Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

My pc is working slow... it may be infected


  • Please log in to reply
25 replies to this topic

#1 Irenenella

Irenenella

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:02:16 AM

Posted 19 December 2013 - 09:36 AM

Hi there!! I have an Hp 530 with a Intel Celeron 530 processor and 2Gb of Ram.

I'm using Windows Vista Home Basic. I have Avira like antivirus.

 

It's almost a year that my mother is using this pc and it's getting slower and slower everyday. Maybe she have downladed something wrong or just she didn't clean it so much.

 

In these last days I've used C Cleaner, Duplicate cleaner and Revo Unisteller to get rid of thousands of useless files that we had in it.

 

I ask you if you could help me to check if everything is good to improve its working.

 

Thank you so much, 

 

Ire



BC AdBot (Login to Remove)

 


#2 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:16 PM

Posted 19 December 2013 - 09:49 AM

Welcome to the forums.

 

 

 

Please download MINITOOLBOX and run it.

Checkmark following boxes:



Flush DNS
Reset FF proxy Settings
Reset Ie Proxy Settings
Report IE Proxy Settings
Report FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List Devices (problems only)



Click Go and post the result.

 

 


Download Security Check by screen317 from here.


  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

Download Autoruns and Autorunsc Unzip it to your desktop and then double click autoruns.exe After the scan is finished then click on File>>>>>>>>>>>Save The default name will be autoruns.arn make sure to save it as Autoruns.txt under the file type option. in other words make sure it is a .txt file instead of .arn Attach the text in your next reply.

 

 


Update and do a quick scan with Malwarebytes remove all that it finds and reboot.
http://www.malwarebytes.org/mbam/program/mbam-setup.exe

Post the log here,

  • Please download Adware cleaner from the link below.
  • http://general-changelog-team.fr/fr/downloads/finish/20-outils-de-xplode/2-adwcleaner
  • Save it to your desktop.
  • Right click run as admin.
  • Hit the scan button.
  • Allow completion.
  • Make sure all items are ticked.
  • Hit the clean button.
  • Even if no items are displayed to be ticked hit the clean button anyway.
  • The machine will reboot this is normal.
  • Post the log in your next reply.

 

Please download JRT from here & double click to start the program.

  1. Hit any key when prompted and allow it to run through it's process.

    H2HaYv4.png
  2. Post the log when it's finished.


#3 Irenenella

Irenenella
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:02:16 AM

Posted 20 December 2013 - 04:11 AM

Hi! I've started to do all the operations. I have a problem with this:

 

Update and do a quick scan with Malwarebytes remove all that it finds and reboot.
http://www.malwarebytes.org/mbam/program/mbam-setup.exe

 

I tried several times to download it but it is not possible, it says "The requested URL /v0/program/data/mbam-setup-.exe was not found on this server."

 

Do you have other link for this page?



#4 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:16 PM

Posted 20 December 2013 - 04:14 AM

Not sure what is up with the link  get the free version from here.

 

 

http://www.bleepingcomputer.com/download/malwarebytes-anti-malware/


Edited by InadequateInfirmity, 20 December 2013 - 04:19 AM.


#5 Irenenella

Irenenella
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:02:16 AM

Posted 20 December 2013 - 07:23 AM

Ok so i start with the first steps:

 

MINITOOL BOX

MiniToolBox by Farbar  Version: 18-12-2013

Ran by Irene (administrator) on 20-12-2013 at 09:44:11

Running from "C:\Users\Irene\Downloads"

Microsoft® Windows Vista™ Home Basic  Service Pack 2 (X86)

Boot Mode: Normal

***************************************************************************

 

========================= Flush DNS: ===================================

 

Configurazione IP di Windows

 

Cache del resolver DNS svuotata.

 

========================= IE Proxy Settings: ==============================

 

Proxy is not enabled.

No Proxy Server is set.

 

"Reset IE Proxy Settings": IE Proxy Settings were reset.

 

========================= FF Proxy Settings: ==============================

 

 

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

 

========================= Hosts content: =================================

 

::1             localhost

 

127.0.0.1       localhost

 

========================= IP Configuration: ================================

 

WLAN Broadcom 802.11b/g = Connessione rete wireless (Connected)

Intel® PRO/100 VE Network Connection = Connessione alla rete locale (LAN) (Media disconnected)

 

 

# ----------------------------------

# Configurazione IPv4

# ----------------------------------

pushd interface ipv4

 

reset

set global icmpredirects=enabled

add address name="Connessione alla rete locale (LAN)" address=192.168.0.1

 

 

popd

# Fine configurazione IPv4

 

 

 

Configurazione IP di Windows

 

   Nome host . . . . . . . . . . . . . . : PC-Irene

   Suffisso DNS primario . . . . . . . . :

   Tipo nodo . . . . . . . . . . . . . . : Ibrido

   Routing IP abilitato. . . . . . . . . : No

   Proxy WINS abilitato . . . . . . . .  : No

   Elenco di ricerca suffissi DNS. . . . : lan

 

Scheda LAN wireless Connessione rete wireless:

 

   Suffisso DNS specifico per connessione: lan

   Descrizione . . . . . . . . . . . . . : WLAN Broadcom 802.11b/g

   Indirizzo fisico. . . . . . . . . . . : 00-21-00-29-4B-20

   DHCP abilitato. . . . . . . . . . . . : S

   Configurazione automatica abilitata   : S

   Indirizzo IPv6 locale rispetto al collegamento . : fe80::19b5:c3e1:fa46:91e8%10(Preferenziale)

   Indirizzo IPv4. . . . . . . . . . . . : 192.168.1.64(Preferenziale)

   Subnet mask . . . . . . . . . . . . . : 255.255.255.0

   Lease ottenuto. . . . . . . . . . . . : venerd 20 dicembre 2013 9.20.23

   Scadenza lease . . . . . . . . . . .  : sabato 21 dicembre 2013 9.20.22

   Gateway predefinito . . . . . . . . . : 192.168.1.254

   Server DHCP . . . . . . . . . . . . . : 192.168.1.254

   IAID DHCPv6 . . . . . . . . . . . : 234889472

   DUID Client DHCPv6. . . . . . . . : 00-01-00-01-11-14-A0-8E-00-1E-EC-7A-48-27

   Server DNS . . . . . . . . . . . . .  : 192.168.1.254

   NetBIOS su TCP/IP . . . . . . . . . . : Attivato

 

Scheda Ethernet Connessione alla rete locale (LAN):

 

   Stato supporto. . . . . . . . . . . . : Supporto disconnesso

   Suffisso DNS specifico per connessione:

   Descrizione . . . . . . . . . . . . . : Intel® PRO/100 VE Network Connection

   Indirizzo fisico. . . . . . . . . . . : 00-1E-EC-7A-48-27

   DHCP abilitato. . . . . . . . . . . . : No

   Configurazione automatica abilitata   : S

 

Scheda Tunnel Connessione alla rete locale (LAN)*:

 

   Stato supporto. . . . . . . . . . . . : Supporto disconnesso

   Suffisso DNS specifico per connessione:

   Descrizione . . . . . . . . . . . . . : isatap.sgt.cpqcorp.net

   Indirizzo fisico. . . . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP abilitato. . . . . . . . . . . . : No

   Configurazione automatica abilitata   : S

 

Scheda Tunnel Connessione alla rete locale (LAN)* 2:

 

   Stato supporto. . . . . . . . . . . . : Supporto disconnesso

   Suffisso DNS specifico per connessione:

   Descrizione . . . . . . . . . . . . . : isatap.lan

   Indirizzo fisico. . . . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP abilitato. . . . . . . . . . . . : No

   Configurazione automatica abilitata   : S

 

Scheda Tunnel Connessione alla rete locale (LAN)* 7:

 

   Suffisso DNS specifico per connessione:

   Descrizione . . . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface

   Indirizzo fisico. . . . . . . . . . . : 02-00-54-55-4E-01

   DHCP abilitato. . . . . . . . . . . . : No

   Configurazione automatica abilitata   : S

   Indirizzo IPv6 . . . . . . . . . . . . . . . . . : 2001:0:9d38:6abd:38ce:3a02:3f57:febf(Preferenziale)

   Indirizzo IPv6 locale rispetto al collegamento . : fe80::38ce:3a02:3f57:febf%12(Preferenziale)

   Gateway predefinito . . . . . . . . . : ::

   NetBIOS su TCP/IP . . . . . . . . . . : Disattivato

 

Scheda Tunnel Connessione alla rete locale (LAN)* 9:

 

   Stato supporto. . . . . . . . . . . . : Supporto disconnesso

   Suffisso DNS specifico per connessione:

   Descrizione . . . . . . . . . . . . . : Microsoft ISATAP Adapter #7

   Indirizzo fisico. . . . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP abilitato. . . . . . . . . . . . : No

   Configurazione automatica abilitata   : S

 

Scheda Tunnel Connessione alla rete locale (LAN)* 10:

 

   Stato supporto. . . . . . . . . . . . : Supporto disconnesso

   Suffisso DNS specifico per connessione: lan

   Descrizione . . . . . . . . . . . . . : isatap.lan

   Indirizzo fisico. . . . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP abilitato. . . . . . . . . . . . : No

   Configurazione automatica abilitata   : S

 

Scheda Tunnel Connessione alla rete locale (LAN)* 11:

 

   Stato supporto. . . . . . . . . . . . : Supporto disconnesso

   Suffisso DNS specifico per connessione:

   Descrizione . . . . . . . . . . . . . : Microsoft ISATAP Adapter #5

   Indirizzo fisico. . . . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP abilitato. . . . . . . . . . . . : No

   Configurazione automatica abilitata   : S

 

Scheda Tunnel Connessione alla rete locale (LAN)* 14:

 

   Stato supporto. . . . . . . . . . . . : Supporto disconnesso

   Suffisso DNS specifico per connessione:

   Descrizione . . . . . . . . . . . . . : Microsoft ISATAP Adapter #6

   Indirizzo fisico. . . . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP abilitato. . . . . . . . . . . . : No

   Configurazione automatica abilitata   : S

 

Scheda Tunnel Connessione alla rete locale (LAN)* 16:

 

   Stato supporto. . . . . . . . . . . . : Supporto disconnesso

   Suffisso DNS specifico per connessione:

   Descrizione . . . . . . . . . . . . . : Microsoft ISATAP Adapter #8

   Indirizzo fisico. . . . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP abilitato. . . . . . . . . . . . : No

   Configurazione automatica abilitata   : S

 

Scheda Tunnel Connessione alla rete locale (LAN)* 18:

 

   Stato supporto. . . . . . . . . . . . : Supporto disconnesso

   Suffisso DNS specifico per connessione:

   Descrizione . . . . . . . . . . . . . : 6TO4 Adapter

   Indirizzo fisico. . . . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP abilitato. . . . . . . . . . . . : No

   Configurazione automatica abilitata   : S

 

Scheda Tunnel Connessione alla rete locale (LAN)* 20:

 

   Stato supporto. . . . . . . . . . . . : Supporto disconnesso

   Suffisso DNS specifico per connessione:

   Descrizione . . . . . . . . . . . . . : Microsoft ISATAP Adapter #10

   Indirizzo fisico. . . . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP abilitato. . . . . . . . . . . . : No

   Configurazione automatica abilitata   : S

 

Scheda Tunnel Connessione alla rete locale (LAN)* 21:

 

   Stato supporto. . . . . . . . . . . . : Supporto disconnesso

   Suffisso DNS specifico per connessione:

   Descrizione . . . . . . . . . . . . . : Scheda Microsoft 6to4 #2

   Indirizzo fisico. . . . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP abilitato. . . . . . . . . . . . : No

   Configurazione automatica abilitata   : S

 

Scheda Tunnel Connessione alla rete locale (LAN)* 23:

 

   Stato supporto. . . . . . . . . . . . : Supporto disconnesso

   Suffisso DNS specifico per connessione:

   Descrizione . . . . . . . . . . . . . : Scheda Microsoft 6to4 #3

   Indirizzo fisico. . . . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP abilitato. . . . . . . . . . . . : No

   Configurazione automatica abilitata   : S

 

Scheda Tunnel Connessione alla rete locale (LAN)* 26:

 

   Stato supporto. . . . . . . . . . . . : Supporto disconnesso

   Suffisso DNS specifico per connessione:

   Descrizione . . . . . . . . . . . . . : isatap.{7158013D-E9B2-4D8A-ABE8-C30763845F98}

   Indirizzo fisico. . . . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP abilitato. . . . . . . . . . . . : No

   Configurazione automatica abilitata   : S

Server:  dsldevice.lan

Address:  192.168.1.254

 

Nome:    google.com

Addresses:  2a00:1450:4002:802::1009

                 173.194.35.46

                 173.194.35.32

                 173.194.35.33

                 173.194.35.34

                 173.194.35.35

                 173.194.35.36

                 173.194.35.37

                 173.194.35.38

                 173.194.35.39

                 173.194.35.40

                 173.194.35.41

 

 

 

Esecuzione di Ping google.com [173.194.35.32] con 32 byte di dati:

 

Risposta da 173.194.35.32: byte=32 durata=19ms TTL=53

 

Risposta da 173.194.35.32: byte=32 durata=18ms TTL=53

 

 

 

Statistiche Ping per 173.194.35.32:

 

    Pacchetti: Trasmessi = 2, Ricevuti = 2,

 

    Persi = 0 (0% persi),

 

Tempo approssimativo percorsi andata/ritorno in millisecondi:

 

    Minimo = 18ms, Massimo =  19ms, Medio =  18ms

 

Server:  dsldevice.lan

Address:  192.168.1.254

 

Nome:    yahoo.com

Addresses:  98.138.253.109

                 98.139.183.24

                 206.190.36.45

 

 

 

Esecuzione di Ping yahoo.com [206.190.36.45] con 32 byte di dati:

 

Risposta da 206.190.36.45: byte=32 durata=241ms TTL=44

 

Risposta da 206.190.36.45: byte=32 durata=196ms TTL=44

 

 

 

Statistiche Ping per 206.190.36.45:

 

    Pacchetti: Trasmessi = 2, Ricevuti = 2,

 

    Persi = 0 (0% persi),

 

Tempo approssimativo percorsi andata/ritorno in millisecondi:

 

    Minimo = 196ms, Massimo =  241ms, Medio =  218ms

 

 

 

Esecuzione di Ping 127.0.0.1 con 32 byte di dati:

 

Risposta da 127.0.0.1: byte=32 durata<1ms TTL=128

 

Risposta da 127.0.0.1: byte=32 durata<1ms TTL=128

 

 

 

Statistiche Ping per 127.0.0.1:

 

    Pacchetti: Trasmessi = 2, Ricevuti = 2,

 

    Persi = 0 (0% persi),

 

Tempo approssimativo percorsi andata/ritorno in millisecondi:

 

    Minimo = 0ms, Massimo =  0ms, Medio =  0ms

 

===========================================================================

Elenco interfacce

 10 ...00 21 00 29 4b 20 ...... WLAN Broadcom 802.11b/g

  9 ...00 1e ec 7a 48 27 ...... Intel® PRO/100 VE Network Connection

  1 ........................... Software Loopback Interface 1

  8 ...00 00 00 00 00 00 00 e0  isatap.sgt.cpqcorp.net

 32 ...00 00 00 00 00 00 00 e0  isatap.lan

 12 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface

 20 ...00 00 00 00 00 00 00 e0  Microsoft ISATAP Adapter #7

 33 ...00 00 00 00 00 00 00 e0  isatap.lan

 14 ...00 00 00 00 00 00 00 e0  Microsoft ISATAP Adapter #5

 19 ...00 00 00 00 00 00 00 e0  Microsoft ISATAP Adapter #6

 22 ...00 00 00 00 00 00 00 e0  Microsoft ISATAP Adapter #8

 23 ...00 00 00 00 00 00 00 e0  6TO4 Adapter

 27 ...00 00 00 00 00 00 00 e0  Microsoft ISATAP Adapter #10

 26 ...00 00 00 00 00 00 00 e0  Scheda Microsoft 6to4 #2

 28 ...00 00 00 00 00 00 00 e0  Scheda Microsoft 6to4 #3

 31 ...00 00 00 00 00 00 00 e0  isatap.{7158013D-E9B2-4D8A-ABE8-C30763845F98}

===========================================================================

 

IPv4 Tabella route

===========================================================================

Route attive:

     Indirizzo rete             Mask          Gateway     Interfaccia Metrica

          0.0.0.0          0.0.0.0    192.168.1.254     192.168.1.64     25

        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306

        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306

  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306

      192.168.1.0    255.255.255.0         On-link      192.168.1.64    281

     192.168.1.64  255.255.255.255         On-link      192.168.1.64    281

    192.168.1.255  255.255.255.255         On-link      192.168.1.64    281

        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306

        224.0.0.0        240.0.0.0         On-link      192.168.1.64    281

  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306

  255.255.255.255  255.255.255.255         On-link      192.168.1.64    281

===========================================================================

Route permanenti:

  Nessuna

 

IPv6 Tabella route

===========================================================================

Route attive:

 Interf Metrica Rete Destinazione      Gateway

 12     18 ::/0                     On-link

  1    306 ::1/128                  On-link

 12     18 2001::/32                On-link

 12    266 2001:0:9d38:6abd:38ce:3a02:3f57:febf/128

                                    On-link

 10    281 fe80::/64                On-link

 12    266 fe80::/64                On-link

 10    281 fe80::19b5:c3e1:fa46:91e8/128

                                    On-link

 12    266 fe80::38ce:3a02:3f57:febf/128

                                    On-link

  1    306 ff00::/8                 On-link

 12    266 ff00::/8                 On-link

 10    281 ff00::/8                 On-link

===========================================================================

Route permanenti:

  Nessuna

========================= Winsock entries =====================================

 

Catalog5 01 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)

Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)

Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)

Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)

Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)

Catalog5 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

Catalog5 07 C:\Windows\system32\winrnr.dll [19968] (Microsoft Corporation)

Catalog5 08 C:\Windows\system32\wshbth.dll [34304] (Microsoft Corporation)

Catalog9 01 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)

Catalog9 02 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)

Catalog9 03 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)

Catalog9 04 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)

Catalog9 05 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)

Catalog9 06 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)

Catalog9 07 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)

Catalog9 08 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)

Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

Catalog9 19 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

Catalog9 20 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)

Catalog9 21 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

Catalog9 22 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

Catalog9 23 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

Catalog9 24 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

Catalog9 25 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

Catalog9 26 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

Catalog9 27 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

Catalog9 28 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

Catalog9 29 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

Catalog9 30 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

Catalog9 31 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

Catalog9 32 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

Catalog9 33 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

Catalog9 34 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

Catalog9 35 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

Catalog9 36 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

Catalog9 37 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

Catalog9 38 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

Catalog9 39 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

Catalog9 40 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

Catalog9 41 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

Catalog9 42 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

 

========================= Event log errors: ===============================

 

Application errors:

==================

Error: (12/19/2013 08:12:05 PM) (Source: Windows Search Service) (User: )

Description: Impossibile aggiornare la voce <C:\USERS\IRENE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\EXTENSION RULES> nella mappa di hash.

 

Contesto: applicazione , catalogo SystemIndex

 

Dettagli:

               Un dispositivo collegato al sistema non è in funzione.   (0x8007001f)

 

Error: (12/19/2013 08:12:05 PM) (Source: Windows Search Service) (User: )

Description: Impossibile aggiornare la voce <C:\USERS\IRENE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\EXTENSION RULES> nella mappa di hash.

 

Contesto: applicazione , catalogo SystemIndex

 

Dettagli:

               Un dispositivo collegato al sistema non è in funzione.   (0x8007001f)

 

Error: (12/19/2013 03:20:02 PM) (Source: VSS) (User: )

Description: Errore del servizio Copia Shadow del volume: errore imprevisto durante la ricerca dell'interfaccia IVssWriterCallback. hr = 0x80070005.

L'errore è spesso causato da impostazioni di protezione non corrette nel processo di scrittura o richiedente.

 

 

Operazione:

   Raccolta dei dati del processo di scrittura

 

Contesto:

   ID della classe del processo di scrittura: {e8132975-6f93-4464-a53e-1050253ae220}

   Nome del processo di scrittura: System Writer

   ID dell'istanza del processo di scrittura: {e36bae9e-5638-44c0-b0e2-dced2955b87c}

 

Error: (12/19/2013 03:17:25 PM) (Source: VSS) (User: )

Description: Errore del servizio Copia Shadow del volume: errore imprevisto durante la ricerca dell'interfaccia IVssWriterCallback. hr = 0x80070005.

L'errore è spesso causato da impostazioni di protezione non corrette nel processo di scrittura o richiedente.

 

 

Operazione:

   Raccolta dei dati del processo di scrittura

 

Contesto:

   ID della classe del processo di scrittura: {e8132975-6f93-4464-a53e-1050253ae220}

   Nome del processo di scrittura: System Writer

   ID dell'istanza del processo di scrittura: {e36bae9e-5638-44c0-b0e2-dced2955b87c}

 

Error: (12/19/2013 03:14:55 PM) (Source: VSS) (User: )

Description: Errore del servizio Copia Shadow del volume: errore imprevisto durante la ricerca dell'interfaccia IVssWriterCallback. hr = 0x80070005.

L'errore è spesso causato da impostazioni di protezione non corrette nel processo di scrittura o richiedente.

 

 

Operazione:

   Raccolta dei dati del processo di scrittura

 

Contesto:

   ID della classe del processo di scrittura: {e8132975-6f93-4464-a53e-1050253ae220}

   Nome del processo di scrittura: System Writer

   ID dell'istanza del processo di scrittura: {e36bae9e-5638-44c0-b0e2-dced2955b87c}

 

Error: (12/19/2013 03:11:20 PM) (Source: VSS) (User: )

Description: Errore del servizio Copia Shadow del volume: errore imprevisto durante la ricerca dell'interfaccia IVssWriterCallback. hr = 0x80070005.

L'errore è spesso causato da impostazioni di protezione non corrette nel processo di scrittura o richiedente.

 

 

Operazione:

   Raccolta dei dati del processo di scrittura

 

Contesto:

   ID della classe del processo di scrittura: {e8132975-6f93-4464-a53e-1050253ae220}

   Nome del processo di scrittura: System Writer

   ID dell'istanza del processo di scrittura: {e36bae9e-5638-44c0-b0e2-dced2955b87c}

 

Error: (12/19/2013 03:06:41 PM) (Source: VSS) (User: )

Description: Errore del servizio Copia Shadow del volume: errore imprevisto durante la ricerca dell'interfaccia IVssWriterCallback. hr = 0x80070005.

L'errore è spesso causato da impostazioni di protezione non corrette nel processo di scrittura o richiedente.

 

 

Operazione:

   Raccolta dei dati del processo di scrittura

 

Contesto:

   ID della classe del processo di scrittura: {e8132975-6f93-4464-a53e-1050253ae220}

   Nome del processo di scrittura: System Writer

   ID dell'istanza del processo di scrittura: {e36bae9e-5638-44c0-b0e2-dced2955b87c}

 

Error: (12/19/2013 03:03:51 PM) (Source: MsiInstaller) (User: PC-Irene)

Description: Prodotto: Avira SearchFree Toolbar -- Errore 25001. Le seguenti applicazioni devono essere chiuse prima di continuare la disinstallazione:

 

Google Chrome

 

Error: (12/19/2013 03:03:50 PM) (Source: MsiInstaller) (User: PC-Irene)

Description: Prodotto: Avira SearchFree Toolbar -- Errore 25001. Le seguenti applicazioni devono essere chiuse prima di continuare la disinstallazione:

 

Google Chrome

 

Error: (12/19/2013 03:02:34 PM) (Source: VSS) (User: )

Description: Errore del servizio Copia Shadow del volume: errore imprevisto durante la ricerca dell'interfaccia IVssWriterCallback. hr = 0x80070005.

L'errore è spesso causato da impostazioni di protezione non corrette nel processo di scrittura o richiedente.

 

 

Operazione:

   Raccolta dei dati del processo di scrittura

 

Contesto:

   ID della classe del processo di scrittura: {e8132975-6f93-4464-a53e-1050253ae220}

   Nome del processo di scrittura: System Writer

   ID dell'istanza del processo di scrittura: {e36bae9e-5638-44c0-b0e2-dced2955b87c}

 

 

System errors:

=============

Error: (12/20/2013 09:22:19 AM) (Source: Service Control Manager) (User: )

Description: ntiomin

 

Error: (12/20/2013 09:20:15 AM) (Source: Dhcp) (User: )

Description: Il lease 192.168.1.64 dell'indirizzo IP della scheda di rete con indirizzo 002100294B20 è stato negato dal server DHCP 192.168.1.254. Il server DHCP ha inviato un messaggio DHCPNACK.

 

Error: (12/20/2013 09:20:05 AM) (Source: EventLog) (User: )

Description: Precedente arresto del sistema inatteso a 0.50.51 su 20/12/2013.

 

Error: (12/20/2013 00:47:08 AM) (Source: Service Control Manager) (User: )

Description: 30000Microsoft .NET Framework NGEN v4.0.30319_X86

 

Error: (12/20/2013 00:44:45 AM) (Source: Service Control Manager) (User: )

Description: ntiomin

 

Error: (12/19/2013 11:09:13 PM) (Source: DCOM) (User: )

Description: {C2BFE331-6739-4270-86C9-493D9A04CD38}

 

Error: (12/19/2013 02:57:57 PM) (Source: Service Control Manager) (User: )

Description: Computer Backup (MyPC Backup)1

 

Error: (12/19/2013 01:15:29 PM) (Source: Service Control Manager) (User: )

Description: ntiomin

 

Error: (12/18/2013 09:24:11 PM) (Source: Service Control Manager) (User: )

Description: ntiomin

 

Error: (12/18/2013 09:20:57 PM) (Source: EventLog) (User: )

Description: Precedente arresto del sistema inatteso a 21.10.17 su 18/12/2013.

 

 

Microsoft Office Sessions:

=========================

Error: (07/03/2013 04:10:47 PM) (Source: Microsoft Office 12 Sessions)(User: )

Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 18 seconds with 0 seconds of active time.  This session ended with a crash.

 

Error: (04/16/2013 06:37:58 PM) (Source: Microsoft Office 12 Sessions)(User: )

Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 75 seconds with 60 seconds of active time.  This session ended with a crash.

 

Error: (03/24/2013 07:03:01 PM) (Source: Microsoft Office 12 Sessions)(User: )

Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 276 seconds with 0 seconds of active time.  This session ended with a crash.

 

Error: (03/24/2013 10:17:18 AM) (Source: Microsoft Office 12 Sessions)(User: )

Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 13 seconds with 0 seconds of active time.  This session ended with a crash.

 

Error: (12/03/2009 09:46:26 PM) (Source: Microsoft Office 12 Sessions)(User: )

Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 257 seconds with 240 seconds of active time.  This session ended with a crash.

 

Error: (03/03/2009 05:27:38 PM) (Source: Microsoft Office 12 Sessions)(User: )

Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 584 seconds with 540 seconds of active time.  This session ended with a crash.

 

 

CodeIntegrity Errors:

===================================

  Date: 2013-02-14 23:08:30.366

  Description: Controllo dell'integrità del codice: impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys. Impossibile trovare l'insieme di hash dell'immagine per pagina nel sistema.

 

  Date: 2013-02-14 23:08:30.193

  Description: Controllo dell'integrità del codice: impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys. Impossibile trovare l'insieme di hash dell'immagine per pagina nel sistema.

 

  Date: 2013-02-14 23:08:30.036

  Description: Controllo dell'integrità del codice: impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys. Impossibile trovare l'insieme di hash dell'immagine per pagina nel sistema.

 

  Date: 2013-02-14 23:08:29.852

  Description: Controllo dell'integrità del codice: impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys. Impossibile trovare l'insieme di hash dell'immagine per pagina nel sistema.

 

  Date: 2013-02-14 23:08:29.665

  Description: Controllo dell'integrità del codice: impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys. Impossibile trovare l'insieme di hash dell'immagine per pagina nel sistema.

 

  Date: 2012-12-27 18:26:21.586

  Description: Controllo dell'integrità del codice: impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume1\Users\Irene\AppData\Local\Temp\{139E556B-E275-4223-868D-0A510B45934D}\{7926EFB6-7CB4-4A9D-AB01-095F67F9D519}\pavboot.sys. Impossibile trovare l'insieme di hash dell'immagine per pagina nel sistema.

 

  Date: 2012-12-27 18:26:21.346

  Description: Controllo dell'integrità del codice: impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume1\Users\Irene\AppData\Local\Temp\{139E556B-E275-4223-868D-0A510B45934D}\{7926EFB6-7CB4-4A9D-AB01-095F67F9D519}\pavboot.sys. Impossibile trovare l'insieme di hash dell'immagine per pagina nel sistema.

 

  Date: 2012-12-27 18:26:21.113

  Description: Controllo dell'integrità del codice: impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume1\Users\Irene\AppData\Local\Temp\{139E556B-E275-4223-868D-0A510B45934D}\{7926EFB6-7CB4-4A9D-AB01-095F67F9D519}\pavboot.sys. Impossibile trovare l'insieme di hash dell'immagine per pagina nel sistema.

 

  Date: 2012-12-27 18:26:20.920

  Description: Controllo dell'integrità del codice: impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume1\Users\Irene\AppData\Local\Temp\{139E556B-E275-4223-868D-0A510B45934D}\{7926EFB6-7CB4-4A9D-AB01-095F67F9D519}\pavboot.sys. Impossibile trovare l'insieme di hash dell'immagine per pagina nel sistema.

 

  Date: 2011-09-14 16:09:32.685

  Description: Controllo dell'integrità del codice: impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume1\Windows\System32\igdumd32.dll. Impossibile trovare l'insieme di hash dell'immagine per pagina nel sistema.

 

 

=========================== Installed Programs ============================

 

 Update for Microsoft Office 2007 (KB2508958)

Activation Assistant for the 2007 Microsoft Office suites

Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0)

ActiveCheck component for HP Active Support Library (Version: 3.0.0.2)

Adobe Flash Player 11 ActiveX (Version: 11.9.900.170)

Adobe Flash Player 11 Plugin (Version: 11.9.900.170)

Adobe Reader X (10.1.0) - Italiano (Version: 10.1.0)

Alice Messenger (Version: 2.1.0.4)

Apple Mobile Device Support (Version: 6.1.0.13)

Apple Software Update (Version: 2.1.3.127)

Application Installer 4.00.B13 (Version: 4.00.B13)

AVG PC TuneUp 2014 (it-IT) (Version: 14.0.1001.211)

AVG PC TuneUp 2014 (Version: 14.0.1001.211)

Avira Free Antivirus (Version: 14.0.2.286)

Avira SearchFree Toolbar (Version: 12.6.0.1900)

BatteryBar (remove only)

Bonjour (Version: 3.0.0.10)

Broadcom 802.11 Wireless LAN Adapter (Version: 4.170.25.4)

Business Contact Manager per Outlook 2007 SP2 (Version: 3.0.8619.1)

Canon MP250 series MP Drivers

CCleaner (Version: 4.08)

Componenti di connettività di Microsoft Office Small Business (Version: 2.0.7024.0)

Conexant HD Audio (Version: 4.36.7.61)

Core Temp version 0.99.8 (Version: 0.99.8)

CpuIdle (remove only)

D3DX10 (Version: 15.4.2368.0902)

DAEMON Tools Lite (Version: 4.41.3.0173)

DAEMON Tools Toolbar (Version: 1.1.8.0285)

DDR - Pen Drive Recovery (DEMO) 4.0.1.6 (Version: 4.0.1.6)

Duplicate Cleaner Free 3.2.1 (Version: 3.2.1)

EasyBCD 2.0 (Version: 2.0)

ESU for Microsoft Vista (Version: 1.0.19.1)

Eusing Free Registry Cleaner

File di supporto dell'installazione di Microsoft SQL Server (Italiano) (Version: 9.00.5000.00)

FlyCam (Version: 1.01)

foobar2000 v0.9.6.1 (Version: 0.9.6.1)

Gardenscapes - Mansion Makeover Premium Edition

GetRight

Google Chrome (Version: 31.0.1650.63)

Google Update Helper (Version: 1.3.22.3)

HDAUDIO Soft Data Fax Modem with SmartCP

HP Active Support Library (Version: 2.0.13.1)

HP Active Support Library 32 bit components (Version: 2.1.0)

HP Customer Experience Enhancements (Version: 5.3.0.2325)

HP Doc Viewer (Version: 1.01.0005)

HP Easy Setup - Frontend (Version: 5.3.0.2325)

HP Help and Support (Version: 1.2.2)

HP Notebook Accessories Product Tour (Version: 13.0.0)

HP Quick Launch Buttons 6.40 B2 (Version: 6.40 B2)

HP Update (Version: 4.000.005.007)

HP User Guides 0077 (Version: 1.02.0000)

HP Wireless Assistant (Version: 3.00 F1)

HPAsset component for HP Active Support Library (Version: 3.0.2.2)

iCare Data Recovery 4.1

Installer HP Backup and Recovery Manager (Version: 3.0.17)

Intel® Graphics Media Accelerator Driver

Intel® Network Connections Drivers

InterVideo DVD Check

InterVideo Register Manager (Version: 1.0.4.0)

InterVideo WinDVD

InterVideo WinDVD (Version: 5.0-B11.1166)

iTunes (Version: 11.0.2.26)

Java Auto Updater (Version: 2.0.3.1)

Java™ 6 Update 24 (Version: 6.0.240)

Java™ 6 Update 7 (Version: 1.6.0.70)

Java™ SE Runtime Environment 6 (Version: 1.6.0.0)

Junk Mail filter update (Version: 15.4.3502.0922)

Logitech Webcam Software (Version: 12.10.1113)

Machinarium (Version: 11.10.09)

Malwarebytes Anti-Malware versione 1.65.1.1000 (Version: 1.65.1.1000)

McAfee Security Scan Plus (Version: 3.8.130.10)

Mesh Runtime (Version: 15.4.5722.2)

Messenger Companion (Version: 15.4.3502.0922)

Microsoft .NET Framework 1.1 (Version: 1.1.4322)

Microsoft .NET Framework 1.1 Italian Language Pack (Version: 1.1.4322)

Microsoft .NET Framework 1.1 Security Update (KB2833941)

Microsoft .NET Framework 3.5 - Language Pack SP1 (italiano)

Microsoft .NET Framework 3.5 Language Pack SP1 - ita (Version: 3.5.30729)

Microsoft .NET Framework 3.5 SP1

Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)

Microsoft .NET Framework 4 Client Profile - Language Pack (ITA) (Version: 4.0.30319)

Microsoft .NET Framework 4 Client Profile ITA Language Pack (Version: 4.0.30319)

Microsoft .NET Framework 4.5.1 (Version: 4.5.50938)

Microsoft Application Error Reporting (Version: 12.0.6012.5000)

Microsoft Office 2003 - Componenti Web (Version: 11.0.8003.0)

Microsoft Office 2007 Primary Interop Assemblies (Version: 12.0.4518.1014)

Microsoft Office 2007 Service Pack 3 (SP3)

Microsoft Office Access MUI (Italian) 2007 (Version: 12.0.6612.1000)

Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)

Microsoft Office Excel 2007 Help - Aggiornamento (KB963678)

Microsoft Office Excel MUI (Italian) 2007 (Version: 12.0.6612.1000)

Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)

Microsoft Office Groove MUI (Italian) 2007 (Version: 12.0.6612.1000)

Microsoft Office InfoPath MUI (Italian) 2007 (Version: 12.0.6612.1000)

Microsoft Office OneNote MUI (Italian) 2007 (Version: 12.0.6612.1000)

Microsoft Office Outlook 2007 Help - Aggiornamento (KB963677)

Microsoft Office Outlook Connector (Version: 14.0.5118.5000)

Microsoft Office Outlook MUI (Italian) 2007 (Version: 12.0.6612.1000)

Microsoft Office Powerpoint 2007 Help - Aggiornamento (KB963669)

Microsoft Office PowerPoint MUI (Italian) 2007 (Version: 12.0.6612.1000)

Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)

Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)

Microsoft Office Proof (German) 2007 (Version: 12.0.6612.1000)

Microsoft Office Proof (Italian) 2007 (Version: 12.0.6612.1000)

Microsoft Office Proofing (Italian) 2007 (Version: 12.0.4518.1018)

Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)

Microsoft Office Publisher MUI (Italian) 2007 (Version: 12.0.6612.1000)

Microsoft Office Shared MUI (Italian) 2007 (Version: 12.0.6612.1000)

Microsoft Office Word 2007 Help - Aggiornamento (KB963665)

Microsoft Office Word MUI (Italian) 2007 (Version: 12.0.6612.1000)

Microsoft Silverlight (Version: 5.1.20913.0)

Microsoft SQL Server 2005

Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)

Microsoft SQL Server 2005 Express Edition (MSSMLBIZ) (Version: 9.4.5000.00)

Microsoft SQL Server Native Client (Version: 9.00.5000.00)

Microsoft SQL Server VSS Writer (Version: 9.00.5000.00)

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)

Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)

Mobiola Web Camera for S60 3.0.19

Mozilla Firefox 25.0.1 (x86 it) (Version: 25.0.1)

Mozilla Maintenance Service (Version: 25.0.1)

MSVC80_x86_v2 (Version: 1.0.3.0)

MSVC90_x86 (Version: 1.0.1.2)

MSVCRT (Version: 15.4.2862.0708)

MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)

MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)

Nokia Connectivity Cable Driver (Version: 7.1.45.0)

Nokia Ovi Suite (Version: 3.1.1.85)

Nokia Ovi Suite Software Updater (Version: 02.07.004.45780)

OpenOffice.org 3.0 (Version: 3.0.9358)

Ovi Desktop Sync Engine (Version: 1.5.266.0)

OviMPlatform (Version: 2.7.72.0)

Pacchetto driver Windows - Nokia pccsmcfd  (08/22/2008 7.0.0.0) (Version: 08/22/2008 7.0.0.0)

PC Connectivity Solution (Version: 11.4.19.0)

Raccolta foto di Windows Live (Version: 15.4.3502.0922)

Recuva (Version: 1.40)

Revo Uninstaller 1.94 (Version: 1.94)

Roxio Creator Audio (Version: 3.3.0)

Roxio Creator Basic v9 (Version: 3.3.0)

Roxio Creator Copy (Version: 3.3.0)

Roxio Creator Data (Version: 3.3.0)

Roxio Creator Tools (Version: 3.3.0)

Roxio Express Labeler 3 (Version: 2.1.0)

RTC Client API v1.3 msm (Version: 1.3)

Segoe UI (Version: 15.4.2271.0615)

Skype Click to Call (Version: 6.13.13771)

Skype™ 6.11 (Version: 6.11.102)

Softonic toolbar  on IE and Chrome (Version: 1.8.21.14)

Sonic Activation Module (Version: 1.0)

Supporto applicazioni Apple (Version: 2.3.3)

Synaptics Pointing Device Driver (Version: 11.0.7.0)

Update for 2007 Microsoft Office System (KB967642)

Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)

Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition

Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition

Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit Edition

uTorrentBar_IT Toolbar (Version: 6.9.0.16)

VideoLAN VLC media player 0.8.6d (Version: 0.8.6d)

Vista Default Settings (Version: 1.00 A1)

Windows Live Communications Platform (Version: 15.4.3502.0922)

Windows Live Essentials (Version: 15.4.3502.0922)

Windows Live Family Safety (Version: 15.4.3502.0922)

Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)

Windows Live Installer (Version: 15.4.3502.0922)

Windows Live Mail (Version: 15.4.3502.0922)

Windows Live Mesh (Version: 15.4.3502.0922)

Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)

Windows Live Messenger (Version: 15.4.3502.0922)

Windows Live Messenger Companion Core (Version: 15.4.3502.0922)

Windows Live MIME IFilter (Version: 15.4.3502.0922)

Windows Live Movie Maker (Version: 15.4.3502.0922)

Windows Live Photo Common (Version: 15.4.3502.0922)

Windows Live Photo Gallery (Version: 15.4.3502.0922)

Windows Live PIMT Platform (Version: 15.4.3502.0922)

Windows Live Remote Client (Version: 15.4.5722.2)

Windows Live Remote Client Resources (Version: 15.4.5722.2)

Windows Live Remote Service (Version: 15.4.5722.2)

Windows Live Remote Service Resources (Version: 15.4.5722.2)

Windows Live SOXE (Version: 15.4.3502.0922)

Windows Live SOXE Definitions (Version: 15.4.3502.0922)

Windows Live UX Platform (Version: 15.4.3502.0922)

Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)

Windows Live Writer (Version: 15.4.3502.0922)

Windows Live Writer Resources (Version: 15.4.3502.0922)

WinRAR 4.01 (32-bit) (Version: 4.01.0)

Yahoo! Detect

 

========================= Devices: ================================

 

Name:

Description:

Class Guid:

Manufacturer:

Service:

Problem: : The drivers for this device are not installed. (Code 28)

Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

 

Name:

Description:

Class Guid:

Manufacturer:

Service:

Problem: : The drivers for this device are not installed. (Code 28)

Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

 

 

========================= Memory info: ===================================

 

Percentage of memory in use: 82%

Total physical RAM: 2038.66 MB

Available physical RAM: 355.17 MB

Total Pagefile: 4312.59 MB

Available Pagefile: 2151.76 MB

Total Virtual: 2047.88 MB

Available Virtual: 1941.53 MB

 

========================= Partitions: =====================================

 

1 Drive c: () (Fixed) (Total:86.69 GB) (Free:25.66 GB) NTFS

3 Drive e: (OS_TOOLS) (Fixed) (Total:1.55 GB) (Free:1.32 GB) NTFS

4 Drive f: (HP_RECOVERY) (Fixed) (Total:7.43 GB) (Free:0.75 GB) NTFS

 

========================= Users: ========================================

 

Account utente per \\PC-IRENE

 

Administrator            Guest                    Irene                   

Esecuzione comando riuscita.

 

 

**** End of log ****

 

SECURITY CHECK

 

 

Results of screen317's Security Check version 0.99.77 

 Windows Vista Service Pack 2 x86  

 Internet Explorer 9 

 Internet Explorer 8 

``````````````Antivirus/Firewall Check:``````````````

Avira Desktop  

 Antivirus up to date!  

`````````Anti-malware/Other Utilities Check:`````````

 AVG PC TuneUp 2014 

 AVG PC TuneUp 2014 (it-IT)

 CCleaner    

 Duplicate Cleaner Free 3.2.1 

 Eusing Free Registry Cleaner 

 Java™ 6 Update 24 

 Java™ SE Runtime Environment 6

 Java™ 6 Update 7 

 Java version out of Date!

 Adobe Flash Player         11.9.900.170 

 Adobe Reader 10.1.0 Adobe Reader out of Date! 

 Mozilla Firefox (25.0.1)

 Google Chrome 31.0.1650.57 

 Google Chrome 31.0.1650.63 

````````Process Check: objlist.exe by Laurent```````` 

 Windows Defender MSASCui.exe

 Avira Antivir avgnt.exe

 Avira Antivir avguard.exe

 Microsoft Small Business Business Contact Manager BcmSqlStartupSvc.exe 

 Windows Defender MSASCui.exe  

`````````````````System Health check`````````````````

 Total Fragmentation on Drive C:  %

````````````````````End of Log``````````````````````



#6 Irenenella

Irenenella
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:02:16 AM

Posted 20 December 2013 - 07:27 AM

And i continue here with the others...
 
MALWARE BYTES
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
 
Versione database: v2013.12.20.03
                         
Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Irene :: PC-IRENE [amministratore]
 
20/12/2013 11.42.27
mbam-log-2013-12-20 (11-42-27).txt
 
Tipo di scansione: Scansione veloce
Opzioni di scansione attive: Memoria | Esecuzione automatica | Registro | File di sistema | Euristica/Extra | Euristica/Shuriken | PUP | PUM
Opzioni di scansione disattivate: P2P
Elementi esaminati: 214502
Tempo impiegato: 15 minuti, 18 secondi
 
Processi rilevati in memoria: 0
(non sono stati rilevati elementi nocivi)
 
Moduli di memoria rilevati: 0
(non sono stati rilevati elementi nocivi)
 
Chiavi di registro rilevate: 5
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199} (PUP.Optional.Iminent.A) -> Nessuna azione intrapresa.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48d2-9061-8BBD4899EB08} (PUP.Optional.Iminent.A) -> Nessuna azione intrapresa.
HKCU\Software\1ClickDownload (PUP.Optional.1ClickDownload.A) -> Nessuna azione intrapresa.
HKCU\Software\Iminent (PUP.Optional.Iminent.A) -> Nessuna azione intrapresa.
HKLM\Software\Iminent (PUP.Optional.Iminent.A) -> Nessuna azione intrapresa.
 
Valori di registro rilevati: 0
(non sono stati rilevati elementi nocivi)
 
Voci rilevate nei dati di registro: 0
(non sono stati rilevati elementi nocivi)
 
Cartelle rilevate: 3
C:\Users\Irene\AppData\Roaming\OpenCandy (PUP.Optional.OpenCandy) -> Nessuna azione intrapresa.
C:\Users\Irene\AppData\Roaming\OpenCandy\00A8B72080F84BEC911AD6EC7B6C40FC (PUP.Optional.OpenCandy) -> Nessuna azione intrapresa.
C:\Users\Irene\AppData\Roaming\OpenCandy\C2A86D25C38E4973B4D94D77C80E2C5F (PUP.Optional.OpenCandy) -> Nessuna azione intrapresa.
 
File rilevati: 10
C:\Users\Irene\Downloads\JewelQuest3SDM.exe (PUP.Optional.SweetIM) -> Nessuna azione intrapresa.
C:\Users\Irene\Downloads\DuplicateCleaner_setup.exe (PUP.Optional.OpenCandy) -> Nessuna azione intrapresa.
C:\Users\Irene\Downloads\MahjonggMysteriesSDM.exe (PUP.Optional.SweetIM) -> Nessuna azione intrapresa.
C:\Users\Irene\Downloads\BubblehitSetup (1).exe (PUP.Optional.SweetIM) -> Nessuna azione intrapresa.
C:\Users\Irene\Downloads\BubblehitSetup (2).exe (PUP.Optional.SweetIM) -> Nessuna azione intrapresa.
C:\Users\Irene\Downloads\BubblehitSetup (3).exe (PUP.Optional.SweetIM) -> Nessuna azione intrapresa.
C:\Users\Irene\Downloads\BubblehitSetup.exe (PUP.Optional.SweetIM) -> Nessuna azione intrapresa.
C:\Users\Irene\AppData\Local\Conduit\CT2851640\uTorrentBar_ITAutoUpdateHelper.exe (PUP.Optional.Conduit.A) -> Nessuna azione intrapresa.
C:\Users\Irene\AppData\Roaming\OpenCandy\00A8B72080F84BEC911AD6EC7B6C40FC\avg_tuht_stf_it_2014_211_IT-1day.exe (PUP.Optional.OpenCandy) -> Nessuna azione intrapresa.
C:\Users\Irene\AppData\Roaming\OpenCandy\C2A86D25C38E4973B4D94D77C80E2C5F\Setupsft_chr_p1v7.exe (PUP.Optional.OpenCandy) -> Nessuna azione intrapresa.
 
(fine)
 
ADW CLEANER
 
# AdwCleaner v3.015 - Report created 20/12/2013 at 12:02:19
# Updated 10/12/2013 by Xplode
# Operating System : Windows Vista ™ Home Basic Service Pack 2 (32 bits)
# Username : Irene - PC-IRENE
# Running from : C:\Users\Irene\Downloads\adwcleaner.exe
# Option : Clean
 
***** [ Services ] *****
                        
 
***** [ Files / Folders ] *****
 
Folder Deleted : C:\ProgramData\Trymedia
Folder Deleted : C:\Program Files\Conduit
Folder Deleted : C:\Program Files\DAEMON Tools Toolbar
Folder Deleted : C:\Program Files\MyPC Backup
Folder Deleted : C:\Program Files\Softonic
Folder Deleted : C:\Program Files\uTorrentBar_IT
Folder Deleted : C:\Users\Irene\AppData\Local\Conduit
Folder Deleted : C:\Users\Irene\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Irene\AppData\LocalLow\PriceGong
Folder Deleted : C:\Users\Irene\AppData\LocalLow\uTorrentBar_IT
Folder Deleted : C:\Users\Irene\AppData\Roaming\OpenCandy
Folder Deleted : C:\Users\Irene\AppData\Roaming\Softonic
Folder Deleted : C:\Users\Irene\AppData\Roaming\Systweak
Folder Deleted : C:\Users\Irene\AppData\Roaming\Uniblue\SpeedUpMyPC
Folder Deleted : C:\Users\Irene\AppData\Roaming\Mozilla\Firefox\Profiles\8ett62a7.default\Smartbar
Folder Deleted : C:\Users\Irene\AppData\Roaming\Mozilla\Firefox\Profiles\8ett62a7.default\Extensions\DTToolbar@toolbarnet.com
Folder Deleted : C:\Users\Irene\AppData\Local\Google\Chrome\User Data\Default\Extensions\elchiiiejkobdbblfejjkbphbddgmljf
Folder Deleted : C:\Users\Irene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncdghcmanhfigpijjllopocpcnjffkhl
File Deleted : C:\Users\Irene\AppData\Roaming\Mozilla\Firefox\Profiles\8ett62a7.default\invalidprefs.js
File Deleted : C:\Users\Irene\AppData\Roaming\Mozilla\Firefox\Profiles\8ett62a7.default\searchplugins\ask-search.xml
File Deleted : C:\Users\Irene\AppData\Roaming\Mozilla\Firefox\Profiles\8ett62a7.default\searchplugins\bingp.xml
File Deleted : C:\Users\Irene\AppData\Roaming\Mozilla\Firefox\Profiles\8ett62a7.default\searchplugins\Conduit.xml
File Deleted : C:\Users\Irene\AppData\Roaming\Mozilla\Firefox\Profiles\8ett62a7.default\searchplugins\daemon-search.xml
File Deleted : C:\Users\Irene\AppData\Roaming\Mozilla\Firefox\Profiles\8ett62a7.default\searchplugins\softonic.xml
File Deleted : C:\Users\Irene\AppData\Roaming\Mozilla\Firefox\Profiles\8ett62a7.default\user.js
File Deleted : C:\Users\Irene\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_igdhbblpcellaljokkpfhcjlagemhgjl_0.localstorage
File Deleted : C:\Windows\System32\Tasks\LaunchApp
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [webbooster@iminent.com]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\elchiiiejkobdbblfejjkbphbddgmljf
Key Deleted : HKCU\Software\Google\Chrome\Extensions\ncdghcmanhfigpijjllopocpcnjffkhl
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ncdghcmanhfigpijjllopocpcnjffkhl
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5FCCC125-A860-4F07-8E88-2D3FE9B81211}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5FCCC125-A860-4F07-8E88-2D3FE9B81211}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Deleted : HKLM\SOFTWARE\Classes\driverscanner
Key Deleted : HKLM\SOFTWARE\Classes\DTToolbar.ToolBandObj
Key Deleted : HKLM\SOFTWARE\Classes\DTToolbar.ToolBandObj.1
Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane
Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Key Deleted : HKLM\SOFTWARE\Classes\S
Key Deleted : HKLM\SOFTWARE\Classes\Softonic.dskBnd
Key Deleted : HKLM\SOFTWARE\Classes\Softonic.dskBnd.1
Key Deleted : HKLM\SOFTWARE\Classes\Softonic.SoftonicHlpr
Key Deleted : HKLM\SOFTWARE\Classes\Softonic.SoftonicHlpr.1
Key Deleted : HKLM\SOFTWARE\Classes\SoftonicApp.appCore
Key Deleted : HKLM\SOFTWARE\Classes\SoftonicApp.appCore.1
Key Deleted : HKLM\SOFTWARE\Classes\srv.SoftonicSrvc
Key Deleted : HKLM\SOFTWARE\Classes\srv.SoftonicSrvc.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_5045&SUBSYS_103C30B7
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2851640
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{7ABBFE1C-E485-44AA-8F36-353751B4124D}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B15F118E-AF21-45E8-A809-29FDD7362565}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{44B50C01-4993-48E2-ADEE-D812BAE2E9A2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5018CFD2-804D-4C99-9F81-25EAEA2769DE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A3E2F089-DDBB-4CBF-B06C-5D44DA316ED3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A5679AB0-C59E-49E7-83C4-5289F844A6E0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CA0167C2-6295-41B8-9BDA-704B2F5E4CD9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E87806B5-E908-45FD-AF5E-957D83E58E68}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4AE0C3D6-F713-4EED-BC65-25DC3FFDAAC1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C5D1D828-B1DC-4924-91EB-AC21CC94B0AA}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{854145C6-B95A-408D-BE86-367DC393A219}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{087CDC12-0A11-4D1D-8DCF-44185D7C3496}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{088BF3A9-6AE8-47B9-A3FB-26262F236C79}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2AC7B9EB-3881-4EB9-8DEE-0A731A309FDE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{349C0469-ACDD-49DF-9B3E-0D82E7C7DC4D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{41226591-6F7A-4082-B63A-67FE4A0CF7A6}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55D69CD1-6715-4C40-BF05-9519AC4DC6E6}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66C8FD57-54C4-4D4F-BC95-DCCC763B410A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{717BAE33-7061-4279-8AE5-6C13BC8AF3F9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{84F06F7A-F811-48D7-8B34-3F4145183D8F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{88F6D55F-AA3F-4003-BE69-4AC1998D6492}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8DBCDED5-08AD-41A2-9BBC-235D84F4FE06}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A0F66203-1A86-4812-9603-A57E09A4D7A3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BC39D1B3-4471-41C1-AACA-E097FAF4B7AA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DEB85542-1311-4EC6-8A32-5372EB27FC94}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{11D9E165-B8C1-4734-A56C-BC4FCACA966B}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{B15F118E-AF21-45E8-A809-29FDD7362565}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E87806B5-E908-45FD-AF5E-957D83E58E68}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4AE0C3D6-F713-4EED-BC65-25DC3FFDAAC1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5018CFD2-804D-4C99-9F81-25EAEA2769DE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4AE0C3D6-F713-4EED-BC65-25DC3FFDAAC1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4AE0C3D6-F713-4EED-BC65-25DC3FFDAAC1}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{854145C6-B95A-408D-BE86-367DC393A219}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9CF034EA-7B46-48D3-8895-8A14B32AE445}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{07334C0C-C91E-48C8-A8F7-152AD186A093}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A47F988E-111E-43B1-B6EA-0323DBB5C5A7}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{5018CFD2-804D-4C99-9F81-25EAEA2769DE}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{4AE0C3D6-F713-4EED-BC65-25DC3FFDAAC1}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{4AE0C3D6-F713-4EED-BC65-25DC3FFDAAC1}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{4AE0C3D6-F713-4EED-BC65-25DC3FFDAAC1}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{4AE0C3D6-F713-4EED-BC65-25DC3FFDAAC1}]
Key Deleted : HKCU\Software\1ClickDownload
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\dt soft\daemon tools toolbar
Key Deleted : HKCU\Software\Headlight
Key Deleted : HKCU\Software\Iminent
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\systweak
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKCU\Software\uTorrentBar_IT
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\Software\uTorrentBar_IT
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\Description
Key Deleted : HKLM\Software\dt soft\daemon tools toolbar
Key Deleted : HKLM\Software\Headlight
Key Deleted : HKLM\Software\Iminent
Key Deleted : HKLM\Software\Softonic
Key Deleted : HKLM\Software\systweak
Key Deleted : HKLM\Software\Trymedia Systems
Key Deleted : HKLM\Software\Uniblue
Key Deleted : HKLM\Software\uTorrentBar_IT
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\daemon tools toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Softonic
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\uTorrentBar_IT Toolbar
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\daemon tools toolbar
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\MyPC Backup
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Softonic
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\uTorrentBar_IT Toolbar
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08121C32A9C319F4CB0C11FF059552A4
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v9.0.8112.16526
 
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls [Tabs]
 
-\\ Mozilla Firefox v25.0.1 (it)
 
[ File : C:\Users\Irene\AppData\Roaming\Mozilla\Firefox\Profiles\8ett62a7.default\prefs.js ]
 
Line Deleted : user_pref("CT2851640.1000234.TWC_TMP_city", "MILANO");
Line Deleted : user_pref("CT2851640.1000234.TWC_TMP_country", "IT");
Line Deleted : user_pref("CT2851640.1000234.TWC_locId", "USTX0892");
Line Deleted : user_pref("CT2851640.1000234.TWC_location", "Milano, TX");
Line Deleted : user_pref("CT2851640.1000234.TWC_region", "OT");
Line Deleted : user_pref("CT2851640.1000234.TWC_temp_dis", "c");
Line Deleted : user_pref("CT2851640.1000234.TWC_wind_dis", "kmh");
Line Deleted : user_pref("CT2851640.1000234.weatherData", "{\"icon\":\"27.png\",\"temperature\":\"17°C\",\"temperatureClear\":\"17°C\",\"highTemperature\":\"27ÂÂÂ[...]
Line Deleted : user_pref("CT2851640.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Deleted : user_pref("CT2851640.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Deleted : user_pref("CT2851640.FirstTime", "true");
Line Deleted : user_pref("CT2851640.FirstTimeFF3", "true");
Line Deleted : user_pref("CT2851640.PairingKey", "D121026A02BE276405EF6B5E8B0CCDB93E1D66CF");
Line Deleted : user_pref("CT2851640.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2851640&SearchSource=2&q=");
Line Deleted : user_pref("CT2851640.UserID", "UN76708473284783533");
Line Deleted : user_pref("CT2851640.addressBarTakeOverEnabledInHidden", "true");
Line Deleted : user_pref("CT2851640.autoDisableScopes", -1);
Line Deleted : user_pref("CT2851640.browser.search.defaultthis.engineName", true);
Line Deleted : user_pref("CT2851640.cb_experience_000", "1");
Line Deleted : user_pref("CT2851640.cb_firstuse0100", "1");
Line Deleted : user_pref("CT2851640.cbcountry_001", "IT");
Line Deleted : user_pref("CT2851640.cbfirsttime", "Fri Oct 26 2012 10:33:38 GMT+0200 (ora legale Europa occidentale)");
Line Deleted : user_pref("CT2851640.embeddedsData", "[{\"appId\":\"129351530187463046\",\"apiPermissions\":{\"crossDomainAjax\":true,\"getMainFrameTitle\":true,\"getMainFrameUrl\":true,\"getSearchTerm\":true,\"insta[...]
Line Deleted : user_pref("CT2851640.enableAlerts", "always");
Line Deleted : user_pref("CT2851640.enableSearchFromAddressBar", "true");
Line Deleted : user_pref("CT2851640.firstTimeDialogOpened", "true");
Line Deleted : user_pref("CT2851640.fixPageNotFoundError", "true");
Line Deleted : user_pref("CT2851640.fixPageNotFoundErrorInHidden", "true");
Line Deleted : user_pref("CT2851640.fixUrls", true);
Line Deleted : user_pref("CT2851640.hxxp___socialgrowthtechnologies_com_couponbuddy_v002.APP_WIN_FEATURES", "openposition=offset:50;50,savelocation=0,resizable=no,scrollbars=no,titlebar=yes,saveresizedsize=no");
Line Deleted : user_pref("CT2851640.installId", "fftEB59.tmp.exe");
Line Deleted : user_pref("CT2851640.installType", "XPE");
Line Deleted : user_pref("CT2851640.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Deleted : user_pref("CT2851640.isNewTabEnabled", true);
Line Deleted : user_pref("CT2851640.isPerformedSmartBarTransition", "true");
Line Deleted : user_pref("CT2851640.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT2851640.isWelcomPage", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
Line Deleted : user_pref("CT2851640.keyword", true);
Line Deleted : user_pref("CT2851640.navigationAliasesJson", "{\"EB_MAIN_FRAME_URL\":\"hxxp%3A%2F%2Fwww.auto-km-0.com%2Fcategory%2Fsondaggi%2F\",\"EB_MAIN_FRAME_TITLE\":\"%0ASondaggi%26nbsp%3BAuto%20km%200%20nuove%20[...]
Line Deleted : user_pref("CT2851640.newSettings", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
Line Deleted : user_pref("CT2851640.openThankYouPage", "true");
Line Deleted : user_pref("CT2851640.openUninstallPage", "FALSE");
Line Deleted : user_pref("CT2851640.scriptSource", "hxxp://127.0.0.1:10000/gui/");
Line Deleted : user_pref("CT2851640.search.searchAppId", "129351530187463046");
Line Deleted : user_pref("CT2851640.search.searchCount", "2");
Line Deleted : user_pref("CT2851640.searchInNewTabEnabledInHidden", "true");
Line Deleted : user_pref("CT2851640.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Deleted : user_pref("CT2851640.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Deleted : user_pref("CT2851640.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
Line Deleted : user_pref("CT2851640.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\"}");
Line Deleted : user_pref("CT2851640.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"data\":\"CT2851640\"}");
Line Deleted : user_pref("CT2851640.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"string\",\"data\":\"hxxp://uTorrentBarIT.OurToolbar.com//xpi\"}");
Line Deleted : user_pref("CT2851640.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"string\",\"data\":\"uTorrentBar_IT\"}");
Line Deleted : user_pref("CT2851640.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Deleted : user_pref("CT2851640.serviceLayer_service_usage_toolbarUsageCount", "{\"dataType\":\"number\",\"data\":\"2\"}");
Line Deleted : user_pref("CT2851640.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1352384133575");
Line Deleted : user_pref("CT2851640.serviceLayer_services_appsMetadata_lastUpdate", "1352495345487");
Line Deleted : user_pref("CT2851640.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1352495465063");
Line Deleted : user_pref("CT2851640.serviceLayer_services_login_10.10.27.6_lastUpdate", "1355163903439");
Line Deleted : user_pref("CT2851640.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1352495465131");
Line Deleted : user_pref("CT2851640.serviceLayer_services_searchAPI_lastUpdate", "1352495345650");
Line Deleted : user_pref("CT2851640.serviceLayer_services_serviceMap_lastUpdate", "1355163902950");
Line Deleted : user_pref("CT2851640.serviceLayer_services_toolbarContextMenu_lastUpdate", "1352495464997");
Line Deleted : user_pref("CT2851640.serviceLayer_services_toolbarSettings_lastUpdate", "1355172905542");
Line Deleted : user_pref("CT2851640.serviceLayer_services_translation_lastUpdate", "1355163903083");
Line Deleted : user_pref("CT2851640.settingsINI", true);
Line Deleted : user_pref("CT2851640.shouldFirstTimeDialog", "false");
Line Deleted : user_pref("CT2851640.smartbar.CTID", "CT2851640");
Line Deleted : user_pref("CT2851640.smartbar.Uninstall", "0");
Line Deleted : user_pref("CT2851640.smartbar.homepage", true);
Line Deleted : user_pref("CT2851640.smartbar.isHidden", true);
Line Deleted : user_pref("CT2851640.smartbar.toolbarName", "uTorrentBar_IT ");
Line Deleted : user_pref("CT2851640.startPage", "TRUE");
Line Deleted : user_pref("CT2851640.toolbarBornServerTime", "26-10-2012");
Line Deleted : user_pref("CT2851640.toolbarCurrentServerTime", "10-12-2012");
Line Deleted : user_pref("CT2851640.uTTorrents", "{\"build\":28086,\"label\":[],\"torrents\":[],\"torrentc\":\"380826633\",\"rssfeeds\":[],\"rssfilters\":[]}");
Line Deleted : user_pref("CT2851640.url_history0001", "hxxp://poste.it/postali/estero/quickpack.shtml:::clickhandler:::1352497217978,,,hxxp://poste.it/postali/estero/assicurata.shtml:::clickhandler:::1352497227299,,[...]
Line Deleted : user_pref("Smartbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT2851640&SearchSource=13");
Line Deleted : user_pref("Smartbar.ConduitSearchEngineList", "");
Line Deleted : user_pref("Smartbar.ConduitSearchUrlList", "");
Line Deleted : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.properties");
Line Deleted : user_pref("Smartbar.keywordURLSelectedCTID", "CT2851640");
Line Deleted : user_pref("extensions.Softonic.autoRvrt", "false");
Line Deleted : user_pref("extensions.Softonic.dfltSrch", true);
Line Deleted : user_pref("extensions.Softonic.dnsErr", true);
Line Deleted : user_pref("extensions.Softonic.hmpg", true);
Line Deleted : user_pref("extensions.Softonic.hmpgUrl", "hxxp://search.softonic.com/MOY00621/tb_v1?SearchSource=13&cc=&mi=6f6f6d55000000000000002100294b20");
Line Deleted : user_pref("extensions.Softonic.newTab", true);
Line Deleted : user_pref("extensions.Softonic.newTabUrl", "hxxp://search.softonic.com/MOY00621/tb_v1/?SearchSource=15&cc=&mi=6f6f6d55000000000000002100294b20");
Line Deleted : user_pref("extensions.Softonic.rvrt", "false");
Line Deleted : user_pref("extensions.Softonic.srchPrvdr", "Search the web (Softonic)");
 
-\\ Google Chrome v
 
[ File : C:\Users\Irene\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
 
*************************
 
AdwCleaner[R0].txt - [26456 octets] - [20/12/2013 12:00:32]
AdwCleaner[S0].txt - [26825 octets] - [20/12/2013 12:02:19]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [26886 octets] ##########
 
 
 
 
 
~~~ FireFox
 
Successfully deleted: [File] C:\Users\Irene\AppData\Roaming\mozilla\firefox\profiles\8ett62a7.default\extensions\toolbar_avira-v7@apn.ask.com.xpi
Successfully deleted the following from C:\Users\Irene\AppData\Roaming\mozilla\firefox\profiles\8ett62a7.default\prefs.js
 
user_pref("browser.startup.homepage", "hxxp://it.msn.com/?pc=UP97&ocid=UP97DHP|hxxp://avira.search.ask.com/?p2=%5EB0Y%5EYYYYYY%5EYY%5EIT&gct=hp&o=APN11080&apn_ptnrs=%5EB0Y&apn
Emptied folder: C:\Users\Irene\AppData\Roaming\mozilla\firefox\profiles\8ett62a7.default\minidumps [277 files]
 
 
 
~~~ Chrome
 
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\aaaaacalgebmfelllfiaoknifldpngjh
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 20/12/2013 at 13.08.49,57
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~



#7 Irenenella

Irenenella
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:02:16 AM

Posted 20 December 2013 - 07:33 AM

I don't understand how to attach the txt Autoruns file... :-)



#8 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:16 PM

Posted 20 December 2013 - 09:54 AM

Never mind attaching the autoruns  just copy and paste.

 

I suggest that you remove the following.with Revo Free. http://www.howtogeek.com/79926/completely-uninstall-programs-and-more-with-revo-uninstaller/

 

http://www.revouninstaller.com/revo_uninstaller_free_download.html

 

AVG PC TuneUp 2014 (Version: 14.0.1001.211)

Avira SearchFree Toolbar (Version: 12.6.0.1900)
BatteryBar (remove only)

DAEMON Tools Toolbar (Version: 1.1.8.0285)

McAfee Security Scan Plus (Version: 3.8.130.10)
Softonic toolbar  on IE and Chrome (Version: 1.8.21.14)
Mozilla Maintenance Service (Version: 25.0.1)
Java™ 6 Update 24 (Version: 6.0.240)
Java™ 6 Update 7 (Version: 1.6.0.70)
foobar2000 v0.9.6.1 (Version: 0.9.6.1)
Eusing Free Registry Cleaner
Duplicate Cleaner Free 3.2.1 (Version: 3.2.1)

 

Disable windows defender.

http://www.mydigitallife.info/top-5-worst-and-useless-features-and-programs-in-windows-vista/

http://windows.microsoft.com/en-us/windows/turn-windows-defender-on-off#turn-windows-defender-on-off=windows-7

 

 

Disable un-needed start up programs with this tool.

https://www.malwarebytes.org/startuplite/

 

 

Now open an Elevated Command Prompt .

http://www.bleepingcomputer.com/tutorials/windows-elevated-command-prompt/

 

Type the Following hitting enter after.

 

sfc /scannow

 

Then after the sfc /scannow completes.

 

Type

chkdsk /r

 

Hit enter you will be presented with would you like to schedule this volume to be checked the next time the system restarts?

 

Reply y then hit enter.Then type exit and hit enter.

 

 

Then download TFC.exe and save it to your desktop right click it and run as admin,

http://www.bleepingcomputer.com/download/tfc/

This tool will clean your temp files and most likely need to reboot to finsh.

I need you to reboot reguardless of whether tfc.exe ask or not to complete the check disk.

 

 

After the checkdisk then.....

 

Donwload Rkill save it to your desktop right click and run as admin.

http://www.bleepingcomputer.com/download/rkill/

 

Post the log in next reply.

 

 

 

Download, & save & then run the MS Safety scanner
Run a Full Scan
http://www.microsoft.com/security/scanner/en-us/default.aspx
Post. the result.

The safety scanner log should be called msert.txt
It should be located in the same folder as where you had msert.exe
If not there, then look for it under c:\windows

 

 

 

Ineed the Autoruns,rkill,MSE Scan log.

 

Tell me how the machine is doing.



#9 Irenenella

Irenenella
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:02:16 AM

Posted 20 December 2013 - 10:41 AM

OK, thanks!!

 

For now I paste the Autoruns txt file:

 

"HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms" "" "" "" "02/11/2006 13.46"
+ "rdpclip" "" "" "File not found: rdpclip" ""
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" "" "20/12/2013 9.19"
+ "Adobe ARM" "Adobe Reader and Acrobat Manager" "Adobe Systems Incorporated" "c:\program files\common files\adobe\arm\1.0\adobearm.exe" "30/03/2011 18.27"
+ "ApnTBMon" "Ask Toolbar Notifier" "APN" "c:\program files\askpartnernetwork\toolbar\updater\tbnotifier.exe" "18/09/2013 7.33"
+ "APSDaemon" "Apple Push" "Apple Inc." "c:\program files\common files\apple\apple application support\apsdaemon.exe" "16/11/2012 3.18"
+ "avgnt" "Antivirus System Tray Tool (Desktop)" "Avira Operations GmbH & Co. KG" "c:\program files\avira\antivir desktop\avgnt.exe" "29/11/2013 14.29"
+ "GrooveMonitor" "GrooveMonitor Utility" "Microsoft Corporation" "c:\program files\microsoft office\office12\groovemonitor.exe" "26/02/2009 13.53"
+ "HotKeysCmds" "hkcmd Module" "Intel Corporation" "c:\windows\system32\hkcmd.exe" "24/08/2007 20.27"
+ "HP Health Check Scheduler" "HP Health Check Scheduler" "Hewlett-Packard" "c:\program files\hewlett-packard\hp health check\hphc_scheduler.exe" "05/06/2007 15.11"
+ "HP Software Update" "Hewlett-Packard Product Assistant" "Hewlett-Packard Co." "c:\program files\hp\hp software update\hpwuschd2.exe" "17/02/2005 8.11"
+ "hpWirelessAssistant" "HPWAMain Module" "Hewlett-Packard Development Company, L.P." "c:\program files\hewlett-packard\hp wireless assistant\hpwamain.exe" "01/03/2007 16.24"
+ "IgfxTray" "igfxTray Module" "Intel Corporation" "c:\windows\system32\igfxtray.exe" "24/08/2007 20.28"
+ "iTunesHelper" "iTunesHelper" "Apple Inc." "c:\program files\itunes\ituneshelper.exe" "20/02/2013 21.10"
+ "LogitechQuickCamRibbon" "Camera Software" "Logitech Inc." "c:\program files\logitech\logitech webcam software\lws.exe" "14/10/2009 21.32"
+ "Persistence" "persistence Module" "Intel Corporation" "c:\windows\system32\igfxpers.exe" "24/08/2007 20.27"
+ "QlbCtrl" "Quick Launch Buttons" " Hewlett-Packard Development Company, L.P." "c:\program files\hewlett-packard\hp quick launch buttons\qlbctrl.exe" "01/11/2007 20.26"
+ "SynTPEnh" "Synaptics TouchPad Enhancements" "Synaptics, Inc." "c:\program files\synaptics\syntp\syntpenh.exe" "28/03/2008 2.28"
+ "WAWifiMessage" "Module to process WiFi messages." "Hewlett-Packard Development Company, L.P." "c:\program files\hewlett-packard\hp wireless assistant\wifimsg.exe" "08/01/2007 21.53"
+ "Windows Defender" "Windows Defender User Interface" "Microsoft Corporation" "c:\program files\windows defender\msascui.exe" "19/01/2008 6.42"
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup" "" "" "" "17/11/2013 17.17"
+ "McAfee Security Scan Plus.lnk" "McAfee Security Scanner Scheduler" "McAfee, Inc." "c:\program files\mcafee security scan\3.8.130\ssscheduler.exe" "06/09/2013 17.07"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" "" "16/02/2013 18.05"
+ "Microsoft Windows Mail 7" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe" "19/01/2008 6.47"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" "" "19/12/2013 15.26"
+ "Google Update" "Google Installer" "Google Inc." "c:\users\irene\appdata\local\google\update\googleupdate.exe" "09/03/2010 7.10"
+ "ShowBatteryBar" "" "" "c:\program files\batterybar\showbatterybar.exe" "28/05/2009 15.02"
+ "Sidebar" "Windows Sidebar" "Microsoft Corporation" "c:\program files\windows sidebar\sidebar.exe" "11/04/2009 6.06"
+ "Skype" "Skype " "Skype Technologies S.A." "c:\program files\skype\phone\skype.exe" "18/11/2013 14.13"
+ "WMPNSCFG" "Applicazione di configurazione Servizio di condivisione in rete Windows Media Player" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe" "19/01/2008 7.06"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" "" "02/11/2006 13.50"
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office12\msoxmlmf.dll" "26/02/2009 17.00"
"HKLM\SOFTWARE\Classes\Protocols\Handler" "" "" "" "02/11/2006 13.50"
+ "grooveLocalGWS" "GrooveSystemServices Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\groovesystemservices.dll" "26/02/2009 14.20"
+ "livecall" "Windows Live Messenger Protocol Handler Module" "Microsoft Corporation" "c:\program files\windows live\messenger\msgrapp.dll" "23/09/2010 8.30"
+ "ms-help" "Microsoft® Help Data Services Module" "Microsoft Corporation" "c:\program files\common files\microsoft shared\help\hxds.dll" "07/11/2012 11.30"
+ "msnim" "Windows Live Messenger Protocol Handler Module" "Microsoft Corporation" "c:\program files\windows live\messenger\msgrapp.dll" "23/09/2010 8.30"
+ "mso-offdap11" "Microsoft Office Web Components 2003" "Microsoft Corporation" "c:\program files\common files\microsoft shared\web components\11\owc11.dll" "25/03/2009 1.45"
+ "skype-ie-addon-data" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll" "09/10/2013 11.57"
+ "skype4com" "Skype for COM API" "Skype Technologies" "c:\program files\common files\skype\skype4com.dll" "26/02/2013 11.25"
+ "wlmailhtml" "Windows Live Mail" "Microsoft Corporation" "c:\program files\windows live\mail\mailcomm.dll" "23/09/2010 8.50"
+ "wlpg" "Windows Live Album Download Protocol Handler" "Microsoft Corporation" "c:\program files\windows live\photo gallery\albumdownloadprotocolhandler.dll" "23/09/2010 8.28"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks" "" "" "" "19/12/2013 14.58"
+ "Groove GFS Stub Execution Hook" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll" "26/02/2009 14.20"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" "" "02/11/2006 13.50"
+ "AVG Shredder Shell Extension" "AVG Shredder Shell Extension" "AVG" "c:\program files\avg pc tuneup 2014\sdshelex-win32.dll" "12/10/2013 0.18"
+ "Shell Extension for Malware scanning" "AntiVirus context menu" "Avira Operations GmbH & Co. KG" "c:\program files\avira\antivir desktop\shlext.dll" "15/11/2013 16.33"
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll" "28/05/2011 17.04"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll" "26/02/2009 14.20"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" "" "02/11/2006 13.50"
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamext.dll" "30/09/2012 0.32"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll" "26/02/2009 14.20"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" "" "28/07/2011 21.00"
+ "AVG Disk Space Explorer Shell Extension" "AVG Disk Space Explorer Shell Extension" "AVG" "c:\program files\avg pc tuneup 2014\dseshext-x86.dll" "12/10/2013 0.17"
+ "AVG Shredder Shell Extension" "AVG Shredder Shell Extension" "AVG" "c:\program files\avg pc tuneup 2014\sdshelex-win32.dll" "12/10/2013 0.18"
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll" "28/05/2011 17.04"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll" "26/02/2009 14.20"
"HKLM\Software\Classes\Directory\Shellex\DragDropHandlers" "" "" "" "28/07/2011 21.00"
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll" "28/05/2011 17.04"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" "" "02/11/2006 13.50"
+ "igfxcui" "igfxpph Module" "Intel Corporation" "c:\windows\system32\igfxpph.dll" "24/08/2007 20.27"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll" "26/02/2009 14.20"
"HKLM\Software\Classes\Folder\Shellex\ColumnHandlers" "" "" "" "06/11/2007 11.30"
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files\common files\adobe\acrobat\activex\pdfshell.dll" "06/06/2011 19.08"
+ "{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}" "" "Sun Microsystems, Inc." "c:\program files\openoffice.org 3\basis\program\shlxthdl\shlxthdl.dll" "29/08/2008 10.15"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" "" "06/11/2007 11.30"
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamext.dll" "30/09/2012 0.32"
+ "Shell Extension for Malware scanning" "AntiVirus context menu" "Avira Operations GmbH & Co. KG" "c:\program files\avira\antivir desktop\shlext.dll" "15/11/2013 16.33"
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll" "28/05/2011 17.04"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll" "26/02/2009 14.20"
"HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers" "" "" "" "06/11/2007 11.30"
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll" "28/05/2011 17.04"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" "" "19/12/2013 14.58"
+ "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll" "26/02/2009 14.20"
+ "Groove Explorer Icon Overlay 2 (GFS Stub)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll" "26/02/2009 14.20"
+ "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll" "26/02/2009 14.20"
+ "Groove Explorer Icon Overlay 3 (GFS Folder)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll" "26/02/2009 14.20"
+ "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll" "26/02/2009 14.20"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" "" "19/12/2013 14.58"
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files\common files\adobe\acrobat\activex\acroiehelpershim.dll" "06/06/2011 17.48"
+ "Avira SearchFree Toolbar" "Passport" "APN LLC." "c:\program files\askpartnernetwork\toolbar\avira-v7\passport.dll" "04/10/2013 20.17"
+ "Groove GFS Browser Helper" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll" "26/02/2009 14.20"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files\java\jre6\bin\jp2ssv.dll" "03/02/2011 6.40"
+ "MSS+ Identifier" "Quick Browser Identifier for MSS+ Tool" "McAfee, Inc." "c:\program files\mcafee security scan\3.8.130\mcafeemss_ie.dll" "06/09/2013 17.05"
+ "Skype Browser Helper" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll" "09/10/2013 11.57"
+ "Softonic Helper Object" "" "Softonic.com" "c:\program files\softonic\softonic\1.8.21.14\bh\softonic.dll" "11/06/2013 3.28"
+ "uTorrentBar_IT Toolbar" "Conduit Toolbar" "Conduit Ltd." "c:\program files\utorrentbar_it\prxtbutor.dll" "09/05/2011 10.49"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll" "21/09/2010 22.01"
+ "Windows Live Messenger Companion Helper" "Windows Live Messenger Companion Core" "Microsoft Corporation" "c:\program files\windows live\companion\companioncore.dll" "23/09/2010 8.12"
"HKCU\Software\Microsoft\Internet Explorer\UrlSearchHooks" "" "" "" "19/12/2013 15.00"
+ "SearchHook Class" "Search Hook" "APN LLC." "c:\program files\askpartnernetwork\toolbar\searchhook.dll" "04/10/2013 20.17"
+ "uTorrentBar_IT Toolbar" "Conduit Toolbar" "Conduit Ltd." "c:\program files\utorrentbar_it\prxtbutor.dll" "09/05/2011 10.49"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar" "" "" "" "10/12/2013 23.30"
+ "DAEMON Tools Toolbar" "Toolbar Module" "" "c:\program files\daemon tools toolbar\dttoolbar.dll" "01/08/2011 13.47"
+ "Softonic Toolbar" "" "Softonic.com" "c:\program files\softonic\softonic\1.8.21.14\softonictlbr.dll" "11/06/2013 3.28"
+ "uTorrentBar_IT Toolbar" "Conduit Toolbar" "Conduit Ltd." "c:\program files\utorrentbar_it\prxtbutor.dll" "09/05/2011 10.49"
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" "" "10/12/2013 23.30"
+ "I&nvia a OneNote" "Microsoft Office OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office\office12\onbttnie.dll" "20/07/2011 7.13"
+ "Messenger Companion (CTRL+MAIUSC+C)" "Windows Live Messenger Companion Core" "Microsoft Corporation" "c:\program files\windows live\companion\companioncore.dll" "23/09/2010 8.12"
+ "Pubblica su un &blog in Windows Live Writer" "Windows Live Writer Blog This Extension" "Microsoft Corporation" "c:\program files\windows live\writer\writerbrowserextension.dll" "23/09/2010 8.12"
+ "Skype Click to Call" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll" "09/10/2013 11.57"
"Task Scheduler" "" "" "" ""
+ "\CCleanerSkipUAC" "CCleaner" "Piriform Ltd" "c:\program files\ccleaner\ccleaner.exe" "22/11/2013 4.55"
+ "\Core Temp Autostart Irene" "CPU temperature and system information utility" "" "c:\program files\core temp\core temp.exe" "03/10/2010 0.13"
+ "\GoogleUpdateTaskUserS-1-5-21-265735347-3002970623-3239016853-1006Core" "Google Installer" "Google Inc." "c:\users\irene\appdata\local\google\update\googleupdate.exe" "09/03/2010 7.10"
+ "\GoogleUpdateTaskUserS-1-5-21-265735347-3002970623-3239016853-1006UA" "Google Installer" "Google Inc." "c:\users\irene\appdata\local\google\update\googleupdate.exe" "09/03/2010 7.10"
+ "\HP Health Check" "HP Health Check Scheduler" "Hewlett-Packard" "c:\program files\hewlett-packard\hp health check\hphc_scheduler.exe" "05/06/2007 15.11"
+ "\LaunchApp" "" "" "File not found: C:\Program Files\MyPC Backup\MyPC Backup.exe" ""
+ "\Microsoft\Windows Defender\MP Scheduled Scan" "Windows Defender Command Line Utility" "Microsoft Corporation" "c:\program files\windows defender\mpcmdrun.exe" "19/01/2008 6.42"
+ "\Microsoft\Windows Defender\MP Scheduled Signature Update" "Windows Defender Command Line Utility" "Microsoft Corporation" "c:\program files\windows defender\mpcmdrun.exe" "19/01/2008 6.42"
+ "\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task" "Windows Live Social Object Extractor Engine" "Microsoft Corporation" "c:\program files\windows live\soxe\wlsoxe.dll" "23/09/2010 8.12"
+ "\Microsoft\Windows\WindowsCalendar\Reminders - Irene" "Calendario di Windows" "Microsoft Corporation" "c:\program files\windows calendar\wincal.exe" "11/04/2009 5.37"
+ "\Microsoft\Windows\Wired\GatherWiredInfo" "" "" "c:\windows\system32\gatherwiredinfo.vbs" "05/01/2008 12.21"
+ "\Microsoft\Windows\Wireless\GatherWirelessInfo" "" "" "c:\windows\system32\gatherwirelessinfo.vbs" "17/09/2009 18.34"
+ "\TuneUpUtilities_Task_BkGndMaintenance2013" "AVG Manutenzione in 1 clic" "AVG" "c:\program files\avg pc tuneup 2014\oneclick.exe" "12/10/2013 0.21"
+ "\{6F99D2D6-D7E6-414A-9790-36B41D764A1F}" "Firefox" "Mozilla Corporation" "c:\program files\mozilla firefox\firefox.exe" "13/11/2013 4.29"
+ "\{977A10CA-42B8-4E0B-80B8-B6FCD4A5F4DA}" "Firefox" "Mozilla Corporation" "c:\program files\mozilla firefox\firefox.exe" "13/11/2013 4.29"
+ "\{EB9163E5-7A3D-47F8-A055-8FB7C5FB56CB}" "Skype " "Skype Technologies S.A." "c:\program files\skype\phone\skype.exe" "18/11/2013 14.13"
"HKLM\System\CurrentControlSet\Services" "" "" "" "20/12/2013 9.22"
+ "AdobeARMservice" "Adobe Acrobat Updater consente di tenere sempre aggiornato il software Adobe." "Adobe Systems Incorporated" "c:\program files\common files\adobe\arm\1.0\armsvc.exe" "30/03/2011 18.27"
+ "AdobeFlashPlayerUpdateSvc" "Questo servizio mantiene aggiornata l'installazione di Adobe Flash Player con gli ultimi miglioramenti e le più recenti correzioni relative alla sicurezza." "Adobe Systems Incorporated" "c:\windows\system32\macromed\flash\flashplayerupdateservice.exe" "01/12/2013 19.09"
+ "AntiVirSchedulerService" "Servizio per la gestione di job di scansione e aggiornamenti di Avira Free Antivirus." "Avira Operations GmbH & Co. KG" "c:\program files\avira\antivir desktop\sched.exe" "15/11/2013 16.26"
+ "AntiVirService" " offre protezione permanente contro virus e malware con il motore di ricerca Avira." "Avira Operations GmbH & Co. KG" "c:\program files\avira\antivir desktop\avguard.exe" "10/10/2013 16.10"
+ "AntiVirWebService" "Offre ai browser web protezione permanente contro virus e malware con il motore di ricerca Avira." "Avira Operations GmbH & Co. KG" "c:\program files\avira\antivir desktop\avwebgrd.exe" "29/11/2013 14.34"
+ "APNMCP" "Il servizio di aggiornamento Ask mantiene aggiornato il software della barra degli strumenti Ask." "APN LLC." "c:\program files\askpartnernetwork\toolbar\apnmcp.exe" "04/10/2013 20.17"
+ "Apple Mobile Device" "Provides the interface to Apple mobile devices." "Apple Inc." "c:\program files\common files\apple\mobile device support\applemobiledeviceservice.exe" "18/05/2012 4.06"
+ "BcmSqlStartupSvc" "Controlla l'avvio dell'istanza di SQL Server di Business Contact Manager (MSSMLBIZ)." "Microsoft Corporation" "c:\program files\microsoft small business\business contact manager\bcmsqlstartupsvc.exe" "12/01/2008 1.30"
+ "Bonjour Service" "Consente la configurazione automatica di dispositivi hardware e servizi software sul network e ne rileva la presenza." "Apple Inc." "c:\program files\bonjour\mdnsresponder.exe" "31/08/2011 6.40"
+ "CameraServer" "CameraServer Module" "" "c:\flycam\cameraserver.exe" "27/01/2006 4.24"
+ "Com4Qlb" "Com for QLB software" "Hewlett-Packard Development Company, L.P." "c:\program files\hewlett-packard\hp quick launch buttons\com4qlb.exe" "05/03/2007 16.30"
+ "fsssvc" "This service enables Family Safety on the computer. If this service is not running, Family Safety will not work." "Microsoft Corporation" "c:\program files\windows live\family safety\fsssvc.exe" "23/09/2010 8.16"
+ "gupdate" "Tiene aggiornato il software di Google. Se questo servizio viene disabilitato o interrotto, il software di Google non verrà mantenuto aggiornato. Ciò non permetterà di risolvere eventuali problemi dovuti a vulnerabilità della protezione e alcune funzionalità potrebbero non essere eseguite correttamente. Questo servizio viene disinstallato automaticamente quando non viene utilizzato da alcun software di Google." "Google Inc." "c:\program files\google\update\googleupdate.exe" "09/03/2010 7.10"
+ "gupdatem" "Tiene aggiornato il software di Google. Se questo servizio viene disabilitato o interrotto, il software di Google non verrà mantenuto aggiornato. Ciò non permetterà di risolvere eventuali problemi dovuti a vulnerabilità della protezione e alcune funzionalità potrebbero non essere eseguite correttamente. Questo servizio viene disinstallato automaticamente quando non viene utilizzato da alcun software di Google." "Google Inc." "c:\program files\google\update\googleupdate.exe" "09/03/2010 7.10"
+ "HP Health Check Service" "HP Health Check Service" "Hewlett-Packard" "c:\program files\hewlett-packard\hp health check\hphc_service.exe" "05/06/2007 15.12"
+ "hpqwmiex" "hpqwmiex Module" "Hewlett-Packard Development Company, L.P." "c:\program files\hewlett-packard\shared\hpqwmiex.exe" "28/11/2007 23.03"
+ "IDriverT" "Provides support for the Running Object Table for InstallShield Drivers" "Macrovision Corporation" "c:\program files\common files\installshield\driver\1050\intel 32\idrivert.exe" "22/10/2004 9.24"
+ "iPod Service" "Servizi di gestione hardware di iPod" "Apple Inc." "c:\program files\ipod\bin\ipodservice.exe" "20/02/2013 21.10"
+ "IviRegMgr" "RegMgr Module" "InterVideo" "c:\program files\common files\intervideo\regmgr\iviregmgr.exe" "04/01/2007 11.21"
+ "LVPrcSrv" "Injector service" "Logitech Inc." "c:\program files\common files\logishrd\lvmvfm\lvprcsrv.exe" "07/10/2009 9.26"
+ "McComponentHostService" "McAfee Security Scan Component Host Service" "McAfee, Inc." "c:\program files\mcafee security scan\3.8.130\mcchsvc.exe" "06/09/2013 17.06"
+ "Microsoft Office Groove Audit Service" "Groove Audit Service" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveauditservice.exe" "26/02/2009 13.44"
+ "MozillaMaintenance" "Mozilla Maintenance Service garantisce che sul computer sia sempre installata la versione più recente e più sicura di Mozilla Firefox. Mantenere Firefox costantemente aggiornato è fondamentale per la sicurezza durante la navigazione, per questo motivo Mozilla consiglia di lasciare attivo questo servizio." "Mozilla Foundation" "c:\program files\mozilla maintenance service\maintenanceservice.exe" "13/11/2013 2.14"
+ "MSSQL$MSSMLBIZ" "Fornisce l'archiviazione, l'elaborazione e l'accesso controllato ai dati e l'elaborazione rapida delle transazioni." "Microsoft Corporation" "c:\program files\microsoft sql server\mssql.1\mssql\binn\sqlservr.exe" "10/12/2010 23.23"
+ "odserv" "Esegue parti di Diagnostica Microsoft Office." "Microsoft Corporation" "c:\program files\common files\microsoft shared\office12\odserv.exe" "20/07/2011 6.12"
+ "ose" "Salva i file di installazione utilizzati per operazioni di aggiornamento e ripristino ed è necessario per il download di aggiornamenti al programma di installazione e per segnalazioni errori Watson." "Microsoft Corporation" "c:\program files\common files\microsoft shared\source engine\ose.exe" "26/10/2006 22.00"
+ "ServiceLayer" "ServiceLayer Module" "Nokia" "c:\program files\pc connectivity solution\servicelayer.exe" "08/06/2011 11.01"
+ "SkypeUpdate" "Enables the detection, download and installation of updates for Skype." "Skype Technologies" "c:\program files\skype\updater\updater.exe" "05/09/2013 10.31"
+ "SQLBrowser" "Rende disponibili le informazioni di connessione a SQL Server per i computer client." "Microsoft Corporation" "c:\program files\microsoft sql server\90\shared\sqlbrowser.exe" "10/12/2010 20.40"
+ "SQLWriter" "Fornisce l'interfaccia per il backup/ripristino di Microsoft SQL Server tramite l'infrastruttura VSS di Windows." "Microsoft Corporation" "c:\program files\microsoft sql server\90\shared\sqlwriter.exe" "10/12/2010 20.39"
+ "stllssvr" "SureThing Labelflash Disc Printer Service Module" "MicroVision Development, Inc." "c:\program files\common files\surething shared\stllssvr.exe" "01/11/2006 16.27"
+ "TuneUp.UtilitiesSvc" "This service analyzes the usage of your computer in the background, enabling automatic usage-dependent optimizations. All of its functions can be set in AVG PC TuneUp. If you stop or disable this service, parts of AVG PC TuneUp will not work anymore." "AVG" "c:\program files\avg pc tuneup 2014\tuneuputilitiesservice32.exe" "12/10/2013 0.19"
+ "WinDefend" "Analizza il computer alla ricerca di software indesiderato, pianifica le analisi e ottiene le ultime definizioni dei software indesiderati." "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll" "19/01/2008 8.26"
+ "wlidsvc" "Abilita l'autenticazione di Windows Live ID." "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidsvc.exe" "21/09/2010 22.00"
+ "WMPNetworkSvc" "Consente di condividere il Catalogo multimediale di Windows Media Player con altri lettori e dispositivi multimediali in rete mediante Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe" "19/01/2008 7.06"
+ "XAudioService" "User-mode gate for Modem Speakerphone" "Conexant Systems, Inc." "c:\windows\system32\drivers\xaudio.exe" "29/11/2006 1.44"
"HKLM\System\CurrentControlSet\Services" "" "" "" "20/12/2013 9.22"
+ "ALSysIO" "" "" "File not found: C:\Users\Irene\AppData\Local\Temp\ALSysIO.sys" ""
+ "avgntflt" "Avira mini-filter driver" "Avira Operations GmbH & Co. KG" "c:\windows\system32\drivers\avgntflt.sys" "25/11/2013 19.51"
+ "avipbb" "Avira Security Enhancement Driver" "Avira Operations GmbH & Co. KG" "c:\windows\system32\drivers\avipbb.sys" "15/11/2013 16.34"
+ "avkmgr" "Avira Manager Driver" "Avira Operations GmbH & Co. KG" "c:\windows\system32\drivers\avkmgr.sys" "16/09/2013 12.13"
+ "b57nd60x" "Broadcom NetXtreme Gigabit Ethernet NDIS6.0 Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57nd60x.sys" "18/08/2006 7.46"
+ "BCM43XV" "Broadcom 802.11 Network Adapter wireless driver" "Broadcom Corp." "c:\windows\system32\drivers\bcmwl6.sys" "06/09/2007 3.06"
+ "BCM43XX" "Broadcom 802.11 Network Adapter wireless driver" "Broadcom Corp." "c:\windows\system32\drivers\bcmwl6.sys" "06/09/2007 3.06"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys" "06/08/2006 22.33"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys" "06/08/2006 22.33"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys" "09/08/2006 13.02"
+ "BthAvrcp" "Bluetooth Remote Control Driver" "CSR, plc" "c:\windows\system32\drivers\bthavrcp.sys" "04/02/2010 14.16"
+ "CnxtHdAudService" "High Definition Audio Function Driver" "Conexant Systems Inc." "c:\windows\system32\drivers\chdrt32.sys" "04/03/2008 19.31"
+ "cpuidlep" "" "" "c:\windows\system32\drivers\cpuidlep.sys" "16/11/1999 19.48"
+ "dtsoftbus01" "DAEMON Tools Virtual Bus Driver" "DT Soft Ltd" "c:\windows\system32\drivers\dtsoftbus01.sys" "17/06/2011 8.38"
+ "E100B" "Intel® PRO/100 Adapter NDIS 5.1 driver" "Intel Corporation" "c:\windows\system32\drivers\e100b325.sys" "16/11/2007 19.53"
+ "E1G60" "Intel® PRO/1000 Adapter NDIS 6 deserialized driver" "Intel Corporation" "c:\windows\system32\drivers\e1g60i32.sys" "03/08/2006 22.30"
+ "FLYCAM" "WDM Video Capture Driver" "Windows ® 2000 DDK provider" "c:\windows\system32\drivers\flycam.sys" "12/01/2006 3.29"
+ "GEARAspiWDM" "CD DVD Filter" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys" "03/05/2012 20.55"
+ "HBtnKey" "HP Tablet PC Key Button HID Driver" "Hewlett-Packard Development Company, L.P." "c:\windows\system32\drivers\cpqbttn.sys" "28/06/2006 16.54"
+ "HdAudAddService" "High Definition Audio Function Driver" "Conexant Systems Inc." "c:\windows\system32\drivers\chdart.sys" "23/02/2007 1.24"
+ "HpqKbFiltr" "HpqKbFiltr Keyboard Filter Driver" "Hewlett-Packard Development Company, L.P." "c:\windows\system32\drivers\hpqkbfiltr.sys" "18/06/2007 23.12"
+ "HSF_DPV" "HSF_DP driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\hsx_dpv.sys" "08/12/2006 0.05"
+ "HSFHWAZL" "HSF_HWAZL WDM driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstazl3.sys" "20/06/2006 18.39"
+ "HSXHWAZL" "HSF_HWAZL WDM driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\hsxhwazl.sys" "08/12/2006 0.04"
+ "ialm" "Intel Graphics Kernel Mode Driver" "Intel Corporation" "c:\windows\system32\drivers\igdkmd32.sys" "24/08/2007 20.39"
+ "igfx" "Intel Graphics Kernel Mode Driver" "Intel Corporation" "c:\windows\system32\drivers\igdkmd32.sys" "24/08/2007 20.39"
+ "IpInIp" "IP in IP Tunnel Driver" "" "File not found: system32\DRIVERS\ipinip.sys" ""
+ "LVPr2Mon" "Logitech ProcMon Driver" "Logitech Inc." "c:\windows\system32\drivers\lvpr2mon.sys" "07/10/2009 9.26"
+ "MBLAUDRV" "Mobiola Audio" "Windows ® 2000 DDK provider" "c:\windows\system32\drivers\btcamaudiodrv.sys" "24/07/2007 15.11"
+ "mdmxsdk" "Diagnostic Interface x86 Driver" "Conexant" "c:\windows\system32\drivers\mdmxsdk.sys" "19/06/2006 22.26"
+ "nmwcd" "Nokia USB Phone Bus Driver" "Nokia" "c:\windows\system32\drivers\ccdcmb.sys" "18/05/2011 8.12"
+ "nmwcdc" "Nokia USB Phone Bus Driver" "Nokia" "c:\windows\system32\drivers\ccdcmbo.sys" "18/05/2011 8.12"
+ "ntiomin" "" "" "File not found: C:\Windows\System32\Drivers\ntiomin.sys" ""
+ "NwlnkFlt" "IPX Traffic Filter Driver" "" "File not found: system32\DRIVERS\nwlnkflt.sys" ""
+ "NwlnkFwd" "IPX Traffic Forwarder Driver" "" "File not found: system32\DRIVERS\nwlnkfwd.sys" ""
+ "pccsmcfd" "PCCS Mode Change Filter Driver" "Nokia" "c:\windows\system32\drivers\pccsmcfd.sys" "26/08/2008 8.26"
+ "PID_PEPI" "Logitech Webcam Software Driver" "Logitech Inc." "c:\windows\system32\drivers\lv302v32.sys" "30/04/2009 23.43"
+ "PxHelp20" "Px Engine Device Driver for Windows 2000/XP" "Sonic Solutions" "c:\windows\system32\drivers\pxhelp20.sys" "25/07/2006 1.18"
+ "R300" "ATI Radeon Kernel Mode Driver" "ATI Technologies Inc." "c:\windows\system32\drivers\atikmdag.sys" "12/10/2006 22.06"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys" "13/09/2006 14.18"
+ "ssmdrv" "Avira Snapshot Driver" "Avira GmbH" "c:\windows\system32\drivers\ssmdrv.sys" "05/05/2009 11.05"
+ "SynTP" "Synaptics Touchpad Driver" "Synaptics, Inc." "c:\windows\system32\drivers\syntp.sys" "28/03/2008 2.14"
+ "TuneUpUtilitiesDrv" "TuneUp Utilities Driver" "TuneUp Software" "c:\program files\avg pc tuneup 2014\tuneuputilitiesdriver32.sys" "25/05/2012 11.28"
+ "upperdev" "Filter Driver for Nokia USB Phone Bus Driver" "Nokia" "c:\windows\system32\drivers\usbser_lowerflt.sys" "18/05/2011 8.12"
+ "USBAAPL" "Apple Mobile Device USB Driver" "Apple, Inc." "c:\windows\system32\drivers\usbaapl.sys" "28/11/2012 0.37"
+ "UsbserFilt" "Filter Driver for Nokia USB Phone Bus Driver" "Nokia" "c:\windows\system32\drivers\usbser_lowerfltj.sys" "18/05/2011 8.12"
+ "winachsf" "HSF_CNXT driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\hsx_cnxt.sys" "08/12/2006 0.04"
+ "XAudio" "Modem Audio Device Driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\xaudio.sys" "29/11/2006 1.44"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" "" "10/12/2013 23.33"
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm" "21/01/2010 16.05"
+ "vidc.cvid" "Codec Cinepak®" "Radius Inc." "c:\windows\system32\iccvid.dll" "27/05/2010 21.08"
+ "VIDC.I420" "Video Codec" "Logitech Inc." "c:\windows\system32\lvcodec2.dll" "30/04/2009 23.43"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" "" "02/11/2006 13.50"
+ "9x8Resize" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "11/04/2009 7.28"
+ "Allocator Fix" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "11/04/2009 7.28"
+ "Bitmap" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "11/04/2009 7.28"
+ "Capture ASF Writer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "11/04/2009 7.28"
+ "Capture File Writer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll" "23/09/2010 8.28"
+ "Emuzed AAC/AAC+ Decoder TFilter" "Emuzed AAC/AAC+ Decoder Filter" "Emuzed Inc. " "c:\program files\common files\nokia\codecs\emzaacdecfilter.dll" "16/05/2011 11.50"
+ "Emuzed AMR/3GPP/MP4/MP3 Multiplexer-Filter" "Emuzed MP4/3GP2/AMR/QCP Multiplexer/Sink Filter" "Emuzed Inc. " "c:\program files\common files\nokia\codecs\ezdmp4muxfilter.dll" "16/05/2011 11.50"
+ "Emuzed AMR/QCP/3GPP/MP4/3G2 Source Filter" "Emuzed MP4/3GP2/AMR/QCP Source Filter" "Emuzed Inc. " "c:\program files\common files\nokia\codecs\emzmp4source.dll" "16/05/2011 11.50"
+ "Emuzed MP3 Source/Decoder Filter" "Emuzed MP3 Source/Decoder Filter" "Emuzed Inc. " "c:\program files\common files\nokia\codecs\emzmp3sourcefilter.dll" "16/05/2011 11.51"
+ "Emuzed MP4SP/H263 Video Decoder-Filter" "Emuzed MP4SP/H.263 Video Transform Filter" "Emuzed Inc. " "c:\program files\common files\nokia\codecs\emzdecmp4_h263.dll" "16/05/2011 11.52"
+ "Frame Eater" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "11/04/2009 7.28"
+ "InterVideo Audio Decoder" "IVIAUDIO LOGID.50928" "InterVideo Inc." "c:\program files\intervideo\common\bin\iviaudio.ax" "05/06/2007 23.29"
+ "InterVideo Audio Processor" "" "" "c:\program files\intervideo\common\bin\iviaudioprocess.ax" "05/06/2007 23.29"
+ "Intervideo CDSF Filter" "Bouncing Ball Filter (Sample)" "Microsoft Corporation" "c:\program files\intervideo\common\bin\ivicdsf.ax" "16/02/2006 23.14"
+ "InterVideo Navigator" "IVINAV LOGID.50928" "InterVideo Inc." "c:\program files\intervideo\common\bin\ivinav.ax" "05/06/2007 23.29"
+ "InterVideo Video Decoder" "IVIVIDEO LOGID.50928" " InterVideo Inc." "c:\program files\intervideo\common\bin\ivivideo.ax" "05/06/2007 23.29"
+ "Multiple File Output" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "11/04/2009 7.28"
+ "Nokia H264Dec HP/MP Filter" "NokiaH264HPMPDecTFilter" "Nokia" "c:\program files\common files\nokia\codecs\nokiah264hpmpdectfilter.dll" "28/04/2011 7.13"
+ "Nokia MPEG4ASP Decoder Filter" "MPEG4ASP H263 Decoder Filter" "Nokia" "c:\program files\common files\nokia\codecs\nokiadecmp4asp_h263.dll" "28/04/2011 7.15"
+ "Proxy Sink" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "11/04/2009 7.28"
+ "Proxy Source" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "11/04/2009 7.28"
+ "Record Queue" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll" "23/09/2010 8.28"
+ "Record Queue" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "11/04/2009 7.28"
+ "ShotDetect" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "11/04/2009 7.28"
+ "Stetch" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "11/04/2009 7.28"
+ "WM VIH2 Fix" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll" "23/09/2010 8.28"
+ "WM VIH2 Fix" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "11/04/2009 7.28"
+ "WMT Audio Analyzer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "11/04/2009 7.28"
+ "WMT Black Frame Generator" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "11/04/2009 7.28"
+ "WMT DV Extract Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll" "23/09/2010 8.28"
+ "WMT DV Extract Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "11/04/2009 7.28"
+ "WMT FormatConversion" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "11/04/2009 7.28"
+ "WMT Import Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "11/04/2009 7.28"
+ "WMT Interlacer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "11/04/2009 7.28"
+ "WMT Log Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "11/04/2009 7.28"
+ "WMT MuxDeMux Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "11/04/2009 7.28"
+ "WMT Sample Info Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll" "23/09/2010 8.28"
+ "WMT Sample Info Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "11/04/2009 7.28"
+ "WMT Switch Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll" "23/09/2010 8.28"
+ "WMT Switch Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "11/04/2009 7.28"
+ "WMT Virtual Renderer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll" "23/09/2010 8.28"
+ "WMT Virtual Renderer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "11/04/2009 7.28"
+ "WMT Virtual Source" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll" "23/09/2010 8.28"
+ "WMT Virtual Source" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "11/04/2009 7.28"
+ "WMT Volume" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "11/04/2009 7.28"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify" "" "" "" "20/12/2013 9.20"
+ "igfxcui" "igfxdev Module" "Intel Corporation" "c:\windows\system32\igfxdev.dll" "24/08/2007 20.26"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries" "" "" "" "30/11/2013 13.14"
+ "AVSDA" "AntiVir layered service provider" "Avira Operations GmbH & Co. KG" "c:\program files\avira\antivir desktop\avsda.dll" "05/09/2013 17.01"
+ "AVSDA over [MSAFD Tcpip [TCP/IP]]" "AntiVir layered service provider" "Avira Operations GmbH & Co. KG" "c:\program files\avira\antivir desktop\avsda.dll" "05/09/2013 17.01"
+ "AVSDA over [MSAFD Tcpip [TCP/IPv6]]" "AntiVir layered service provider" "Avira Operations GmbH & Co. KG" "c:\program files\avira\antivir desktop\avsda.dll" "05/09/2013 17.01"
+ "AVSDA over [MSAFD Tcpip [UDP/IP]]" "AntiVir layered service provider" "Avira Operations GmbH & Co. KG" "c:\program files\avira\antivir desktop\avsda.dll" "05/09/2013 17.01"
+ "AVSDA over [MSAFD Tcpip [UDP/IPv6]]" "AntiVir layered service provider" "Avira Operations GmbH & Co. KG" "c:\program files\avira\antivir desktop\avsda.dll" "05/09/2013 17.01"
+ "AVSDA over [Provider di servizi TCP RSVP]" "AntiVir layered service provider" "Avira Operations GmbH & Co. KG" "c:\program files\avira\antivir desktop\avsda.dll" "05/09/2013 17.01"
+ "AVSDA over [Provider di servizi TCPv6 RSVP]" "AntiVir layered service provider" "Avira Operations GmbH & Co. KG" "c:\program files\avira\antivir desktop\avsda.dll" "05/09/2013 17.01"
+ "AVSDA over [Provider di servizi UDP RSVP]" "AntiVir layered service provider" "Avira Operations GmbH & Co. KG" "c:\program files\avira\antivir desktop\avsda.dll" "05/09/2013 17.01"
+ "AVSDA over [Provider di servizi UDPv6 RSVP]" "AntiVir layered service provider" "Avira Operations GmbH & Co. KG" "c:\program files\avira\antivir desktop\avsda.dll" "05/09/2013 17.01"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" "" "17/02/2013 11.01"
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files\bonjour\mdnsnsp.dll" "31/08/2011 6.44"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" "" "20/12/2013 9.22"
+ "Canon BJ Language Monitor MP250 series" "IJ Language Monitor" "CANON INC." "c:\windows\system32\cnmlm9w.dll" "23/04/2010 2.30"
+ "Epson Inbox Language Monitor" "EPSON Printer Driver" "SEIKO EPSON CORPORATION" "c:\windows\system32\ep0slm00.dll" "06/08/2006 22.41"


#10 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:16 PM

Posted 20 December 2013 - 02:15 PM

Ok awaiting the MS Safety scanner log and rkill also tell me how the machine is performing now.



#11 Irenenella

Irenenella
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:02:16 AM

Posted 21 December 2013 - 08:37 AM

RKILL

 

Rkill 2.6.4 by Lawrence Abrams (Grinler)
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
 
Program started at: 12/21/2013 02:25:14 PM in x86 mode.
Windows Version: Windows Vista ™ Home Basic Service Pack 2
 
Checking for Windows services to stop:
 
 * No malware services found to stop.
 
Checking for processes to terminate:
 
 * No malware processes found to kill.
 
Checking Registry for malware related settings:
 
 * No issues found in the Registry.
 
Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
 
Performing miscellaneous checks:
 
 * Windows Defender Disabled
 
   [HKLM\SOFTWARE\Microsoft\Windows Defender]
   "DisableAntiSpyware" = dword:00000001
 
Checking Windows Service Integrity: 
 
 * Windows Defender (WinDefend) is not Running.
   Startup Type set to: Automatic
 
Searching for Missing Digital Signatures: 
 
 * No issues found.
 
Checking HOSTS File: 
 
 * Cannot edit the HOSTS file.
 * Permissions could not be fixed. Use Hosts-perm.bat to fix permissions: http://www.bleepingcomputer.com/download/hosts-permbat/
 
 * HOSTS file entries found: 
 
  127.0.0.1       localhost
  ::1             localhost
 
Program finished at: 12/21/2013 02:29:33 PM
Execution time: 0 hours(s), 4 minute(s), and 18 seconds(s)


#12 Irenenella

Irenenella
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:02:16 AM

Posted 21 December 2013 - 01:06 PM

MSERT

 
---------------------------------------------------------------------------------------
 
Microsoft Safety Scanner v1.0, (build 1.165.381.0)
Started On Sat Dec 21 15:41:29 2013
Microsoft Safety Scanner Finished On Sat Dec 21 15:41:40 2013
 
 
Return code: 0 (0x0)
 
---------------------------------------------------------------------------------------
 
Microsoft Safety Scanner v1.0, (build 1.165.381.0)
Started On Sat Dec 21 15:50:09 2013
->Scan ERROR: resource process://pid:1136 (code 0x00000005 (5))
->Scan ERROR: resource file://C:\hiberfil.sys (code 0x00000020 (32))
->Scan ERROR: resource file://C:\hiberfil.sys (code 0x0000054F (1359))
->Scan ERROR: resource file://C:\pagefile.sys (code 0x00000020 (32))
->Scan ERROR: resource file://C:\pagefile.sys (code 0x0000054F (1359))
 
Results Summary:
----------------
No infection found.
Microsoft Safety Scanner Finished On Sat Dec 21 18:56:48 2013
 
 
Return code: 0 (0x0)
 
I've downloaded Startup Lite but i cannot run it, it says "Error on value IgfxTray. There was an error creating a MSC Configkey."
I don't know how to do for this. I tried to reboot, to download it another time but still nothing.
 
The machine is running better... this night i will clean also the fan, 'cause i can see that lots of time the temperature is reaching also the 70 degrees.


#13 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:16 PM

Posted 22 December 2013 - 02:57 AM

Go ahead and run a  full scan with Norman Malware Cleaner.

A log will be created on your desktop please post it here in your next reply.

http://normanasa.vo.llnwd.net/o29/public/Norman_Malware_Cleaner.exe

 

 

 

 * Cannot edit the HOSTS file.
 * Permissions could not be fixed. Use Hosts-perm.bat to fix permissions: http://www.bleepingcomputer.com/download/hosts-permbat/

 

 

 

 

Reset your hosts;

http://support.microsoft.com/kb/972034

 

You can also disable all of your start ups except your antivirus and reboot.

With this easy to use tool.

CCleaner you already have it installed please open it hit the tools button then the start up button and disable all items except.

 

Avira Free Antivirus (Version: 14.0.2.286)

 

 

Run a scan with Eset. You will need to disable your antivirus during this scan.
http://www.eset.com/us/online-scanner/
Make sure remove found threats and scan archives is checked.
When the scan finish list found threats save to clipboard copy to notepad Post the log here.


Edited by InadequateInfirmity, 22 December 2013 - 04:54 AM.


#14 Irenenella

Irenenella
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:02:16 AM

Posted 23 December 2013 - 10:08 AM

NORMAN MALWARE

 

Norman Malware Cleaner v2.08.08
Copyright © 1990 - 2013, Norman Shark AS.
 
Norman Scanner Engine Version: 7.02.06
nvcbin.def: Version: 7.02.6683, Date: 2013/12/22 06:40:55, Variants: 25839110
 
Operating System: Windows Vista Service Pack 2 
 
Switches: /iagree /nomt
Running without NSAK
 
Scan started: 2013/12/22 12:21:09
 
Running pre-scan cleanup routine...
 
Number of malicious objects found: 0
Number of malicious objects cleaned: 0
Scanning time: 0s
 
Scanning system for active rootkit activity...
 
Number of malicious objects found: 0
Number of malicious objects cleaned: 0
Number of malicious files found: 0
Number of malicious files cleaned: 0
Scanning time: 0s
 
Scanning running processes and process memory...
 
Number of files found: 690
Number of objects found: 8452
Number of objects scanned: 8452
Number of objects not scanned: 0
Number of malicious memory objects found: 0
Number of malicious objects cleaned: 0
Number of malicious files found: 0
Number of malicious files cleaned: 0
Scanning time: 9m 17s
 
Scanning system for FakeAV...
 
Number of malicious objects found: 0
Number of malicious objects cleaned: 0
Number of malicious files found: 0
Number of malicious files cleaned: 0
Scanning time: 7s
 
Running full scan...
C:\AdwCleaner\Quarantine\C\Users\Irene\AppData\LocalLow\uTorrentBar_IT\plugins\{5E1360DC-8FA8-40df-A8CD-FC3831B3634B}\3.5.3\bin\PriceGongIE.dll.vir: Potentially unwanted program (winpe/PriceGong.A)
Delete file: C:\AdwCleaner\Quarantine\C\Users\Irene\AppData\LocalLow\uTorrentBar_IT\plugins\{5E1360DC-8FA8-40df-A8CD-FC3831B3634B}\3.5.3\bin\PriceGongIE.dll.vir
Cleaning successful
C:\boot\bcd: Error opening file for read: 0x00000020
C:\boot\BCD.LOG: Error opening file for read: 0x00000020
C:\ProgramData\Avira\AntiVir Desktop\TEMP\scaninfo(2192).tmp: Error opening file for read: 0x00000020
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.log: Error opening file for read: 0x00000020
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSStmp.log: Error opening file for read: 0x00000020
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\tmp.edb: Error opening file for read: 0x00000020
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.edb: Error opening file for read: 0x00000020
C:\Users\Irene\ntuser.dat: Error opening file for read: 0x00000020
C:\Users\Irene\ntuser.dat.LOG1: Error opening file for read: 0x00000020
C:\Users\Irene\ntuser.dat.LOG2: Error opening file for read: 0x00000020
C:\Users\Irene\AppData\Local\Google\Chrome\User Data\lockfile: Error opening file for read: 0x00000020
C:\Users\Irene\AppData\Local\Google\Chrome\User Data\Profile 2\Current Session: Error opening file for read: 0x00000020
C:\Users\Irene\AppData\Local\Google\Chrome\User Data\Profile 2\Current Tabs: Error opening file for read: 0x00000020
C:\Users\Irene\AppData\Local\Google\Chrome\User Data\Profile 2\Cache\data_0: Error opening file for read: 0x00000020
C:\Users\Irene\AppData\Local\Google\Chrome\User Data\Profile 2\Cache\data_1: Error opening file for read: 0x00000020
C:\Users\Irene\AppData\Local\Google\Chrome\User Data\Profile 2\Cache\data_2: Error opening file for read: 0x00000020
C:\Users\Irene\AppData\Local\Google\Chrome\User Data\Profile 2\Cache\data_3: Error opening file for read: 0x00000020
C:\Users\Irene\AppData\Local\Google\Chrome\User Data\Profile 2\Cache\index: Error opening file for read: 0x00000020
C:\Users\Irene\AppData\Local\Google\Chrome\User Data\Profile 2\Extension Rules\LOCK: Error opening file for read: 0x00000020
C:\Users\Irene\AppData\Local\Google\Chrome\User Data\Profile 2\Media Cache\data_0: Error opening file for read: 0x00000020
C:\Users\Irene\AppData\Local\Google\Chrome\User Data\Profile 2\Media Cache\data_1: Error opening file for read: 0x00000020
C:\Users\Irene\AppData\Local\Google\Chrome\User Data\Profile 2\Media Cache\data_2: Error opening file for read: 0x00000020
C:\Users\Irene\AppData\Local\Google\Chrome\User Data\Profile 2\Media Cache\data_3: Error opening file for read: 0x00000020
C:\Users\Irene\AppData\Local\Google\Chrome\User Data\Profile 2\Media Cache\index: Error opening file for read: 0x00000020
C:\Users\Irene\AppData\Local\Google\Chrome\User Data\Profile 2\Session Storage\LOCK: Error opening file for read: 0x00000020
C:\Users\Irene\AppData\Local\Microsoft\Windows\UsrClass.dat: Error opening file for read: 0x00000020
C:\Users\Irene\AppData\Local\Microsoft\Windows\UsrClass.dat.LOG1: Error opening file for read: 0x00000020
C:\Users\Irene\AppData\Local\Microsoft\Windows\UsrClass.dat.LOG2: Error opening file for read: 0x00000020
C:\Users\Irene\AppData\Local\Temp\etilqs_3JH4ijbPevUK9e7: Error opening file for read: 0x00000020
C:\Users\Irene\AppData\Local\Temp\etilqs_HXPwOGHUT4O5zno: Error opening file for read: 0x00000020
C:\Users\Irene\AppData\Roaming\Skype\fralecose\bistats.lock: Error opening file for read: 0x00000020
C:\Users\Irene\AppData\Roaming\Skype\fralecose\keyval.lock: Error opening file for read: 0x00000020
C:\Users\Irene\AppData\Roaming\Skype\fralecose\main.lock: Error opening file for read: 0x00000020
C:\Users\Irene\AppData\Roaming\Skype\fralecose\msn.lock: Error opening file for read: 0x00000020
C:\Users\Irene\AppData\Roaming\Skype\fralecose\statistics.lock: Error opening file for read: 0x00000020
C:\Users\Irene\AppData\Roaming\Skype\shared_dynco\dc.lock: Error opening file for read: 0x00000020
C:\Users\Irene\AppData\Roaming\Skype\shared_httpfe\queue.lock: Error opening file for read: 0x00000020
C:\Users\Irene\Downloads\GamingWonderland.exe: Potentially unwanted program (win32/MyWebSearch.UNX)
Delete file: C:\Users\Irene\Downloads\GamingWonderland.exe
Cleaning successful
C:\Users\Irene\Downloads\TelevisionFanatic.exe: Potentially unwanted program (win32/MyWebSearch.UNX)
Delete file: C:\Users\Irene\Downloads\TelevisionFanatic.exe
Cleaning successful
C:\Windows\ServiceProfiles\LocalService\ntuser.dat: Error opening file for read: 0x00000020
C:\Windows\ServiceProfiles\LocalService\ntuser.dat.LOG1: Error opening file for read: 0x00000020
C:\Windows\ServiceProfiles\LocalService\ntuser.dat.LOG2: Error opening file for read: 0x00000020
C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat: Error opening file for read: 0x00000020
C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat: Error opening file for read: 0x00000020
C:\Windows\ServiceProfiles\NetworkService\ntuser.dat: Error opening file for read: 0x00000020
C:\Windows\ServiceProfiles\NetworkService\ntuser.dat.LOG1: Error opening file for read: 0x00000020
C:\Windows\ServiceProfiles\NetworkService\ntuser.dat.LOG2: Error opening file for read: 0x00000020
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/netfx_core_x64.msi: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/netfx_core_x86.msi: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/netfx_extended_x64.msi: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/netfx_extended_x86.msi: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/netfx_Full_GDR_x64.msi: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/netfx_Full_GDR_x86.msi: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/netfx_Full_LDR_x64.msi: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/netfx_Full_LDR_x86.msi: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/netfx_Full_x64.msi: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/netfx_Full_x86.msi: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/header.bmp: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/SplashScreen.bmp: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/watermark.bmp: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/DisplayIcon.ico: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Graphics/Print.ico: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Graphics/Rotate1.ico: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Graphics/Rotate2.ico: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Graphics/Rotate3.ico: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Graphics/Rotate4.ico: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Graphics/Rotate5.ico: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Graphics/Rotate6.ico: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Graphics/Rotate7.ico: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Graphics/Rotate8.ico: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Graphics/Save.ico: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Graphics/Setup.ico: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Graphics/stop.ico: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Graphics/SysReqMet.ico: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Graphics/SysReqNotMet.ico: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Graphics/warn.ico: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1025/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/2052/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1028/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1030/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1029/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1033/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1031/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1032/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1035/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/3082/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1037/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1036/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1040/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1038/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1042/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1041/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1044/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1043/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1046/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/2070/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1045/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1053/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1049/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1055/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/ParameterInfo.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Strings.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/UiInfo.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/SetupUi.xsd: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/DHtmlHeader.html: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1025/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1029/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1028/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1030/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1031/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1033/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1032/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1035/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1036/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1037/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1040/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1038/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1042/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1041/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1044/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1043/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1046/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1045/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1053/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1055/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1049/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/2052/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/2070/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/3082/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Setup.exe: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/SetupUtility.exe: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/SetupEngine.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1025/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/2052/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1028/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1042/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1041/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1037/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1033/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1030/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1044/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1053/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1029/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1035/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1040/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1045/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1046/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1049/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/2070/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1031/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1036/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1038/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/3082/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1032/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1043/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1055/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/SetupUi.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/sqmapi.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Windows6.0-KB956250-v6001-x64.msu: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Windows6.0-KB956250-v6001-x86.msu: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Windows6.1-KB958488-v6001-x64.msu: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Windows6.1-KB958488-v6001-x86.msu: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/netfx_Full_GDR.mzz: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/netfx_Full_LDR.mzz: I/O error scanning file: 0x00002000
C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0: Error opening file for read: 0x00000020
C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0: Error opening file for read: 0x00000020
C:\Windows\System32\catroot2\edb.log: Error opening file for read: 0x00000020
C:\Windows\System32\catroot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb: Error opening file for read: 0x00000020
C:\Windows\System32\catroot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb: Error opening file for read: 0x00000020
C:\Windows\System32\config\components: Error opening file for read: 0x00000020
C:\Windows\System32\config\COMPONENTS.LOG1: Error opening file for read: 0x00000020
C:\Windows\System32\config\COMPONENTS.LOG2: Error opening file for read: 0x00000020
C:\Windows\System32\config\default: Error opening file for read: 0x00000020
C:\Windows\System32\config\DEFAULT.LOG1: Error opening file for read: 0x00000020
C:\Windows\System32\config\DEFAULT.LOG2: Error opening file for read: 0x00000020
C:\Windows\System32\config\sam: Error opening file for read: 0x00000020
C:\Windows\System32\config\SAM.LOG1: Error opening file for read: 0x00000020
C:\Windows\System32\config\SAM.LOG2: Error opening file for read: 0x00000020
C:\Windows\System32\config\security: Error opening file for read: 0x00000020
C:\Windows\System32\config\SECURITY.LOG1: Error opening file for read: 0x00000020
C:\Windows\System32\config\SECURITY.LOG2: Error opening file for read: 0x00000020
C:\Windows\System32\config\software: Error opening file for read: 0x00000020
C:\Windows\System32\config\SOFTWARE.LOG1: Error opening file for read: 0x00000020
C:\Windows\System32\config\SOFTWARE.LOG2: Error opening file for read: 0x00000020
C:\Windows\System32\config\system: Error opening file for read: 0x00000020
C:\Windows\System32\config\SYSTEM.LOG1: Error opening file for read: 0x00000020
C:\Windows\System32\config\SYSTEM.LOG2: Error opening file for read: 0x00000020
C:\Windows\System32\config\RegBack\COMPONENTS: Error opening file for read: 0x00000020
C:\Windows\System32\config\RegBack\DEFAULT: Error opening file for read: 0x00000020
C:\Windows\System32\config\RegBack\SAM: Error opening file for read: 0x00000020
C:\Windows\System32\config\RegBack\SECURITY: Error opening file for read: 0x00000020
C:\Windows\System32\config\RegBack\SOFTWARE: Error opening file for read: 0x00000020
C:\Windows\System32\config\RegBack\SYSTEM: Error opening file for read: 0x00000020
C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTDiagLog.etl: Error opening file for read: 0x00000020
C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTEventLog-Application.etl: Error opening file for read: 0x00000020
C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTEventlog-Security.etl: Error opening file for read: 0x00000020
C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTEventLog-System.etl: Error opening file for read: 0x00000020
F:\Autorun.inf: Error opening file for read: 0x00000005
 
Number of files found: 157697
Number of archives unpacked: 15871
Number of objects found: 700683
Number of objects scanned: 700487
Number of objects not scanned: 196
Number of malicious objects found: 3
Number of malicious objects cleaned: 3
Number of malicious files found: 3
Number of malicious files cleaned: 3
Scanning time: 4h 16m 11s
 
Running post-scan cleanup routine...
 
Number of malicious objects found: 0
Number of malicious objects cleaned: 0
Scanning time: 0s
 
Results:
Total number of files found: 158387
Total number of archives unpacked: 15871
Total number of objects found: 709135
Total number of objects scanned: 708939
Total number of objects not scanned: 196
Total number of malicious objects found: 3
Total number of malicious objects cleaned: 3
Total number of malicious files found: 3
Total number of malicious files cleaned: 3
Total number of objects quarantined: 3
Total scanning time: 4h 25m 35s
 
 
Ok i did everything you wrote. I run Eset and it didn't find any threats but it didn't create a log in the end...


#15 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:16 PM

Posted 23 December 2013 - 05:00 PM

Ok at this point how is the machine performing?

 

Can you post a new security check log as well please.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users