70.0.1100 (Version: 1.70.0.1100)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile ITA Language Pack (Version: 4.0.30319)
Microsoft Research Cliplets (Version: 1.1.1)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Mozilla Firefox (3.5.6) (Version: 3.5.6 (en-US))
Mozilla Firefox 17.0 (x86 it) (Version: 17.0)
Mozilla Firefox 22.0 (x86 it) (Version: 22.0)
Mozilla Maintenance Service (Version: 22.0)
NetSpeedMonitor 2.5.4.0 x86 (Version: 2.5.4.0)
Network Stumbler 0.4.0 (remove only)
Nitro Reader 3 (Version: 3.0.6.3)
Nmap 6.01
Oracle VM VirtualBox 4.2.6 (Version: 4.2.6)
Paint.NET v3.5.10 (Version: 3.60.0)
Photo Story 3 for Windows (Version: 3.0.1115.11)
Pokemon Online 2.0.06
Sandboxie 3.74 (32-bit) (Version: 3.74)
Secure Wipe versione 1.0 (Version: 1.0)
Simple Port Forwarding (Version: 3.6.1)
Surf Anonymous Free (Version: 2.2.2.8)
swMSM (Version: 12.0.0.1)
TrueCrypt (Version: 7.1a)
TuneUp Utilities 2012 (Version: 12.0.2040.35)
TuneUp Utilities Language Pack (it-IT) (Version: 12.0.2040.35)
TweakNow SecureDelete (Version: 1.0 (beta 3))
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
VLC media player 2.0.4 (Version: 2.0.4)
WeFi 4.0.1.0 (Version: 4.0.1.0)
Win-eMule (Version: 2.0)
WinPcap 4.1.2 (Version: 4.1.0.2001)
WinRAR archiver
Wireshark 1.6.0 (Version: 1.6.0)
WorldShift
XnView 1.99.5 (Version: 1.99.5)
========================= Devices: ================================
Name: VirtualBox Host-Only Ethernet Adapter
Description: VirtualBox Host-Only Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Oracle Corporation
Service: VBoxNetAdp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: MpKslb4c4e980
Description: MpKslb4c4e980
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: MpKslb4c4e980
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: Microsoft Virtual WiFi Miniport Adapter #2 - VirtualBox Bridged Networking Driver Miniport
Description: VirtualBox Bridged Networking Driver Miniport
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Oracle Corporation
Service: VBoxNetFlt
Problem: : Windows cannot load the device driver for this hardware. The driver may be corrupted or missing. (Code 39)
Resolution: Reasons for this error include a driver that is not present; a binary file that is corrupt; a file I/O problem, or a driver that references an entry point in another binary file that could not be loaded.
Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.
Name: Scheda di rete wireless Atheros AR928X - VirtualBox Bridged Networking Driver Miniport
Description: VirtualBox Bridged Networking Driver Miniport
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Oracle Corporation
Service: VBoxNetFlt
Problem: : Windows cannot load the device driver for this hardware. The driver may be corrupted or missing. (Code 39)
Resolution: Reasons for this error include a driver that is not present; a binary file that is corrupt; a file I/O problem, or a driver that references an entry point in another binary file that could not be loaded.
Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.
Name: Controller Ethernet SiS191 - VirtualBox Bridged Networking Driver Miniport
Description: VirtualBox Bridged Networking Driver Miniport
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Oracle Corporation
Service: VBoxNetFlt
Problem: : Windows cannot load the device driver for this hardware. The driver may be corrupted or missing. (Code 39)
Resolution: Reasons for this error include a driver that is not present; a binary file that is corrupt; a file I/O problem, or a driver that references an entry point in another binary file that could not be loaded.
Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.
Name: MpKslea8943f1
Description: MpKslea8943f1
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: MpKslea8943f1
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
========================= Memory info: ===================================
Percentage of memory in use: 32%
Total physical RAM: 3071.27 MB
Available physical RAM: 2077.67 MB
Total Pagefile: 6140.84 MB
Available Pagefile: 5084.13 MB
Total Virtual: 2047.88 MB
Available Virtual: 1934.06 MB
========================= Partitions: =====================================
1 Drive c: () (Fixed) (Total:297.99 GB) (Free:116.84 GB) NTFS
3 Drive e: (FLASH DRIVE) (Removable) (Total:14.42 GB) (Free:5.26 GB) FAT32
========================= Users: ========================================
Account utente per \\SEVEN-PC
Administrator Guest seven
Esecuzione comando riuscita.
========================= Minidump Files ==================================
No minidump file found
========================= Restore Points ==================================
04-07-2013 21:14:34 Funzionamento Computer
**** End of log ****
http://wikisend.com/download/171938/FRST.txt
http://wikisend.com/download/469610/Addition.txt -
.
Mi puoi spiegare come fare con il wi-fi collegato perchè la connessone non è la mia ma di un mio amico e non ho modo di collegarlo via cavo. -
.
Il computer è stato ripristinato e ora funziona ma non sii connette più ad internet cioè si connette alla rete ma da accesso limitato e non so che fare prima la connessione funzionava perfettamente. -
.
Non ce più bisogno con l'ultimo fix e riprovando a usare ripristino all'avvio il computer funziona di nuovo grazie mille! Non finirò più di ringraziarti Grazie Grazie Grazie! -
.
All'inizio si avvia e appare un schermata cn scritto Ripristino da Errori di Windows con avvia strumento di ripristino all'avvio (scelta consigliata) e avvia windows normalmente avviando windows normalmente appare una schermata nera e subito opo il pc si riavvia.
Ho scaricato il tuo allegato 2 volte e la 1 volta il file è questo lo aperto col sito che ti ho detto:SPOILER (clicca per visualizzare)start
BootExecute: autocheck autochk * bootroboscan.exe
HKU\seven\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe [26624 2010-11-20] (Microsoft Corporation)
S2 Roboscan_RTSrv; C:\Program Files\Roboscan\Roboscan\RSRTSrv.rse [355688 2012-03-29] (Roboscan Inc)
S2 Roboscan_UpdSrv; C:\Program Files\Roboscan\Roboscan\RSUpdSrv.rse [606056 2012-03-29] (Roboscan Inc)
S3 RoboFww; c:\program files\roboscan\roboscan\plugin\realtime\RoboFww.sys [32064 2012-03-29] (Roboscan Inc)
S3 RoboRtwIFDrv; c:\program files\roboscan\roboscan\plugin\realtime\RoboRtw.sys [100160 2012-03-29] (Roboscan Inc)
S2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [20456 2013-01-27] (Microsoft Corporation)
S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [295232 2013-01-27] (Microsoft Corporation)
HKLM\...\exefile\open\command: <===== ATTENTION!
C:\Program Files\Roboscan
c:\Program Files\Microsoft Security Client
end
La seconda volta che l'ho scaricato e aperto con quel sito che ti ho detto era questo:SPOILER (clicca per visualizzare)start
HKCU\...\Winlogon: [Shell] explorer.exe,C:\Users\Conian\AppData\Roaming\skype.dat [60416 2011-11-17] () <==== ATTENTION
C:\Users\Conian\AppData\Roaming\skype.dat
C:\Users\Conian\AppData\Roaming\skype.ini
C:\Windows\Tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job
C:\Windows\Tasks\{62C40AA6-4406-467a-A5A5-DFDF1B559B7A}.job
end
Questi due che ti ho detto sono quelli Vicky rar scaricato 2 volte.
Non l'avevo visto ora ci provo e ti faccio sapere. -
.
avevo usato questo http://wikisend.com/download/213390/fixlist.txt ora sto provando con quello che mi hai linkato poco fa.
Ora ho usato quello Vicky rar ho inserito nella chiavetta ma non funziona lo stesso ti allego il log del fix.
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 29-06-2013 01
Ran by SYSTEM at 2013-07-02 18:10:11 Run:3
Running from G:\
Boot Mode: Recovery
==============================================
HKLM\System\ControlSet001\Control\Session Manager\\BootExecute => Value was restored successfully.
HKU\seven\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Userinit => Value deleted successfully.
Roboscan_RTSrv => Service deleted successfully.
Roboscan_UpdSrv => Service deleted successfully.
RoboFww => Service deleted successfully.
RoboRtwIFDrv => Service deleted successfully.
MsMpSvc => Service deleted successfully.
NisSrv => Service deleted successfully.
C:\Program Files\Roboscan => Moved successfully.
c:\Program Files\Microsoft Security Client => Moved successfully.
==== End of Fixlog ====
Ho usato questo fixSPOILER (clicca per visualizzare)start
BootExecute: autocheck autochk * bootroboscan.exe
HKU\seven\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe [26624 2010-11-20] (Microsoft Corporation)
S2 Roboscan_RTSrv; C:\Program Files\Roboscan\Roboscan\RSRTSrv.rse [355688 2012-03-29] (Roboscan Inc)
S2 Roboscan_UpdSrv; C:\Program Files\Roboscan\Roboscan\RSUpdSrv.rse [606056 2012-03-29] (Roboscan Inc)
S3 RoboFww; c:\program files\roboscan\roboscan\plugin\realtime\RoboFww.sys [32064 2012-03-29] (Roboscan Inc)
S3 RoboRtwIFDrv; c:\program files\roboscan\roboscan\plugin\realtime\RoboRtw.sys [100160 2012-03-29] (Roboscan Inc)
S2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [20456 2013-01-27] (Microsoft Corporation)
S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [295232 2013-01-27] (Microsoft Corporation)
HKLM\...\exefile\open\command: <===== ATTENTION!
C:\Program Files\Roboscan
c:\Program Files\Microsoft Security Client
end
Che ho aperto usando questo sito http://b1.org/online perchè non potevo estrarlo col computer è qeullo che hai allegato poco fa. -
.
Non ha rivelato errori.
l'ho estratto ora provo il fix.
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 29-06-2013 01
Ran by SYSTEM at 2013-07-02 13:35:53 Run:2
Running from G:\
Boot Mode: Recovery
==============================================
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Userinit => Value was restored successfully.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell => Value was restored successfully.
HKU\seven\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell => Value not found.
C:\$Recycle.Bin\S-1-5-21-589101805-1279379778-812310743-1000\$381b76a2e37827a53b15dd0b75a72e9b => File/Directory not found.
C:\$Recycle.Bin\S-1-5-18\$381b76a2e37827a53b15dd0b75a72e9b => File/Directory not found.
C:\Users\seven\AppData\Roaming\skype.dat => File/Directory not found.
C:\Users\seven\AppData\Roaming\skype.ini => File/Directory not found.
HKLM\Software\Classes\.exe\\Default => Value was restored successfully.
HKLM\Software\Classes\exefile\DefaultIcon\\Default => Value was restored successfully.
==== End of Fixlog ==== -
.
Ecco il log SPOILER (clicca per visualizzare)Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 29-06-2013 01
Ran by SYSTEM on 02-07-2013 14:09:58
Running from G:\
WIN_7 (X86) OS Language: Italian Standard
Boot Mode: Recovery
The current controlset is ControlSet001
ATTENTION!:=====> FRST is updated to run from normal or Safe mode to produce a full FRST.txt log and Addition.txt log.
==================== Registry (Whitelisted) ==================
HKU\seven\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe [26624 2010-11-20] (Microsoft Corporation)
Startup: C:\Users\seven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
BootExecute: autocheck autochk * bootroboscan.exe
========================== Services (Whitelisted) =================
S2 Adobe Version Cue CS2; c:\Program Files\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe [163840 2005-04-04] (Adobe Systems Incorporated)
S4 BstHdAndroidSvc; C:\Program Files\BlueStacks\HD-Service.exe [397176 2012-08-21] (BlueStack Systems, Inc.)
S4 BstHdLogRotatorSvc; C:\Program Files\BlueStacks\HD-LogRotatorService.exe [384888 2012-08-21] (BlueStack Systems, Inc.)
S2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [20456 2013-01-27] (Microsoft Corporation)
S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [295232 2013-01-27] (Microsoft Corporation)
S2 NitroReaderDriverReadSpool3; C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe [196624 2012-10-30] (Nitro PDF Software)
S2 Roboscan_RTSrv; C:\Program Files\Roboscan\Roboscan\RSRTSrv.rse [355688 2012-03-29] (Roboscan Inc)
S2 Roboscan_UpdSrv; C:\Program Files\Roboscan\Roboscan\RSUpdSrv.rse [606056 2012-03-29] (Roboscan Inc)
S4 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [85776 2012-08-25] (SANDBOXIE L.T.D)
S3 WefiEngSvc; C:\Program Files\WeFi\WefiEngSvc.exe [120152 2010-11-03] (WeFi)
S3 rpcapd; "%ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini" [x]
==================== Drivers (Whitelisted) ====================
S2 BstHdDrv; C:\Program Files\BlueStacks\HD-Hypervisor-x86.sys [66424 2012-08-21] (BlueStack Systems)
S0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [195296 2013-01-20] (Microsoft Corporation)
S3 MTsensor; C:\Windows\System32\DRIVERS\ATKACPI.sys [7680 2007-07-31] (ATK0100)
S2 NPF; C:\Windows\System32\drivers\npf.sys [35088 2010-06-25] (CACE Technologies, Inc.)
S3 RoboFww; c:\program files\roboscan\roboscan\plugin\realtime\RoboFww.sys [32064 2012-03-29] (Roboscan Inc)
S3 RoboRtwIFDrv; c:\program files\roboscan\roboscan\plugin\realtime\RoboRtw.sys [100160 2012-03-29] (Roboscan Inc)
S3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [157776 2012-08-25] (SANDBOXIE L.T.D)
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-06-30 22:27 - 2013-06-30 22:27 - 00000000 ____D C:\FRST
2013-06-27 16:33 - 2013-06-27 16:33 - 00000000 __SHD C:\found.000
2013-06-27 15:42 - 2013-06-27 15:42 - 147062908 ____A C:\Windows\MEMORY.DMP
2013-06-26 22:28 - 2013-06-26 22:28 - 00000000 ____A C:\asdsetup.exe
2013-06-26 22:18 - 2013-06-26 22:19 - 00000000 ___AD C:\.Trash-0
2013-06-26 20:54 - 2013-06-26 22:01 - 00000000 ____D C:\Windows\pss
2013-06-26 20:05 - 2013-06-26 20:05 - 43253760 ____A C:\Windows\System32\config\software.bhv
2013-06-26 20:05 - 2013-06-26 20:05 - 24379392 ____A C:\Windows\System32\config\system.bhv
2013-06-26 20:05 - 2013-06-26 20:05 - 00524288 ____A C:\Windows\System32\config\default.bhv
2013-06-26 20:05 - 2013-06-26 20:05 - 00262144 ____A C:\Windows\System32\config\security.bhv
2013-06-26 20:05 - 2013-06-26 20:05 - 00262144 ____A C:\Windows\System32\config\sam.bhv
2013-06-26 20:05 - 2013-06-26 20:05 - 00000000 ___AD C:\$Anvi Rescue Disk$
2013-06-26 17:37 - 2013-06-26 17:41 - 38001894 ____A C:\Users\seven\Downloads\Come navigare nel Deep Web.mp4
2013-06-26 16:55 - 2013-06-26 22:02 - 00000000 ____D C:\Users\seven\AppData\Roaming\GetRight
2013-06-26 16:55 - 2013-06-26 22:02 - 00000000 ____D C:\Program Files\GetRight
2013-06-23 21:11 - 2013-06-26 21:51 - 00000891 ____A C:\Windows\setupact.log
2013-06-23 21:11 - 2013-06-23 21:11 - 00000000 ____A C:\Windows\setuperr.log
2013-06-21 02:09 - 2013-06-21 02:09 - 00000000 ____D C:\Users\seven\Downloads\Miei salvataggi
2013-06-19 22:16 - 2013-06-19 22:46 - 192163640 ____A C:\Users\seven\Downloads\Documentario su Parigi.mp4
2013-06-19 01:04 - 2013-06-19 01:04 - 00000000 ____D C:\Users\seven\Documents\The Prince of Codes
2013-06-18 16:25 - 2013-06-20 23:59 - 00000000 __SHD C:\Windows\System32\AI_RecycleBin
2013-06-18 16:19 - 2013-06-19 01:17 - 00000000 ____D C:\Program Files\PutLockerDownloader.com
2013-06-18 12:44 - 2013-06-18 12:44 - 00000000 ____D C:\Users\seven\Downloads\Vari Testi
2013-06-18 12:38 - 2013-06-19 00:05 - 00000000 ____D C:\Users\seven\Downloads\Video
2013-06-16 12:57 - 2013-06-16 13:29 - 00000000 ____D C:\Users\Public\Documents\STALKER-STCS
2013-06-16 12:49 - 2013-06-16 12:49 - 00000000 ____D C:\Program Files\Deep Silver
2013-06-14 23:42 - 2013-06-14 23:42 - 00000000 ____D C:\Users\seven\AppData\Roaming\AbaEnglishRt.19ECF44F1B9DAF7C7A64FDC21A008AB0C5135E2F.1
2013-06-14 23:37 - 2013-06-14 23:37 - 00000513 ____A C:\Users\seven\Desktop\ABA English Course.lnk
2013-06-14 23:35 - 2013-06-14 23:42 - 00000000 ____D C:\EnglishCourse
2013-06-14 23:35 - 2013-06-14 23:35 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2013-06-14 23:35 - 2013-06-14 23:35 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2013-06-14 23:35 - 2013-06-14 23:35 - 00000000 ____D C:\Program Files\Common Files\Adobe AIR
2013-06-14 22:57 - 2013-05-17 00:08 - 12329984 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-06-14 22:57 - 2013-05-16 23:49 - 09738752 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-06-14 22:57 - 2013-05-16 23:39 - 01800704 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-06-14 22:57 - 2013-05-16 23:28 - 01129472 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-06-14 22:57 - 2013-05-16 23:28 - 01104384 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-06-14 22:57 - 2013-05-16 23:27 - 01427968 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-06-14 22:57 - 2013-05-16 23:26 - 00231936 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2013-06-14 22:57 - 2013-05-16 23:23 - 00065024 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-06-14 22:57 - 2013-05-16 23:21 - 00717824 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-06-14 22:57 - 2013-05-16 23:21 - 00142848 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-06-14 22:57 - 2013-05-16 23:20 - 00420864 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-06-14 22:57 - 2013-05-16 23:19 - 00607744 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-06-14 22:57 - 2013-05-16 23:17 - 01796096 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-06-14 22:57 - 2013-05-16 23:17 - 00073216 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-06-14 22:57 - 2013-05-16 23:16 - 02382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-06-14 22:57 - 2013-05-16 23:12 - 00176640 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-06-14 22:11 - 2013-06-14 22:12 - 00161944 ____A C:\Users\seven\Downloads\corso-di-inglese-abaenglish-windows-downloader.exe
2013-06-14 19:43 - 2013-05-13 05:45 - 01160192 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2013-06-14 19:43 - 2013-05-13 05:45 - 00140288 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
2013-06-14 19:43 - 2013-05-13 05:45 - 00103936 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll
2013-06-14 19:43 - 2013-05-13 04:08 - 00903168 ____A (Microsoft Corporation) C:\Windows\System32\certutil.exe
2013-06-14 19:43 - 2013-05-13 04:08 - 00043008 ____A (Microsoft Corporation) C:\Windows\System32\certenc.dll
2013-06-14 19:43 - 2013-05-10 04:20 - 00024576 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll
2013-06-14 19:43 - 2013-05-08 06:38 - 01293672 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2013-06-14 19:43 - 2013-05-06 06:06 - 03968872 ____A (Microsoft Corporation) C:\Windows\System32\ntkrnlpa.exe
2013-06-14 19:43 - 2013-05-06 06:06 - 03913576 ____A (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
2013-06-14 19:43 - 2013-04-26 05:55 - 00492544 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll
2013-06-12 23:54 - 2013-06-26 22:10 - 00000000 ____D C:\Users\seven\Downloads\Da copiare nella chiavetta
2013-06-11 19:05 - 2013-06-23 21:13 - 00000000 ____D C:\Program Files\Steam
2013-06-11 19:05 - 2013-06-14 23:16 - 00000000 ____D C:\Program Files\Common Files\Steam
2013-06-11 18:56 - 2013-06-11 18:58 - 01669632 ____A C:\Users\seven\Downloads\SteamInstall.msi
2013-06-07 18:06 - 2012-11-09 23:21 - 00246760 ____A (Oracle Corporation) C:\Windows\System32\javaws.exe
2013-06-07 18:05 - 2012-11-09 23:21 - 00174056 ____A (Oracle Corporation) C:\Windows\System32\javaw.exe
2013-06-07 18:05 - 2012-11-09 23:21 - 00174056 ____A (Oracle Corporation) C:\Windows\System32\java.exe
2013-06-07 18:04 - 2013-06-07 18:04 - 00000000 ____D C:\Users\seven\Documents\VSO Downloader
2013-06-07 18:03 - 2013-06-07 18:03 - 00000000 ____D C:\Users\seven\AppData\Roaming\KastorFreeVideoCatcher
2013-06-07 18:03 - 2013-06-07 18:03 - 00000000 ____D C:\ProgramData\VSO
2013-06-07 18:03 - 2013-06-07 18:03 - 00000000 ____D C:\Program Files\VSO
2013-06-07 18:03 - 2013-06-07 18:03 - 00000000 ____D C:\Program Files\Kastor Free Video Catcher
2013-06-07 18:03 - 2008-09-24 19:33 - 00484352 ____A C:\Windows\System32\lame_enc.dll
2013-06-07 18:02 - 2013-06-26 22:10 - 00000000 ____D C:\Users\seven\AppData\Roaming\KastorAllVideoDownloader
2013-06-07 18:02 - 2013-06-07 18:02 - 00000000 ____D C:\Program Files\Kastor All Video Downloader
2013-06-07 18:01 - 2013-06-07 18:07 - 00000000 ____D C:\Program Files\TubeMaster++
2013-06-05 14:36 - 2013-06-05 19:02 - 00000000 ____D C:\Users\seven\Documents\SpellForce
2013-06-05 14:32 - 2013-06-05 14:32 - 00000926 ____A C:\Users\seven\Desktop\GameSpy Arcade.lnk
2013-06-05 14:32 - 2013-06-05 14:32 - 00000000 ____D C:\Program Files\GameSpy Arcade
2013-06-05 14:32 - 2013-06-05 14:32 - 00000000 ____D C:\Program Files\AWS
2013-06-05 14:31 - 2013-06-05 14:31 - 00001124 ____A C:\Users\seven\Desktop\SpellForce - The Order of Dawn.lnk
2013-06-05 14:25 - 2013-06-05 14:25 - 00000000 ____D C:\Program Files\JoWooD
2013-06-04 18:43 - 2013-06-04 18:43 - 00001104 ____A C:\Users\Public\Desktop\aTube Catcher.lnk
2013-06-04 18:31 - 2013-06-11 23:59 - 00000000 ____D C:\Users\seven\Downloads\Cfake
==================== One Month Modified Files and Folders ========
2013-06-30 22:27 - 2013-06-30 22:27 - 00000000 ____D C:\FRST
2013-06-27 16:33 - 2013-06-27 16:33 - 00000000 __SHD C:\found.000
2013-06-27 15:42 - 2013-06-27 15:42 - 147062908 ____A C:\Windows\MEMORY.DMP
2013-06-27 01:54 - 2013-01-25 15:33 - 00000318 ____A C:\Windows\System32\ayboot.ini
2013-06-26 22:28 - 2013-06-26 22:28 - 00000000 ____A C:\asdsetup.exe
2013-06-26 22:19 - 2013-06-26 22:18 - 00000000 ___AD C:\.Trash-0
2013-06-26 22:10 - 2013-06-12 23:54 - 00000000 ____D C:\Users\seven\Downloads\Da copiare nella chiavetta
2013-06-26 22:10 - 2013-06-07 18:02 - 00000000 ____D C:\Users\seven\AppData\Roaming\KastorAllVideoDownloader
2013-06-26 22:10 - 2012-12-17 21:36 - 00000000 ____D C:\Users\seven\AppData\Roaming\vlc
2013-06-26 22:10 - 2012-12-04 19:52 - 00000000 ____D C:\ProgramData\Ant.com
2013-06-26 22:10 - 2012-11-08 10:16 - 00000000 ____D C:\Windows\AutoKMS
2013-06-26 22:10 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\System32\wfp
2013-06-26 22:10 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\System32\NDF
2013-06-26 22:10 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\System32\DriverStore
2013-06-26 22:10 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\registration
2013-06-26 22:02 - 2013-06-26 16:55 - 00000000 ____D C:\Users\seven\AppData\Roaming\GetRight
2013-06-26 22:02 - 2013-06-26 16:55 - 00000000 ____D C:\Program Files\GetRight
2013-06-26 22:01 - 2013-06-26 20:54 - 00000000 ____D C:\Windows\pss
2013-06-26 21:52 - 2012-11-09 17:36 - 00000978 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-06-26 21:51 - 2013-06-23 21:11 - 00000891 ____A C:\Windows\setupact.log
2013-06-26 21:50 - 2012-11-14 23:31 - 00001132 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-06-26 21:50 - 2012-11-08 10:16 - 00000266 ____A C:\Windows\Tasks\AutoKMS.job
2013-06-26 21:50 - 2009-07-14 05:53 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-06-26 20:05 - 2013-06-26 20:05 - 43253760 ____A C:\Windows\System32\config\software.bhv
2013-06-26 20:05 - 2013-06-26 20:05 - 24379392 ____A C:\Windows\System32\config\system.bhv
2013-06-26 20:05 - 2013-06-26 20:05 - 00524288 ____A C:\Windows\System32\config\default.bhv
2013-06-26 20:05 - 2013-06-26 20:05 - 00262144 ____A C:\Windows\System32\config\security.bhv
2013-06-26 20:05 - 2013-06-26 20:05 - 00262144 ____A C:\Windows\System32\config\sam.bhv
2013-06-26 20:05 - 2013-06-26 20:05 - 00000000 ___AD C:\$Anvi Rescue Disk$
2013-06-26 18:47 - 2012-12-21 20:29 - 00000000 ____D C:\Users\seven\AppData\Roaming\NetSpeedMonitor
2013-06-26 17:41 - 2013-06-26 17:37 - 38001894 ____A C:\Users\seven\Downloads\Come navigare nel Deep Web.mp4
2013-06-26 17:28 - 2012-11-08 10:47 - 00000000 ____D C:\Users\seven\AppData\Roaming\Nitro PDF
2013-06-23 21:22 - 2012-12-14 23:53 - 01716519 ____A C:\Windows\WindowsUpdate.log
2013-06-23 21:22 - 2012-11-14 23:31 - 00001136 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-06-23 21:18 - 2009-07-14 05:34 - 00025616 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-06-23 21:18 - 2009-07-14 05:34 - 00025616 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-06-23 21:13 - 2013-06-11 19:05 - 00000000 ____D C:\Program Files\Steam
2013-06-23 21:11 - 2013-06-23 21:11 - 00000000 ____A C:\Windows\setuperr.log
2013-06-23 01:50 - 2012-11-07 11:35 - 01653742 ____A C:\Windows\System32\PerfStringBackup.INI
2013-06-23 01:50 - 2009-07-14 09:21 - 00739254 ____A C:\Windows\System32\perfh010.dat
2013-06-23 01:50 - 2009-07-14 09:21 - 00146294 ____A C:\Windows\System32\perfc010.dat
2013-06-21 02:09 - 2013-06-21 02:09 - 00000000 ____D C:\Users\seven\Downloads\Miei salvataggi
2013-06-20 23:59 - 2013-06-18 16:25 - 00000000 __SHD C:\Windows\System32\AI_RecycleBin
2013-06-20 23:59 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system
2013-06-20 01:01 - 2012-11-09 20:39 - 00000925 ____A C:\Users\Public\Desktop\CCleaner.lnk
2013-06-20 01:01 - 2012-11-09 20:39 - 00000000 ____D C:\Program Files\CCleaner
2013-06-20 00:42 - 2013-01-25 15:17 - 00000000 ____D C:\WinWebExplorer
2013-06-19 22:46 - 2013-06-19 22:16 - 192163640 ____A C:\Users\seven\Downloads\Documentario su Parigi.mp4
2013-06-19 01:17 - 2013-06-18 16:19 - 00000000 ____D C:\Program Files\PutLockerDownloader.com
2013-06-19 01:04 - 2013-06-19 01:04 - 00000000 ____D C:\Users\seven\Documents\The Prince of Codes
2013-06-19 00:05 - 2013-06-18 12:38 - 00000000 ____D C:\Users\seven\Downloads\Video
2013-06-18 12:44 - 2013-06-18 12:44 - 00000000 ____D C:\Users\seven\Downloads\Vari Testi
2013-06-16 23:41 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\Microsoft.NET
2013-06-16 13:29 - 2013-06-16 12:57 - 00000000 ____D C:\Users\Public\Documents\STALKER-STCS
2013-06-16 12:49 - 2013-06-16 12:49 - 00000000 ____D C:\Program Files\Deep Silver
2013-06-14 23:42 - 2013-06-14 23:42 - 00000000 ____D C:\Users\seven\AppData\Roaming\AbaEnglishRt.19ECF44F1B9DAF7C7A64FDC21A008AB0C5135E2F.1
2013-06-14 23:42 - 2013-06-14 23:35 - 00000000 ____D C:\EnglishCourse
2013-06-14 23:37 - 2013-06-14 23:37 - 00000513 ____A C:\Users\seven\Desktop\ABA English Course.lnk
2013-06-14 23:37 - 2012-11-08 15:33 - 00000000 ____D C:\Users\seven\AppData\Roaming\Adobe
2013-06-14 23:37 - 2012-11-08 15:28 - 00000000 ____D C:\ProgramData\Adobe
2013-06-14 23:35 - 2013-06-14 23:35 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2013-06-14 23:35 - 2013-06-14 23:35 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2013-06-14 23:35 - 2013-06-14 23:35 - 00000000 ____D C:\Program Files\Common Files\Adobe AIR
2013-06-14 23:35 - 2013-05-14 16:53 - 00000000 ____D C:\Users\seven\AppData\Local\Adobe
2013-06-14 23:35 - 2013-02-26 21:02 - 00000000 ____D C:\Program Files\Adobe
2013-06-14 23:16 - 2013-06-11 19:05 - 00000000 ____D C:\Program Files\Common Files\Steam
2013-06-14 23:10 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\System32\it-IT
2013-06-14 22:58 - 2012-11-07 12:14 - 73381792 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-06-14 22:12 - 2013-06-14 22:11 - 00161944 ____A C:\Users\seven\Downloads\corso-di-inglese-abaenglish-windows-downloader.exe
2013-06-12 22:52 - 2012-11-09 17:36 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerApp.exe
2013-06-12 22:52 - 2012-11-09 17:36 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerCPLApp.cpl
2013-06-11 23:59 - 2013-06-04 18:31 - 00000000 ____D C:\Users\seven\Downloads\Cfake
2013-06-11 18:58 - 2013-06-11 18:56 - 01669632 ____A C:\Users\seven\Downloads\SteamInstall.msi
2013-06-08 22:40 - 2012-12-15 22:03 - 00000000 ____D C:\Users\seven\Documents\Conersazioni What's App
2013-06-08 22:32 - 2013-01-29 15:14 - 00000000 ____D C:\Users\seven\.VirtualBox
2013-06-07 18:07 - 2013-06-07 18:01 - 00000000 ____D C:\Program Files\TubeMaster++
2013-06-07 18:06 - 2013-01-29 15:09 - 00000000 ____D C:\Program Files\Oracle
2013-06-07 18:05 - 2012-11-09 23:21 - 00000000 ____D C:\Program Files\Java
2013-06-07 18:04 - 2013-06-07 18:04 - 00000000 ____D C:\Users\seven\Documents\VSO Downloader
2013-06-07 18:03 - 2013-06-07 18:03 - 00000000 ____D C:\Users\seven\AppData\Roaming\KastorFreeVideoCatcher
2013-06-07 18:03 - 2013-06-07 18:03 - 00000000 ____D C:\ProgramData\VSO
2013-06-07 18:03 - 2013-06-07 18:03 - 00000000 ____D C:\Program Files\VSO
2013-06-07 18:03 - 2013-06-07 18:03 - 00000000 ____D C:\Program Files\Kastor Free Video Catcher
2013-06-07 18:02 - 2013-06-07 18:02 - 00000000 ____D C:\Program Files\Kastor All Video Downloader
2013-06-07 18:02 - 2012-12-10 21:26 - 00000000 ____D C:\Program Files\WinPcap
2013-06-05 19:02 - 2013-06-05 14:36 - 00000000 ____D C:\Users\seven\Documents\SpellForce
2013-06-05 14:32 - 2013-06-05 14:32 - 00000926 ____A C:\Users\seven\Desktop\GameSpy Arcade.lnk
2013-06-05 14:32 - 2013-06-05 14:32 - 00000000 ____D C:\Program Files\GameSpy Arcade
2013-06-05 14:32 - 2013-06-05 14:32 - 00000000 ____D C:\Program Files\AWS
2013-06-05 14:31 - 2013-06-05 14:31 - 00001124 ____A C:\Users\seven\Desktop\SpellForce - The Order of Dawn.lnk
2013-06-05 14:25 - 2013-06-05 14:25 - 00000000 ____D C:\Program Files\JoWooD
2013-06-05 00:23 - 2012-11-09 20:37 - 00000000 ____D C:\Users\seven\Downloads\eMule
2013-06-04 18:43 - 2013-06-04 18:43 - 00001104 ____A C:\Users\Public\Desktop\aTube Catcher.lnk
2013-06-04 18:42 - 2013-01-22 16:41 - 00000000 ____D C:\Program Files\DsNET Corp
2013-06-04 00:22 - 2013-02-18 18:04 - 00000000 ____D C:\Users\seven\Downloads\archpr22
2013-06-04 00:07 - 2012-11-08 23:11 - 00000000 ____D C:\Users\seven\AppData\Roaming\DVDVideoSoft
2013-06-03 23:39 - 2013-01-14 19:45 - 00000000 ____D C:\Users\seven\AppData\Roaming\uTorrent
2013-06-03 22:47 - 2012-12-15 22:52 - 00000000 ____D C:\Users\seven\AppData\Local\Paint.NET
==================== Known DLLs (Whitelisted) ============
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
==================== EXE ASSOCIATION =====================
HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: <===== ATTENTION!
==================== Restore Points =========================
Restore point made on: 2013-06-14 18:46:55
Restore point made on: 2013-06-14 22:55:42
Restore point made on: 2013-06-16 13:01:25
Restore point made on: 2013-06-18 16:20:39
Restore point made on: 2013-06-18 16:24:33
Restore point made on: 2013-06-19 01:04:22
Restore point made on: 2013-06-19 21:21:27
Restore point made on: 2013-06-20 23:59:37
Restore point made on: 2013-06-23 21:23:08
==================== Memory info ===========================
Percentage of memory in use: 13%
Total physical RAM: 3071.27 MB
Available physical RAM: 2657.49 MB
Total Pagefile: 3069.55 MB
Available Pagefile: 2662.82 MB
Total Virtual: 2047.88 MB
Available Virtual: 1934.03 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:297.99 GB) (Free:114.07 GB) NTFS
Drive g: () (Removable) (Total:7.47 GB) (Free:7.47 GB) FAT32
Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
Drive y: (Riservato per il sistema) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[System with boot components (obtained from reading drive)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298 GB) (Disk ID: 000997F0)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=298 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Size: 7 GB) (Disk ID: 70707573)
Partition 1: (Not Active) - (Size=923 GB) - (Type=0D)
Partition 2: (Not Active) - (Size=259 GB) - (Type=0A)
Partition 3: (Not Active) - (Size=844 GB) - (Type=6F)
Partition 4: (Not Active) - (Size=26 MB) - (Type=0A)
LastRegBack: 2013-05-14 15:37
==================== End Of Log ============================
Edited by vicky67 - 21/8/2013, 17:30