Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ ZHPDiag v2015.12.7.181 Da Nicolas Coolman (2015/12/07)
~ iniziato da Flavio (Administrator) (2015/12/08 21:04:53)
~ Sito: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Stato della versione: Version OK
~ Modalità: Chercare
~ Report: C:\Users\Flavio\Desktop\ZHPDiag.txt
~ Report: C:\Users\Flavio\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Avvio del sistema: Normal (Normal boot)
Windows 10 Home, 64-bit (Build 10240)
---\\ Browser Internet (3) - 0s
GCIE: Google Chrome v46.0.2490.86
MFIE: Mozilla Firefox 42.0 (x86 it) v42.0
MSIE: Internet Explorer v11.0.10240.16590
---\\ Informazioni sul prodotto Windows (3) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
---\\ Software di protezione del sistema (1) - 12s
Windows Defender (Activate)
---\\ Software di sorveglianza (2) - 13s
Adobe Flash Player 19 NPAPI
Adobe Acrobat Reader DC - Français
---\\ Informazioni sul sistema (6) - 0s
~ Operating System: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 4193.332 MB (58% free)
System Restore: Activé (Enable)
System drive C: has 869 GB () free of 953 GB
---\\ Connessione alla modalità sistema (3) - 0s
~ Computer Name: JADE-EMERAUDE
~ User Name: Flavio
~ Logged in as Administrator
---\\ Enumerazione delle unità disco (1) - 0s
~ Drive C: has 869 GB free of 953 GB (System)
---\\ Stato di Windows Security Center (7) - 0s
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
---\\ Ricerca di particolari file generico (24) - 1s
[MD5.F1CBCB7FA6F3B309639AA2D4EF74469C] - 20/10/2015 - (.Microsoft Corporation - Esplora risorse.) -- C:\WINDOWS\Explorer.exe [4532304] =>.Microsoft Windows®
[MD5.5DED2A3F11AE916C8F2724947E736261] - 10/07/2015 - (.Microsoft Corporation - Processo host di Windows (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe [59392] ©
[MD5.7718A2A9B2BFB2C8E2BAEB03310CA3FD] - 20/10/2015 - (.Microsoft Corporation - Applicazione di avvio di Windows.) -- C:\WINDOWS\System32\Wininit.exe [290312] =>.Microsoft Windows Publisher®
[MD5.E5D86250453B33900666D92ED1A92ABE] - 20/10/2015 - (.Microsoft Corporation - Internet Extensions per Win32.) -- C:\WINDOWS\System32\wininet.dll [2740224] ©
[MD5.A7C48B051A9C5D5054916DE5BEBBCA2D] - 05/11/2015 - (.Microsoft Corporation - Applicazione Accesso a Windows.) -- C:\WINDOWS\System32\Winlogon.exe [579072] ©
[MD5.ECB1943967424DFB96E03F6A098434EF] - 20/10/2015 - (.Microsoft Corporation - Libreria gestione licenze software.) -- C:\WINDOWS\System32\sppcomapi.dll [430592] ©
[MD5.C287D0E32771E3222A444DC527A29477] - 10/07/2015 - (.Microsoft Corporation - DLL API client DNS.) -- C:\WINDOWS\System32\dnsapi.dll [680256] =>.Microsoft Windows®
[MD5.BB5BBD0E4D04047585E4ED0F07AA51E7] - 10/07/2015 - (.Microsoft Corporation - DLL API client DNS.) -- C:\WINDOWS\Syswow64\dnsapi.dll [534064] =>.Microsoft Windows®
[MD5.A3D96563BF46FC8A0E5756B796127D14] - 05/11/2015 - (.Microsoft Corporation - Driver funzione ausiliaria di WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [577888] =>.Microsoft Windows®
[MD5.8921DF6060DB5C7700AA48CB12E9EA08] - 10/07/2015 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [28512] =>.Microsoft Windows®
[MD5.F2829DC6D292DCAC5029893BB2E9FEE3] - 10/07/2015 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [92672] ©
[MD5.CA160E02F35A61C6F5C681FB4669C519] - 10/07/2015 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [174080] ©
[MD5.25435407D97419627F4B10653433BF2B] - 10/07/2015 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [138240] ©
[MD5.C277A49F8A8295840DEBC9240B75A282] - 10/07/2015 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [80896] ©
[MD5.D4CDEE4A62BDFFF6E8558A9552148EA7] - 10/07/2015 - (.Microsoft Corporation - Driver della porta i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [114688] ©
[MD5.5D3744E6FDEC1A6FB3FA9B1DD4AF0694] - 10/07/2015 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [143360] ©
[MD5.1DF2C5FD2710A13B07E663A12F0E0EEA] - 10/07/2015 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [415232] ©
[MD5.F0D791348AD254360CC3C3E501CCB745] - 10/07/2015 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [273408] ©
[MD5.466EC5659C02ED53DBD47DC1BC2B8086] - 20/10/2015 - (.Microsoft Corporation - Driver file system NT.) -- C:\WINDOWS\System32\drivers\ntfs.sys [2116448] =>.Microsoft Windows®
[MD5.38F1AE32339731F6E5A7281AE8042545] - 10/07/2015 - (.Microsoft Corporation - Driver della porta parallela.) -- C:\WINDOWS\System32\drivers\Parport.sys [96768] ©
[MD5.CA60F6C03611AF1710BC903ED9F566FB] - 10/07/2015 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [104960] ©
[MD5.A32AED8C644734B283A7C9D08D76064D] - 10/07/2015 - (.Microsoft Corporation - Redirector dispositivi Microsoft RDP.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [176128] ©
[MD5.D42AC03ACF9CA67693D1D9BB4D2A0BC8] - 05/11/2015 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [116064] =>.Microsoft Windows®
[MD5.823A237D871CD652C6BFD47BECB6810A] - 10/07/2015 - (.Microsoft Corporation - Driver copia shadow del volume.) -- C:\WINDOWS\System32\drivers\volsnap.sys [378720] =>.Microsoft Windows®
---\\ Servizi non Microsoft NT e non disabili (7) - 1s
O23 - Service: ArcSoft Connect Daemon (ACDaemon) . (.ArcSoft Inc. - ArcSoft Connect Service.) - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe {38B5A40BC3E8552B45588D0EB9B5F330} ©
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
O23 - Service: Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe =>.Apple Inc.®
O23 - Service: Servizio Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.®
O23 - Service: Servizio Aggiornamento Dropbox (dbupdate) (dbupdate) . (.Dropbox, Inc. - Dropbox Update.) - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe {0C89CBE063927780186EC0063F10D323} ©
O23 - Service: Servizio Google Update (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: @oem15.inf,%ViaKaraokeSrv.SvcDesc%;VIA Karaoke digital mixe (VIAKaraokeService) . (.VIA Technologies, Inc. - Service binary.) - C:\Windows\System32\viakaraokesrv.exe =>.VIA Technologies Inc.®
---\\ Attività pianificate in modo automatico (22) - 4s
[MD5.2EED3542F86F77D56569504B37C8108A] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1045720] =>.Adobe Systems, Incorporated®
[MD5.280A526E8111AC6A5BCC1A059E1E0340] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269000] =>.Adobe Systems Incorporated®
[MD5.BC14706D68E7F855735369CFEE4028C7] [APT] [Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8] (.Bitdefender.) -- C:\Program Files\Bitdefender\Bitdefender 2015\bdproductdata.exe [98208] =>.Bitdefender SRL®
[MD5.00000000000000000000000000000000] [APT] [CreateChoiceProcessTask] (...) -- C:\Windows\System32\browserchoice.exe (.not file.) [0]
[MD5.33BFEC2B102B196B62ABB9947C7D7E23] [APT] [DropboxUpdateTaskMachineCore] (.Dropbox, Inc..) -- C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048] {0C89CBE063927780186EC0063F10D323} ©
[MD5.33BFEC2B102B196B62ABB9947C7D7E23] [APT] [DropboxUpdateTaskMachineUA] (.Dropbox, Inc..) -- C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048] {0C89CBE063927780186EC0063F10D323} ©
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] =>.Google Inc®
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] =>.Google Inc®
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [Apple\AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984] =>.Apple Inc.®
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job [978] ©
O39 - APT: DropboxUpdateTaskMachineCore - (.Dropbox, Inc..) -- C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job [1132] ©
O39 - APT: DropboxUpdateTaskMachineUA - (.Dropbox, Inc..) -- C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job [1136] ©
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job [1182] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job [1186] ©
O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task [3972] ©
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater [3952] ©
O39 - APT: Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8 - (.Bitdefender.) -- C:\WINDOWS\System32\Tasks\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8 [3628] ©
O39 - APT: CreateChoiceProcessTask - (...) -- C:\WINDOWS\System32\Tasks\CreateChoiceProcessTask [3658]
O39 - APT: DropboxUpdateTaskMachineCore - (.Dropbox, Inc..) -- C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore [3964] ©
O39 - APT: DropboxUpdateTaskMachineUA - (.Dropbox, Inc..) -- C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA [4196] ©
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore [4012] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA [4244] ©
---\\ Processo avviato (7) - 3s
[MD5.ADC420616C501B45D26C0FD3EF1E54E4] - (.ArcSoft Inc. - ArcSoft Connect Service.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152] [PID.1696] {38B5A40BC3E8552B45588D0EB9B5F330} ©
[MD5.815876D43D6E94292625A4B53DEAA145] - (.Oodrive - CloudSync.) -- C:\Users\Flavio\AppData\Local\Pack Fnac\Fnac Cloud\bin\FnacCloud.exe [2060936] [PID.2992] {1121575B08FFD72D30A509CB3438D3EE173B}
[MD5.A7810B302294793DE88542AAE177D1B1] - (.ArcSoft Inc. - ArcSoft Connect Daemon.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424] [PID.5680] {39084E9060237309927F12E072B274ED} ©
[MD5.F400694D7D2785F60133C20F7F2F4F7A] - (.ArcSoft Inc. - ArcSoft Connect Notifier.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac [309824] [PID.4952] {39084E9060237309927F12E072B274ED} ©
[MD5.CE8F4D2B9C72FB38AC96B805512ADA58] - (.SEIKO EPSON CORPORATION - EEventManager MFC Application.) -- C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [591696] [PID.2872] {465B5F97A261A61C63C23A4950135A48} ©
[MD5.68906CB235548C09E0657549A33C52B6] - (.Copyright Microsoft Corporation - Microsoft Photos.) -- C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1201.10020.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe [12800] [PID.440] ©
[MD5.61AC7CA26FAA79C54D7B61669A9FD5E4] - (.Copyright (C) 2015 Nicolas Coolman - ZHPDiag.) -- C:\Users\Flavio\Downloads\ZHPDiag3.exe [1999360] [PID.380] ©
---\\ Google Chrome, start, cerca, estensioni (8) - 1s
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.google.com
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] __MSG_extName__
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.
---\\ Mozilla Firefox, Plugin,Start,Cerca,Estensioni (9) - 0s
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ©
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll ©
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Apple Inc..) -- C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ©
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (.Microsoft Corporation.) -- c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll ©
P2 - FPN: [HKLM] [@microsoft.com/OfficeAuthz,version=14.0] - (.Microsoft Corporation.) -- C:\Program Files (x86)\Microsoft Office\Office14\NPAUTHZ.DLL ©
P2 - FPN: [HKLM] [@microsoft.com/SharePoint,version=14.0] - (.Microsoft Corporation.) -- C:\Program Files (x86)\Microsoft Office\Office14\NPSPWRAP.DLL ©
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc..) -- C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll ©
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc..) -- C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll ©
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc..) -- C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll ©
---\\ Internet Explorer, Start,Cerca,Phishing (17) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
---\\ Internet Explorer, gestione Proxy (5) - 1s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Analisi delle linee - IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: VMApplet=
---\\ Hosts file redirection (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)
---\\ Browser Helper Object (BHO) (2) - 0s
O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll =>.Google Inc®
O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL =>.Microsoft Corporation®
---\\ Internet Explorer barre degli strumenti (2) - 0s
O3 - Toolbar: 0xB1C218236549D4119B18009027A5CD4F - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll =>.Google Inc®
O3 - Toolbar: 0x00 - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll =>.Google Inc®
---\\ Iniziato da file e registro applicazioni (14) - 0s
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe =>.Apple Inc.®
O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe {3144C06A6CFB5076C15D399572C69421} ©
O4 - HKCU\..\Run: [Fnac Cloud] . (.Oodrive - CloudSync.) -- C:\Users\Flavio\AppData\Local\Pack Fnac\Fnac Cloud\bin\FnacCloud.exe {1121575B08FFD72D30A509CB3438D3EE173B}
O4 - HKCU\..\Run: [Bitdefender Wallet Agent] C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe (.not file.)
O4 - HKCU\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Flavio\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - HKLM\..\Wow6432Node\Run: [ArcSoft Connection Service] . (.ArcSoft Inc. - ArcSoft Connect Daemon.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe {39084E9060237309927F12E072B274ED} ©
O4 - HKLM\..\Wow6432Node\Run: [EEventManager] . (.SEIKO EPSON CORPORATION - EEventManager MFC Application.) -- C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe {465B5F97A261A61C63C23A4950135A48} ©
O4 - HKLM\..\Wow6432Node\Run: [Dropbox] . (.Dropbox, Inc. - Dropbox.) -- C:\Program Files (x86)\Dropbox\Client\Dropbox.exe =>.Dropbox, Inc®
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-2068896678-3488468137-3618400487-1000\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe {3144C06A6CFB5076C15D399572C69421} ©
O4 - HKUS\S-1-5-21-2068896678-3488468137-3618400487-1000\..\Run: [Fnac Cloud] . (.Oodrive - CloudSync.) -- C:\Users\Flavio\AppData\Local\Pack Fnac\Fnac Cloud\bin\FnacCloud.exe {1121575B08FFD72D30A509CB3438D3EE173B}
O4 - HKUS\S-1-5-21-2068896678-3488468137-3618400487-1000\..\Run: [Bitdefender Wallet Agent] C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe (.not file.)
O4 - HKUS\S-1-5-21-2068896678-3488468137-3618400487-1000\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Flavio\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
---\\ Modificare gli indirizzi DNS domain (2) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 62.2.24.162 62.2.17.61 62.2.24.158 62.2.17.60
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 62.2.24.162 62.2.17.61 62.2.24.158 62.2.17.60
---\\ Protocollo addizionale (23) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizzatore HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Estensioni OLE32 per Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Controllo ActiveX per streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll ©
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Estensioni OLE32 per Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Estensioni OLE32 per Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Estensioni OLE32 per Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Estensioni OLE32 per Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll ©
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizzatore HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Estensioni OLE32 per Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizzatore HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\SysWOW64\inetcomm.dll ©
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Estensioni OLE32 per Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll =>.Microsoft Corporation®
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll ©
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizzatore HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll ©
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Controllo ActiveX per streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll ©
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizzatore HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll ©
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll ©
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll ©
O18 - Filter: text/xml [64Bits] - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL =>.Microsoft Corporation®
---\\ Software installato (30) - 5s
O42 - Logiciel: ABBYY FineReader 6.0 Sprint - (.ABBYY Software House.) [HKLM][64Bits] -- {ACF60000-22B9-4CE9-98D6-2CCF359BAC07} ©
O42 - Logiciel: Adobe Acrobat Reader DC - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AC0F074E4100} ©
O42 - Logiciel: Adobe Flash Player 19 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI ©
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824157129} ©
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {5D61F006-168C-4B8B-B7FD-F113C10AE0E4} ©
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} ©
O42 - Logiciel: ArcSoft MediaImpression - (.ArcSoft.) [HKLM][64Bits] -- {531F0013-964C-4BE6-B382-4117DC8BCDF9} ©
O42 - Logiciel: Bitdefender Total Security 2015 - (.Bitdefender.) [HKLM][64Bits] -- Bitdefender ©
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D} ©
O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKLM][64Bits] -- Dropbox ©
O42 - Logiciel: Dropbox Update Helper - (.Dropbox, Inc..) [HKLM][64Bits] -- {099218A5-A723-43DC-8DB5-6173656A1E94} ©
O42 - Logiciel: Epson Copy Utility 3.4 - (...) [HKLM][64Bits] -- {AA72FB28-73B4-49E5-B6B4-E78F44BBD0AD}
O42 - Logiciel: Epson Event Manager - (.SEIKO EPSON Corporation.) [HKLM][64Bits] -- {48F22622-1CC2-4A83-9C1E-644DD96F832D} ©
O42 - Logiciel: EPSON PERFECTION V30_V300 PHOTO Manuale - (...) [HKLM][64Bits] -- EPSON PERFECTION V30_V300 PHOTO Guida utente
O42 - Logiciel: EPSON Scan - (...) [HKLM][64Bits] -- EPSON Scanner
O42 - Logiciel: Fnac Cloud v2.7.0.2 - (.Fnac.) [HKCU][64Bits] -- {1153E5B0-C8D2-4A77-9AE2-05C17BD90517}_is1
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome ©
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C} ©
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F} ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} ©
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {6CF1A7E2-8001-4870-9F18-3C6CDD6FE9E3} ©
O42 - Logiciel: Microsoft DVD App Installation for Microsoft.WindowsDVDPlayer_2019.6.13291. - (.Microsoft Corporation.) [HKLM][64Bits] -- {25E80DAA-FD87-DCE5-202C-CC02F6673002} ©
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} ©
O42 - Logiciel: Mozilla Firefox 42.0 (x86 it) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 42.0 (x86 it) ©
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService ©
O42 - Logiciel: SocialSafe - (.Social Safe Limited.) [HKLM][64Bits] -- SocialSafe 6.6.8
O42 - Logiciel: Supporto applicazioni Apple (32 bit) - (.Apple Inc..) [HKLM][64Bits] -- {7FE25256-B7C1-480D-B736-10A67A833AEA} ©
O42 - Logiciel: Supporto applicazioni Apple (64 bit) - (.Apple Inc..) [HKLM][64Bits] -- {B255D495-4734-4E9B-B4F5-96702FD4A7B9} ©
O42 - Logiciel: Tableau de Bord Pack Fnac - (...) [HKLM][64Bits] -- Tableau de Bord Pack Fnac
---\\ HKCU & HKLM Software Keys (46) - 5s
HKLM\SOFTWARE\Wow6432Node\ABBYY
HKLM\SOFTWARE\Wow6432Node\AceBIT
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\Apple Inc.
HKLM\SOFTWARE\Wow6432Node\ArcSoft
HKLM\SOFTWARE\Wow6432Node\Bitdefender
HKLM\SOFTWARE\Wow6432Node\Brother
HKLM\SOFTWARE\Wow6432Node\Dropbox
HKLM\SOFTWARE\Wow6432Node\DropboxUpdate
HKLM\SOFTWARE\Wow6432Node\EPSON
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\Panda Software
HKLM\SOFTWARE\Wow6432Node\Social Safe Limited
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\ABBYY
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc.
HKCU\SOFTWARE\ArcSoft
HKCU\SOFTWARE\Bitdefender
HKCU\SOFTWARE\Brother
HKCU\SOFTWARE\Dropbox
HKCU\SOFTWARE\DropboxUpdate
HKCU\SOFTWARE\EPSON
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Mine
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Panda Software
HKCU\SOFTWARE\PhoenixPacs
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\SEIKO EPSON
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
---\\ Contenuto delle cartelle Programmi (148) - 6s
O43 - CFD: 15/03/2015 - [] D -- C:\Program Files (x86)\ABBYY FineReader 6.0 Sprint
O43 - CFD: 17/11/2015 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 08/08/2015 - [] D -- C:\Program Files (x86)\Apple Software Update
O43 - CFD: 15/03/2015 - [] D -- C:\Program Files (x86)\ArcSoft
O43 - CFD: 08/08/2015 - [] D -- C:\Program Files (x86)\Bonjour
O43 - CFD: 20/10/2015 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 28/11/2015 - [] D -- C:\Program Files (x86)\Dropbox
O43 - CFD: 15/03/2015 - [] D -- C:\Program Files (x86)\epson
O43 - CFD: 15/03/2015 - [] D -- C:\Program Files (x86)\Epson Software
O43 - CFD: 21/04/2015 - [] D -- C:\Program Files (x86)\Fnac
O43 - CFD: 15/03/2015 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 15/03/2015 - [0] D -- C:\Program Files (x86)\GUMA986.tmp
O43 - CFD: 17/03/2015 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 20/10/2015 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 08/08/2015 - [] D -- C:\Program Files (x86)\iTunes
O43 - CFD: 16/05/2014 - [] D -- C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD: 16/05/2014 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 14/08/2015 - [] D -- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 20/10/2015 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 12/11/2015 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 20/10/2015 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 20/10/2015 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 21/04/2015 - [] D -- C:\Program Files (x86)\SocialSafe
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 20/10/2015 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 20/10/2015 - [] SHD -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 10/07/2015 - [] SD -- C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 20/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ABBYY FineReader 6.0 Sprint
O43 - CFD: 20/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 20/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 10/07/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 20/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft Connect
O43 - CFD: 20/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft MediaImpression
O43 - CFD: 28/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
O43 - CFD: 20/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
O43 - CFD: 20/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epson Software
O43 - CFD: 14/05/2014 - [0] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 20/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 20/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
O43 - CFD: 10/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 20/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 20/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 20/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SocialSafe
O43 - CFD: 10/07/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 10/07/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 10/07/2015 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 17/11/2015 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 08/08/2015 - [] D -- C:\ProgramData\Apple
O43 - CFD: 08/08/2015 - [] D -- C:\ProgramData\Apple Computer
O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 17/03/2015 - [] D -- C:\ProgramData\ArcSoft
O43 - CFD: 16/05/2014 - [] D -- C:\ProgramData\Backup
O43 - CFD: 27/07/2015 - [] D -- C:\ProgramData\bdch
O43 - CFD: 21/04/2015 - [] D -- C:\ProgramData\BDLogging
O43 - CFD: 21/04/2015 - [] D -- C:\ProgramData\Bitdefender
O43 - CFD: 20/10/2015 - [] D -- C:\ProgramData\Brother
O43 - CFD: 10/07/2015 - [0] D -- C:\ProgramData\Comms
O43 - CFD: 14/05/2014 - [0] SHD -- C:\ProgramData\Dati applicazioni
O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 14/05/2014 - [0] SHD -- C:\ProgramData\Documenti
O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 28/11/2015 - [] D -- C:\ProgramData\Dropbox
O43 - CFD: 15/03/2015 - [] D -- C:\ProgramData\Google
O43 - CFD: 14/05/2014 - [0] SHD -- C:\ProgramData\Menu Avvio
O43 - CFD: 11/11/2015 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 11/11/2015 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 20/10/2015 - [] D -- C:\ProgramData\Microsoft OneDrive
O43 - CFD: 14/05/2014 - [0] SHD -- C:\ProgramData\Modelli
O43 - CFD: 26/05/2014 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 16/05/2014 - [] D -- C:\ProgramData\Panda Software
O43 - CFD: 14/05/2014 - [0] SHD -- C:\ProgramData\Preferiti
O43 - CFD: 10/07/2015 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 10/07/2015 - [0] D -- C:\ProgramData\SoftwareDistribution
O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 10/07/2015 - [] D -- C:\ProgramData\USOPrivate
O43 - CFD: 10/07/2015 - [] D -- C:\ProgramData\USOShared
O43 - CFD: 17/11/2015 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 08/08/2015 - [] D -- C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 15/03/2015 - [] D -- C:\Program Files (x86)\Common Files\ArcSoft
O43 - CFD: 16/05/2014 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 15/03/2015 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 20/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 20/10/2015 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 16/05/2014 - [] D -- C:\Users\Flavio\AppData\Roaming\Adobe
O43 - CFD: 08/08/2015 - [] D -- C:\Users\Flavio\AppData\Roaming\Apple Computer
O43 - CFD: 18/03/2015 - [] D -- C:\Users\Flavio\AppData\Roaming\ArcSoft
O43 - CFD: 21/04/2015 - [] D -- C:\Users\Flavio\AppData\Roaming\Bitdefender
O43 - CFD: 08/07/2014 - [] RD -- C:\Users\Flavio\AppData\Roaming\Brother
O43 - CFD: 21/04/2015 - [] D -- C:\Users\Flavio\AppData\Roaming\com.1minus1.socialsafe.D675411CF670AA3EFAC13BDD847989BEDE2115E2.1
O43 - CFD: 28/11/2015 - [] D -- C:\Users\Flavio\AppData\Roaming\Dropbox
O43 - CFD: 05/04/2015 - [] D -- C:\Users\Flavio\AppData\Roaming\Epson
O43 - CFD: 26/05/2015 - [] D -- C:\Users\Flavio\AppData\Roaming\Google
O43 - CFD: 14/05/2014 - [] D -- C:\Users\Flavio\AppData\Roaming\Identities
O43 - CFD: 15/03/2015 - [] D -- C:\Users\Flavio\AppData\Roaming\InstallShield
O43 - CFD: 07/09/2014 - [] D -- C:\Users\Flavio\AppData\Roaming\Macromedia
O43 - CFD: 12/04/2011 - [0] D -- C:\Users\Flavio\AppData\Roaming\Media Center Programs
O43 - CFD: 05/12/2015 - [] SD -- C:\Users\Flavio\AppData\Roaming\Microsoft
O43 - CFD: 26/05/2014 - [] D -- C:\Users\Flavio\AppData\Roaming\Mozilla
O43 - CFD: 21/04/2015 - [0] D -- C:\Users\Flavio\AppData\Roaming\QuickScan
O43 - CFD: 29/12/2014 - [] D -- C:\Users\Flavio\AppData\Roaming\U3
O43 - CFD: 08/12/2015 - [] D -- C:\Users\Flavio\AppData\Roaming\ZHP
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Flavio\AppData\Local\Adobe
O43 - CFD: 08/08/2015 - [] D -- C:\Users\Flavio\AppData\Local\Apple
O43 - CFD: 08/08/2015 - [] D -- C:\Users\Flavio\AppData\Local\Apple Computer
O43 - CFD: 15/03/2015 - [] D -- C:\Users\Flavio\AppData\Local\ArcSoft
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Flavio\AppData\Local\CEF
O43 - CFD: 20/10/2015 - [0] SHD -- C:\Users\Flavio\AppData\Local\Cronologia
O43 - CFD: 20/10/2015 - [0] SHD -- C:\Users\Flavio\AppData\Local\Dati applicazioni
O43 - CFD: 08/12/2015 - [] D -- C:\Users\Flavio\AppData\Local\Dropbox
O43 - CFD: 22/09/2015 - [0] D -- C:\Users\Flavio\AppData\Local\ElevatedDiagnostics
O43 - CFD: 08/08/2015 - [0] SHD -- C:\Users\Flavio\AppData\Local\EmieBrowserModeList
O43 - CFD: 08/08/2015 - [0] SHD -- C:\Users\Flavio\AppData\Local\EmieSiteList
O43 - CFD: 08/08/2015 - [0] SHD -- C:\Users\Flavio\AppData\Local\EmieUserList
O43 - CFD: 21/04/2015 - [] D -- C:\Users\Flavio\AppData\Local\Fnac
O43 - CFD: 05/10/2015 - [] D -- C:\Users\Flavio\AppData\Local\Google
O43 - CFD: 02/06/2015 - [] D -- C:\Users\Flavio\AppData\Local\GWX
O43 - CFD: 07/09/2014 - [] D -- C:\Users\Flavio\AppData\Local\Macromedia
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Flavio\AppData\Local\Microsoft
O43 - CFD: 09/01/2015 - [] D -- C:\Users\Flavio\AppData\Local\Microsoft Games
O43 - CFD: 14/05/2014 - [0] D -- C:\Users\Flavio\AppData\Local\Microsoft Help
O43 - CFD: 20/10/2015 - [] D -- C:\Users\Flavio\AppData\Local\MicrosoftEdge
O43 - CFD: 26/05/2014 - [] D -- C:\Users\Flavio\AppData\Local\Mozilla
O43 - CFD: 21/04/2015 - [] D -- C:\Users\Flavio\AppData\Local\Pack Fnac
O43 - CFD: 25/10/2015 - [] D -- C:\Users\Flavio\AppData\Local\Packages
O43 - CFD: 16/03/2015 - [] D -- C:\Users\Flavio\AppData\Local\Programs
O43 - CFD: 20/10/2015 - [] D -- C:\Users\Flavio\AppData\Local\Publishers
O43 - CFD: 08/12/2015 - [] D -- C:\Users\Flavio\AppData\Local\Temp
O43 - CFD: 20/10/2015 - [0] SHD -- C:\Users\Flavio\AppData\Local\Temporary Internet Files
O43 - CFD: 20/10/2015 - [] D -- C:\Users\Flavio\AppData\Local\TileDataLayer
O43 - CFD: 28/11/2015 - [] D -- C:\Users\Flavio\AppData\Local\VirtualStore
O43 - CFD: 10/07/2015 - [] RD -- C:\Users\Flavio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 20/10/2015 - [] RD -- C:\Users\Flavio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 20/10/2015 - [] RD -- C:\Users\Flavio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 10/07/2015 - [] D -- C:\Users\Flavio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 20/10/2015 - [] D -- C:\Users\Flavio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pack Fnac
O43 - CFD: 20/10/2015 - [] RD -- C:\Users\Flavio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 10/07/2015 - [] RD -- C:\Users\Flavio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 10/07/2015 - [] RSD -- C:\Users\Flavio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
---\\ ShellIconOverlayIdentifiers (SIOI) (13) - 2s
O106 - SIOI: DropboxExt1 Class [ DropboxExt1] - {FB314ED9-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll {017CA19B5859E83F44D874C1CE506E6D} ©
O106 - SIOI: DropboxExt2 Class [ DropboxExt2] - {FB314EDA-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll {017CA19B5859E83F44D874C1CE506E6D} ©
O106 - SIOI: DropboxExt5 Class [ DropboxExt3] - {FB314EDD-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll {017CA19B5859E83F44D874C1CE506E6D} ©
O106 - SIOI: DropboxExt6 Class [ DropboxExt4] - {FB314EDE-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll {017CA19B5859E83F44D874C1CE506E6D} ©
O106 - SIOI: DropboxExt3 Class [ DropboxExt5] - {FB314EDB-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll {017CA19B5859E83F44D874C1CE506E6D} ©
O106 - SIOI: DropboxExt7 Class [ DropboxExt6] - {FB314EDF-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll {017CA19B5859E83F44D874C1CE506E6D} ©
O106 - SIOI: DropboxExt4 Class [ DropboxExt7] - {FB314EDC-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll {017CA19B5859E83F44D874C1CE506E6D} ©
O106 - SIOI: DropboxExt8 Class [ DropboxExt8] - {FB314EE0-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll {017CA19B5859E83F44D874C1CE506E6D} ©
O106 - SIOI: ErrorOverlayHandler Class [ OneDrive1] - {BBACC218-34EA-4666-9D7A-C78F2274A524}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Flavio\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SharedOverlayHandler Class [ OneDrive2] - {5AB7172C-9C11-405C-8DD5-AF20F3606282}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Flavio\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SharedSyncingOverlayHandler Class [ OneDrive3] - {A78ED123-AB77-406B-9962-2A5D9D2F7F30}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Flavio\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: UpToDateOverlayHandler Class [ OneDrive4] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Flavio\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SyncingOverlayHandler Class [ OneDrive5] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Flavio\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileSyncShell.dll =>.Microsoft Corporation®
---\\ Elenco dei driver del sistema (42) - 10s
O58 - SDL:2015/07/10 11:59:38 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [107360] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:38 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [1135456] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:38 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [83296] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:38 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [259424] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:38 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [26976] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:38 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [131936] =>.Microsoft Windows®
O58 - SDL:2013/05/17 10:13:26 A . (. - ATK0110 ACPI Utility.) -- C:\WINDOWS\System32\drivers\ASACPI.sys [17280] =>.ASUSTeK Computer Inc.®
O58 - SDL:2015/07/10 11:59:38 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [17624] =>.Broadcom Corporation®
O58 - SDL:2014/12/15 17:04:16 A . (.BitDefender LLC - BitDefender Firewall NDIS6 Filter Driver.) -- C:\WINDOWS\System32\drivers\BdfNdisf6.sys [93600] =>.Bitdefender SRL®
O58 - SDL:2015/07/10 11:59:38 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [531296] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:38 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3436896] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:38 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [64352] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:36 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128] =>.Intel Corporation - Client Components Group®
O58 - SDL:2015/07/10 11:59:36 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [122608] =>.Intel Corporation - Client Components Group®
O58 - SDL:2015/07/10 11:59:38 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [673120] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:38 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412000] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\WINDOWS\System32\drivers\ibbus.sys [424800] =>.Microsoft Windows®
O58 - SDL:2010/07/28 23:25:10 A . (.Initio Corporation - Initio Default Vendor Specific Device Drive.) -- C:\WINDOWS\System32\drivers\ivusb.sys [29720] {56CD068387BA175A3D5FEBDC98B41C04}
O58 - SDL:2015/07/10 11:59:38 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [108896] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:38 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2i.sys [104800] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:38 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3i.sys [99168] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:38 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82784] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [59744] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575840] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.Mellanox - MLX4 Bus Driver.) -- C:\WINDOWS\System32\drivers\mlx4_bus.sys [705376] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63840] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\System32\drivers\ndfltr.sys [76128] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150368] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [166240] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas2i.sys [58208] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas3i.sys [58720] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.40 64-bit Dri.) -- C:\WINDOWS\System32\drivers\rt640x64.sys [587264] ©
O58 - SDL:2015/07/10 11:59:39 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44896] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81760] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31072] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:48 A . (...) -- C:\WINDOWS\System32\drivers\Udecx.sys [44032]
O58 - SDL:2015/06/22 01:49:50 A . (.VIA Technologies, Inc. - VIA High Definition Audio Function Driver.) -- C:\WINDOWS\System32\drivers\viahduaa.sys [701136] {48B232AC601840B7ECE54FBCBEB5A947} ©
O58 - SDL:2015/06/22 01:49:50 A . (.Creative Technology Ltd. - Creative Audio Driver.) -- C:\WINDOWS\System32\drivers\VMfilt64.sys [42192] {48B232AC601840B7ECE54FBCBEB5A947} ©
O58 - SDL:2015/07/10 11:59:39 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [166752] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305504] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.Mellanox - Kernel WinMad.) -- C:\WINDOWS\System32\drivers\winmad.sys [26976] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.Mellanox - Kernel WinVerbs.) -- C:\WINDOWS\System32\drivers\winverbs.sys [59232] =>.Microsoft Windows®
---\\ Ultimi file modificati o creati (utente) (10) - 8s
O61 - LFC: 2015/12/05 19:11:34 A . (..) -- C:\Users\Flavio\Downloads\AdwCleaner-5.023 (1).exe [11489]
O61 - LFC: 2015/12/05 18:33:07 A . (..) -- C:\Users\Flavio\Downloads\AdwCleaner-5.023(1).exe [11489]
O61 - LFC: 2015/12/05 18:30:10 A . (..) -- C:\Users\Flavio\Downloads\AdwCleaner-5.023.exe [11489]
O61 - LFC: 2015/12/05 18:34:16 A . (.Nicolas Coolman.) -- C:\Users\Flavio\Downloads\ZHPCleaner.exe [1908224] ©
O61 - LFC: 2015/12/08 21:04:40 A . (.Copyright (C) 2015 Nicolas Coolman.) -- C:\Users\Flavio\Downloads\ZHPDiag3.exe [1999360] ©
O61 - LFC: 2015/12/05 18:34:16 A . (.Nicolas Coolman.) -- C:\Users\Flavio\AppData\Roaming\ZHP\ZHPCleaner.exe [1908224] ©
O61 - LFC: 2015/12/08 21:04:40 A . (.Copyright (C) 2015 Nicolas Coolman.) -- C:\Users\Flavio\AppData\Roaming\ZHP\ZHPDiag3.exe [1999360] ©
O61 - LFC: 2015/12/05 22:53:36 A . (..) -- C:\Users\Flavio\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\speech_onecorereg.bin [0]
O61 - LFC: 2015/12/05 19:11:06 A . (..) -- C:\Users\Flavio\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\UrlBlock\urlblock_635849299294394628.bin [69376]
O61 - LFC: 2015/12/08 21:01:31 A . (..) -- C:\Users\Flavio\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [674082]
---\\ Associazioni Shell Spawning (11) - 1s
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe ©
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKLM\..\open\Command] (.Microsoft Corporation - Utilità di avvio snap-in Visualizzatore eve.) -- C:\Windows\System32\eventvwr.exe ©
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKLM\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O67 - Shell Spawning: <.js>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe ©
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - Editor del Registro di sistema.) -- C:\Windows\regedit.exe ©
O67 - Shell Spawning: <.scr>[HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
---\\ Menu Start Internet (12) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe ©
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - 'Firefox' Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilità di inizializzazione Per utente di I.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - 'Firefox' Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilità di inizializzazione Per utente di I.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - 'Firefox' Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilità di inizializzazione Per utente di I.) -- C:\Windows\System32\ie4uinit.exe ©
---\\ Cerca infezione su browser internet (4) - 6s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {56EF61F3-262E-4DA4-AE74-695508411F21} - (Google) - http://www.google.fr/
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} [DefaultScope] - (Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKCU] {7EFBFE57-12F0-4C74-B673-D03B81FC1791} - ((www.google.com) Google) - http://www.google.com/
---\\ Enumera l''avvio del servizio Svchost (41) - 2s
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Servizio Propagazione certificati smart car.) -- C:\WINDOWS\System32\certprop.dll [192000] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Servizio Propagazione certificati smart car.) -- C:\WINDOWS\System32\certprop.dll [192000] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL di servizio server.) -- C:\WINDOWS\system32\srvsvc.dll [283136] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client di Criteri di gruppo.) -- C:\WINDOWS\System32\gpsvc.dll [1335296] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Estensione IKE.) -- C:\WINDOWS\System32\ikeext.dll [954368] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Servizio che offre connettività IPv6 su una.) -- C:\WINDOWS\System32\iphlpsvc.dll [954880] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL del Servizio di accesso secondario.) -- C:\WINDOWS\system32\seclogon.dll [31232] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Servizio Informazioni applicazioni.) -- C:\WINDOWS\System32\appinfo.dll [93696] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Servizio di individuazione iSCSI.) -- C:\WINDOWS\system32\iscsiexe.dll [151040] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Servizio Microsoft EAPHost.) -- C:\WINDOWS\System32\eapsvc.dll [106496] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Servizio Utilità di pianificazione.) -- C:\WINDOWS\system32\schedsvc.dll [1008640] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\WMIsvc.dll [226304] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL servizio Browser di computer.) -- C:\WINDOWS\System32\browser.dll [133120] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\WINDOWS\system32\profsvc.dll [324608] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Servizio Configurazione Desktop remoto.) -- C:\Windows\System32\SessEnv.dll [371200] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Segnalazioni di problemi e soluzioni.) -- C:\WINDOWS\System32\wercplsupport.dll [95744] ©
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Servizio account Microsoft®.) -- C:\WINDOWS\system32\wlidsvc.dll [2093056] ©
O83 - Search Svchost Services: DcpSvc (DcpSvc) . (.Microsoft Corporation - dcpsvc Task.) -- C:\WINDOWS\system32\dcpsvc.dll [196096] ©
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Servizio Assistente connettività di rete Mi.) -- C:\WINDOWS\System32\ncasvc.dll [167424] ©
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Servizio di installazione della rete.) -- C:\WINDOWS\System32\NetSetupSvc.dll [187392] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestione composizione automatica di accesso.) -- C:\WINDOWS\System32\rasauto.dll [106496] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Connection Manager di Accesso remoto.) -- C:\WINDOWS\System32\rasmans.dll [679936] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestione interfaccia dinamica.) -- C:\Windows\System32\mprdim.dll [497152] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Servizio di notifica eventi di sistema (SEN.) -- C:\WINDOWS\System32\sens.dll [72192] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Componenti helper NAT Microsoft.) -- C:\WINDOWS\System32\ipnathlp.dll [452608] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Server di Telefonia Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll [311808] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agente di Windows Update.) -- C:\WINDOWS\system32\wuaueng.dll [2236416] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Servizio trasferimento intelligente in back.) -- C:\WINDOWS\System32\qmgr.dll [1168896] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll di servizi shell di Windows.) -- C:\Windows\System32\shsvcs.dll [593920] ©
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\WINDOWS\system32\dmwappushsvc.dll [63488] ©
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\WINDOWS\System32\XblGameSave.dll [1149440] ©
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\WINDOWS\system32\XboxNetApiSvc.dll [1019392] ©
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Componenti principali agente di orchestrazi.) -- C:\WINDOWS\system32\usocore.dll [343040] ©
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\WINDOWS\System32\usermgr.dll [713216] ©
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Servizio di georilevazione.) -- C:\Windows\System32\lfsvc.dll [27136] ©
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - DLL servizio gestione Windows.) -- C:\Windows\System32\Windows.Internal.Management.dll [267776] ©
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\WINDOWS\System32\XblAuthManager.dll [918016] ©
O83 - Search Svchost Services: RetailDemo (RetailDemo) . (.Microsoft Corporation - RDXService.) -- C:\WINDOWS\system32\RDXService.dll [1015808] ©
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Servizio BDE.) -- C:\WINDOWS\System32\bdesvc.dll [359936] ©
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestione configurazione dispositivi.) -- C:\WINDOWS\System32\DeviceSetupManager.dll [237568] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL servizio temi shell di Windows.) -- C:\WINDOWS\system32\themeservice.dll [58368] ©
---\\ Elenco di eccezioni del firewall (2) - 1s
O87 - FAEL: "UDP Query User{06A7CDC2-2F71-48D4-8D29-B0FD8F54495B}C:\program files (x86)\panda security\panda internet security 2014\apvxdwin.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\panda security\panda internet security 2014\apvxdwin.exe (.not file.)
O87 - FAEL: "TCP Query User{80D38721-DE02-4177-95C8-57CCA4C8D9F6}C:\program files (x86)\panda security\panda internet security 2014\apvxdwin.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\panda security\panda internet security 2014\apvxdwin.exe (.not file.)
---\\ Servizi non Microsoft (GSR) (SR = esecuzione, SS = fermato) (14) - 16s
SR - Auto [18/03/2010] [ 1365304] ArcSoft Connect Daemon (ACDaemon) . (.ArcSoft Inc..) - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe {38B5A40BC3E8552B45588D0EB9B5F330} ©
SR - Auto [14/09/2015] [ 1365304] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
SS - Demand [11/11/2015] [ 1365304] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SR - Auto [29/05/2015] [ 1365304] Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe =>.Apple Inc.®
SR - Auto [30/08/2011] [ 1365304] Servizio Bonjour (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.®
SS - Auto [28/11/2015] [ 1365304] Servizio Aggiornamento Dropbox (dbupdate) (dbupdate) . (.Dropbox, Inc..) - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe {0C89CBE063927780186EC0063F10D323} ©
SS - Demand [28/11/2015] [ 1365304] Servizio Aggiornamento Dropbox (dbupdatem) (dbupdatem) . (.Dropbox, Inc..) - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe {0C89CBE063927780186EC0063F10D323} ©
SS - Auto [31/08/2015] [ 1365304] Servizio Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [31/08/2015] [ 1365304] Servizio Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [15/03/2015] [ 1365304] Google Software Updater (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe =>.Google Inc®
SR - Demand [11/07/2015] [ 1365304] Servizio iPod (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe =>.Apple Inc.®
SS - Demand [03/11/2015] [ 1365304] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SR - Auto [0] [ 1365304] @oem15.inf,%ViaKaraokeSrv.SvcDesc%;VIA Karaoke digital mixe (VIAKaraokeService) . (.VIA Technologies, Inc..) - C:\Windows\System32\viakaraokesrv.exe ©
---\\ Scansione aggiuntive (1) - 0s
~ Nessun elemento malevolo o inutili trovato.
---\\ Riepilogo dei elementi trovato sulla workstation (1) - 0s
~ Nessun elemento malevolo o inutili trovato.
~ End of the scan, 29067 items in 129 seconds (584)(0)
~ iniziato da Flavio (Administrator) (2015/12/08 21:04:53)
~ Sito: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Stato della versione: Version OK
~ Modalità: Chercare
~ Report: C:\Users\Flavio\Desktop\ZHPDiag.txt
~ Report: C:\Users\Flavio\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Avvio del sistema: Normal (Normal boot)
Windows 10 Home, 64-bit (Build 10240)
---\\ Browser Internet (3) - 0s
GCIE: Google Chrome v46.0.2490.86
MFIE: Mozilla Firefox 42.0 (x86 it) v42.0
MSIE: Internet Explorer v11.0.10240.16590
---\\ Informazioni sul prodotto Windows (3) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
---\\ Software di protezione del sistema (1) - 12s
Windows Defender (Activate)
---\\ Software di sorveglianza (2) - 13s
Adobe Flash Player 19 NPAPI
Adobe Acrobat Reader DC - Français
---\\ Informazioni sul sistema (6) - 0s
~ Operating System: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 4193.332 MB (58% free)
System Restore: Activé (Enable)
System drive C: has 869 GB () free of 953 GB
---\\ Connessione alla modalità sistema (3) - 0s
~ Computer Name: JADE-EMERAUDE
~ User Name: Flavio
~ Logged in as Administrator
---\\ Enumerazione delle unità disco (1) - 0s
~ Drive C: has 869 GB free of 953 GB (System)
---\\ Stato di Windows Security Center (7) - 0s
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
---\\ Ricerca di particolari file generico (24) - 1s
[MD5.F1CBCB7FA6F3B309639AA2D4EF74469C] - 20/10/2015 - (.Microsoft Corporation - Esplora risorse.) -- C:\WINDOWS\Explorer.exe [4532304] =>.Microsoft Windows®
[MD5.5DED2A3F11AE916C8F2724947E736261] - 10/07/2015 - (.Microsoft Corporation - Processo host di Windows (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe [59392] ©
[MD5.7718A2A9B2BFB2C8E2BAEB03310CA3FD] - 20/10/2015 - (.Microsoft Corporation - Applicazione di avvio di Windows.) -- C:\WINDOWS\System32\Wininit.exe [290312] =>.Microsoft Windows Publisher®
[MD5.E5D86250453B33900666D92ED1A92ABE] - 20/10/2015 - (.Microsoft Corporation - Internet Extensions per Win32.) -- C:\WINDOWS\System32\wininet.dll [2740224] ©
[MD5.A7C48B051A9C5D5054916DE5BEBBCA2D] - 05/11/2015 - (.Microsoft Corporation - Applicazione Accesso a Windows.) -- C:\WINDOWS\System32\Winlogon.exe [579072] ©
[MD5.ECB1943967424DFB96E03F6A098434EF] - 20/10/2015 - (.Microsoft Corporation - Libreria gestione licenze software.) -- C:\WINDOWS\System32\sppcomapi.dll [430592] ©
[MD5.C287D0E32771E3222A444DC527A29477] - 10/07/2015 - (.Microsoft Corporation - DLL API client DNS.) -- C:\WINDOWS\System32\dnsapi.dll [680256] =>.Microsoft Windows®
[MD5.BB5BBD0E4D04047585E4ED0F07AA51E7] - 10/07/2015 - (.Microsoft Corporation - DLL API client DNS.) -- C:\WINDOWS\Syswow64\dnsapi.dll [534064] =>.Microsoft Windows®
[MD5.A3D96563BF46FC8A0E5756B796127D14] - 05/11/2015 - (.Microsoft Corporation - Driver funzione ausiliaria di WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [577888] =>.Microsoft Windows®
[MD5.8921DF6060DB5C7700AA48CB12E9EA08] - 10/07/2015 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [28512] =>.Microsoft Windows®
[MD5.F2829DC6D292DCAC5029893BB2E9FEE3] - 10/07/2015 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [92672] ©
[MD5.CA160E02F35A61C6F5C681FB4669C519] - 10/07/2015 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [174080] ©
[MD5.25435407D97419627F4B10653433BF2B] - 10/07/2015 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [138240] ©
[MD5.C277A49F8A8295840DEBC9240B75A282] - 10/07/2015 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [80896] ©
[MD5.D4CDEE4A62BDFFF6E8558A9552148EA7] - 10/07/2015 - (.Microsoft Corporation - Driver della porta i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [114688] ©
[MD5.5D3744E6FDEC1A6FB3FA9B1DD4AF0694] - 10/07/2015 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [143360] ©
[MD5.1DF2C5FD2710A13B07E663A12F0E0EEA] - 10/07/2015 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [415232] ©
[MD5.F0D791348AD254360CC3C3E501CCB745] - 10/07/2015 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [273408] ©
[MD5.466EC5659C02ED53DBD47DC1BC2B8086] - 20/10/2015 - (.Microsoft Corporation - Driver file system NT.) -- C:\WINDOWS\System32\drivers\ntfs.sys [2116448] =>.Microsoft Windows®
[MD5.38F1AE32339731F6E5A7281AE8042545] - 10/07/2015 - (.Microsoft Corporation - Driver della porta parallela.) -- C:\WINDOWS\System32\drivers\Parport.sys [96768] ©
[MD5.CA60F6C03611AF1710BC903ED9F566FB] - 10/07/2015 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [104960] ©
[MD5.A32AED8C644734B283A7C9D08D76064D] - 10/07/2015 - (.Microsoft Corporation - Redirector dispositivi Microsoft RDP.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [176128] ©
[MD5.D42AC03ACF9CA67693D1D9BB4D2A0BC8] - 05/11/2015 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [116064] =>.Microsoft Windows®
[MD5.823A237D871CD652C6BFD47BECB6810A] - 10/07/2015 - (.Microsoft Corporation - Driver copia shadow del volume.) -- C:\WINDOWS\System32\drivers\volsnap.sys [378720] =>.Microsoft Windows®
---\\ Servizi non Microsoft NT e non disabili (7) - 1s
O23 - Service: ArcSoft Connect Daemon (ACDaemon) . (.ArcSoft Inc. - ArcSoft Connect Service.) - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe {38B5A40BC3E8552B45588D0EB9B5F330} ©
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
O23 - Service: Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe =>.Apple Inc.®
O23 - Service: Servizio Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.®
O23 - Service: Servizio Aggiornamento Dropbox (dbupdate) (dbupdate) . (.Dropbox, Inc. - Dropbox Update.) - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe {0C89CBE063927780186EC0063F10D323} ©
O23 - Service: Servizio Google Update (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: @oem15.inf,%ViaKaraokeSrv.SvcDesc%;VIA Karaoke digital mixe (VIAKaraokeService) . (.VIA Technologies, Inc. - Service binary.) - C:\Windows\System32\viakaraokesrv.exe =>.VIA Technologies Inc.®
---\\ Attività pianificate in modo automatico (22) - 4s
[MD5.2EED3542F86F77D56569504B37C8108A] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1045720] =>.Adobe Systems, Incorporated®
[MD5.280A526E8111AC6A5BCC1A059E1E0340] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269000] =>.Adobe Systems Incorporated®
[MD5.BC14706D68E7F855735369CFEE4028C7] [APT] [Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8] (.Bitdefender.) -- C:\Program Files\Bitdefender\Bitdefender 2015\bdproductdata.exe [98208] =>.Bitdefender SRL®
[MD5.00000000000000000000000000000000] [APT] [CreateChoiceProcessTask] (...) -- C:\Windows\System32\browserchoice.exe (.not file.) [0]
[MD5.33BFEC2B102B196B62ABB9947C7D7E23] [APT] [DropboxUpdateTaskMachineCore] (.Dropbox, Inc..) -- C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048] {0C89CBE063927780186EC0063F10D323} ©
[MD5.33BFEC2B102B196B62ABB9947C7D7E23] [APT] [DropboxUpdateTaskMachineUA] (.Dropbox, Inc..) -- C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048] {0C89CBE063927780186EC0063F10D323} ©
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] =>.Google Inc®
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] =>.Google Inc®
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [Apple\AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984] =>.Apple Inc.®
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job [978] ©
O39 - APT: DropboxUpdateTaskMachineCore - (.Dropbox, Inc..) -- C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job [1132] ©
O39 - APT: DropboxUpdateTaskMachineUA - (.Dropbox, Inc..) -- C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job [1136] ©
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job [1182] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job [1186] ©
O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task [3972] ©
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater [3952] ©
O39 - APT: Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8 - (.Bitdefender.) -- C:\WINDOWS\System32\Tasks\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8 [3628] ©
O39 - APT: CreateChoiceProcessTask - (...) -- C:\WINDOWS\System32\Tasks\CreateChoiceProcessTask [3658]
O39 - APT: DropboxUpdateTaskMachineCore - (.Dropbox, Inc..) -- C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore [3964] ©
O39 - APT: DropboxUpdateTaskMachineUA - (.Dropbox, Inc..) -- C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA [4196] ©
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore [4012] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA [4244] ©
---\\ Processo avviato (7) - 3s
[MD5.ADC420616C501B45D26C0FD3EF1E54E4] - (.ArcSoft Inc. - ArcSoft Connect Service.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152] [PID.1696] {38B5A40BC3E8552B45588D0EB9B5F330} ©
[MD5.815876D43D6E94292625A4B53DEAA145] - (.Oodrive - CloudSync.) -- C:\Users\Flavio\AppData\Local\Pack Fnac\Fnac Cloud\bin\FnacCloud.exe [2060936] [PID.2992] {1121575B08FFD72D30A509CB3438D3EE173B}
[MD5.A7810B302294793DE88542AAE177D1B1] - (.ArcSoft Inc. - ArcSoft Connect Daemon.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424] [PID.5680] {39084E9060237309927F12E072B274ED} ©
[MD5.F400694D7D2785F60133C20F7F2F4F7A] - (.ArcSoft Inc. - ArcSoft Connect Notifier.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac [309824] [PID.4952] {39084E9060237309927F12E072B274ED} ©
[MD5.CE8F4D2B9C72FB38AC96B805512ADA58] - (.SEIKO EPSON CORPORATION - EEventManager MFC Application.) -- C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [591696] [PID.2872] {465B5F97A261A61C63C23A4950135A48} ©
[MD5.68906CB235548C09E0657549A33C52B6] - (.Copyright Microsoft Corporation - Microsoft Photos.) -- C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1201.10020.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe [12800] [PID.440] ©
[MD5.61AC7CA26FAA79C54D7B61669A9FD5E4] - (.Copyright (C) 2015 Nicolas Coolman - ZHPDiag.) -- C:\Users\Flavio\Downloads\ZHPDiag3.exe [1999360] [PID.380] ©
---\\ Google Chrome, start, cerca, estensioni (8) - 1s
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.google.com
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] __MSG_extName__
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.
---\\ Mozilla Firefox, Plugin,Start,Cerca,Estensioni (9) - 0s
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ©
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll ©
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Apple Inc..) -- C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ©
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (.Microsoft Corporation.) -- c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll ©
P2 - FPN: [HKLM] [@microsoft.com/OfficeAuthz,version=14.0] - (.Microsoft Corporation.) -- C:\Program Files (x86)\Microsoft Office\Office14\NPAUTHZ.DLL ©
P2 - FPN: [HKLM] [@microsoft.com/SharePoint,version=14.0] - (.Microsoft Corporation.) -- C:\Program Files (x86)\Microsoft Office\Office14\NPSPWRAP.DLL ©
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc..) -- C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll ©
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc..) -- C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll ©
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc..) -- C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll ©
---\\ Internet Explorer, Start,Cerca,Phishing (17) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
---\\ Internet Explorer, gestione Proxy (5) - 1s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Analisi delle linee - IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: VMApplet=
---\\ Hosts file redirection (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)
---\\ Browser Helper Object (BHO) (2) - 0s
O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll =>.Google Inc®
O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL =>.Microsoft Corporation®
---\\ Internet Explorer barre degli strumenti (2) - 0s
O3 - Toolbar: 0xB1C218236549D4119B18009027A5CD4F - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll =>.Google Inc®
O3 - Toolbar: 0x00 - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll =>.Google Inc®
---\\ Iniziato da file e registro applicazioni (14) - 0s
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe =>.Apple Inc.®
O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe {3144C06A6CFB5076C15D399572C69421} ©
O4 - HKCU\..\Run: [Fnac Cloud] . (.Oodrive - CloudSync.) -- C:\Users\Flavio\AppData\Local\Pack Fnac\Fnac Cloud\bin\FnacCloud.exe {1121575B08FFD72D30A509CB3438D3EE173B}
O4 - HKCU\..\Run: [Bitdefender Wallet Agent] C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe (.not file.)
O4 - HKCU\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Flavio\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - HKLM\..\Wow6432Node\Run: [ArcSoft Connection Service] . (.ArcSoft Inc. - ArcSoft Connect Daemon.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe {39084E9060237309927F12E072B274ED} ©
O4 - HKLM\..\Wow6432Node\Run: [EEventManager] . (.SEIKO EPSON CORPORATION - EEventManager MFC Application.) -- C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe {465B5F97A261A61C63C23A4950135A48} ©
O4 - HKLM\..\Wow6432Node\Run: [Dropbox] . (.Dropbox, Inc. - Dropbox.) -- C:\Program Files (x86)\Dropbox\Client\Dropbox.exe =>.Dropbox, Inc®
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-2068896678-3488468137-3618400487-1000\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe {3144C06A6CFB5076C15D399572C69421} ©
O4 - HKUS\S-1-5-21-2068896678-3488468137-3618400487-1000\..\Run: [Fnac Cloud] . (.Oodrive - CloudSync.) -- C:\Users\Flavio\AppData\Local\Pack Fnac\Fnac Cloud\bin\FnacCloud.exe {1121575B08FFD72D30A509CB3438D3EE173B}
O4 - HKUS\S-1-5-21-2068896678-3488468137-3618400487-1000\..\Run: [Bitdefender Wallet Agent] C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe (.not file.)
O4 - HKUS\S-1-5-21-2068896678-3488468137-3618400487-1000\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Flavio\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
---\\ Modificare gli indirizzi DNS domain (2) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 62.2.24.162 62.2.17.61 62.2.24.158 62.2.17.60
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 62.2.24.162 62.2.17.61 62.2.24.158 62.2.17.60
---\\ Protocollo addizionale (23) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizzatore HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Estensioni OLE32 per Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Controllo ActiveX per streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll ©
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Estensioni OLE32 per Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Estensioni OLE32 per Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Estensioni OLE32 per Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Estensioni OLE32 per Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll ©
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizzatore HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Estensioni OLE32 per Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizzatore HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\SysWOW64\inetcomm.dll ©
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Estensioni OLE32 per Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll =>.Microsoft Corporation®
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll ©
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizzatore HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll ©
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Controllo ActiveX per streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll ©
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizzatore HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll ©
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll ©
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll ©
O18 - Filter: text/xml [64Bits] - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL =>.Microsoft Corporation®
---\\ Software installato (30) - 5s
O42 - Logiciel: ABBYY FineReader 6.0 Sprint - (.ABBYY Software House.) [HKLM][64Bits] -- {ACF60000-22B9-4CE9-98D6-2CCF359BAC07} ©
O42 - Logiciel: Adobe Acrobat Reader DC - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AC0F074E4100} ©
O42 - Logiciel: Adobe Flash Player 19 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI ©
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824157129} ©
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {5D61F006-168C-4B8B-B7FD-F113C10AE0E4} ©
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} ©
O42 - Logiciel: ArcSoft MediaImpression - (.ArcSoft.) [HKLM][64Bits] -- {531F0013-964C-4BE6-B382-4117DC8BCDF9} ©
O42 - Logiciel: Bitdefender Total Security 2015 - (.Bitdefender.) [HKLM][64Bits] -- Bitdefender ©
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D} ©
O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKLM][64Bits] -- Dropbox ©
O42 - Logiciel: Dropbox Update Helper - (.Dropbox, Inc..) [HKLM][64Bits] -- {099218A5-A723-43DC-8DB5-6173656A1E94} ©
O42 - Logiciel: Epson Copy Utility 3.4 - (...) [HKLM][64Bits] -- {AA72FB28-73B4-49E5-B6B4-E78F44BBD0AD}
O42 - Logiciel: Epson Event Manager - (.SEIKO EPSON Corporation.) [HKLM][64Bits] -- {48F22622-1CC2-4A83-9C1E-644DD96F832D} ©
O42 - Logiciel: EPSON PERFECTION V30_V300 PHOTO Manuale - (...) [HKLM][64Bits] -- EPSON PERFECTION V30_V300 PHOTO Guida utente
O42 - Logiciel: EPSON Scan - (...) [HKLM][64Bits] -- EPSON Scanner
O42 - Logiciel: Fnac Cloud v2.7.0.2 - (.Fnac.) [HKCU][64Bits] -- {1153E5B0-C8D2-4A77-9AE2-05C17BD90517}_is1
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome ©
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C} ©
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F} ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} ©
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {6CF1A7E2-8001-4870-9F18-3C6CDD6FE9E3} ©
O42 - Logiciel: Microsoft DVD App Installation for Microsoft.WindowsDVDPlayer_2019.6.13291. - (.Microsoft Corporation.) [HKLM][64Bits] -- {25E80DAA-FD87-DCE5-202C-CC02F6673002} ©
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} ©
O42 - Logiciel: Mozilla Firefox 42.0 (x86 it) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 42.0 (x86 it) ©
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService ©
O42 - Logiciel: SocialSafe - (.Social Safe Limited.) [HKLM][64Bits] -- SocialSafe 6.6.8
O42 - Logiciel: Supporto applicazioni Apple (32 bit) - (.Apple Inc..) [HKLM][64Bits] -- {7FE25256-B7C1-480D-B736-10A67A833AEA} ©
O42 - Logiciel: Supporto applicazioni Apple (64 bit) - (.Apple Inc..) [HKLM][64Bits] -- {B255D495-4734-4E9B-B4F5-96702FD4A7B9} ©
O42 - Logiciel: Tableau de Bord Pack Fnac - (...) [HKLM][64Bits] -- Tableau de Bord Pack Fnac
---\\ HKCU & HKLM Software Keys (46) - 5s
HKLM\SOFTWARE\Wow6432Node\ABBYY
HKLM\SOFTWARE\Wow6432Node\AceBIT
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\Apple Inc.
HKLM\SOFTWARE\Wow6432Node\ArcSoft
HKLM\SOFTWARE\Wow6432Node\Bitdefender
HKLM\SOFTWARE\Wow6432Node\Brother
HKLM\SOFTWARE\Wow6432Node\Dropbox
HKLM\SOFTWARE\Wow6432Node\DropboxUpdate
HKLM\SOFTWARE\Wow6432Node\EPSON
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\Panda Software
HKLM\SOFTWARE\Wow6432Node\Social Safe Limited
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\ABBYY
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc.
HKCU\SOFTWARE\ArcSoft
HKCU\SOFTWARE\Bitdefender
HKCU\SOFTWARE\Brother
HKCU\SOFTWARE\Dropbox
HKCU\SOFTWARE\DropboxUpdate
HKCU\SOFTWARE\EPSON
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Mine
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Panda Software
HKCU\SOFTWARE\PhoenixPacs
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\SEIKO EPSON
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
---\\ Contenuto delle cartelle Programmi (148) - 6s
O43 - CFD: 15/03/2015 - [] D -- C:\Program Files (x86)\ABBYY FineReader 6.0 Sprint
O43 - CFD: 17/11/2015 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 08/08/2015 - [] D -- C:\Program Files (x86)\Apple Software Update
O43 - CFD: 15/03/2015 - [] D -- C:\Program Files (x86)\ArcSoft
O43 - CFD: 08/08/2015 - [] D -- C:\Program Files (x86)\Bonjour
O43 - CFD: 20/10/2015 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 28/11/2015 - [] D -- C:\Program Files (x86)\Dropbox
O43 - CFD: 15/03/2015 - [] D -- C:\Program Files (x86)\epson
O43 - CFD: 15/03/2015 - [] D -- C:\Program Files (x86)\Epson Software
O43 - CFD: 21/04/2015 - [] D -- C:\Program Files (x86)\Fnac
O43 - CFD: 15/03/2015 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 15/03/2015 - [0] D -- C:\Program Files (x86)\GUMA986.tmp
O43 - CFD: 17/03/2015 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 20/10/2015 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 08/08/2015 - [] D -- C:\Program Files (x86)\iTunes
O43 - CFD: 16/05/2014 - [] D -- C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD: 16/05/2014 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 14/08/2015 - [] D -- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 20/10/2015 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 12/11/2015 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 20/10/2015 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 20/10/2015 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 21/04/2015 - [] D -- C:\Program Files (x86)\SocialSafe
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 20/10/2015 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 20/10/2015 - [] SHD -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 10/07/2015 - [] SD -- C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 20/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ABBYY FineReader 6.0 Sprint
O43 - CFD: 20/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 20/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 10/07/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 20/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft Connect
O43 - CFD: 20/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft MediaImpression
O43 - CFD: 28/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
O43 - CFD: 20/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
O43 - CFD: 20/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epson Software
O43 - CFD: 14/05/2014 - [0] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 20/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 20/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
O43 - CFD: 10/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 20/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 20/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 20/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SocialSafe
O43 - CFD: 10/07/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 10/07/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 10/07/2015 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 17/11/2015 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 08/08/2015 - [] D -- C:\ProgramData\Apple
O43 - CFD: 08/08/2015 - [] D -- C:\ProgramData\Apple Computer
O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 17/03/2015 - [] D -- C:\ProgramData\ArcSoft
O43 - CFD: 16/05/2014 - [] D -- C:\ProgramData\Backup
O43 - CFD: 27/07/2015 - [] D -- C:\ProgramData\bdch
O43 - CFD: 21/04/2015 - [] D -- C:\ProgramData\BDLogging
O43 - CFD: 21/04/2015 - [] D -- C:\ProgramData\Bitdefender
O43 - CFD: 20/10/2015 - [] D -- C:\ProgramData\Brother
O43 - CFD: 10/07/2015 - [0] D -- C:\ProgramData\Comms
O43 - CFD: 14/05/2014 - [0] SHD -- C:\ProgramData\Dati applicazioni
O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 14/05/2014 - [0] SHD -- C:\ProgramData\Documenti
O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 28/11/2015 - [] D -- C:\ProgramData\Dropbox
O43 - CFD: 15/03/2015 - [] D -- C:\ProgramData\Google
O43 - CFD: 14/05/2014 - [0] SHD -- C:\ProgramData\Menu Avvio
O43 - CFD: 11/11/2015 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 11/11/2015 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 20/10/2015 - [] D -- C:\ProgramData\Microsoft OneDrive
O43 - CFD: 14/05/2014 - [0] SHD -- C:\ProgramData\Modelli
O43 - CFD: 26/05/2014 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 16/05/2014 - [] D -- C:\ProgramData\Panda Software
O43 - CFD: 14/05/2014 - [0] SHD -- C:\ProgramData\Preferiti
O43 - CFD: 10/07/2015 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 10/07/2015 - [0] D -- C:\ProgramData\SoftwareDistribution
O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 10/07/2015 - [] D -- C:\ProgramData\USOPrivate
O43 - CFD: 10/07/2015 - [] D -- C:\ProgramData\USOShared
O43 - CFD: 17/11/2015 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 08/08/2015 - [] D -- C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 15/03/2015 - [] D -- C:\Program Files (x86)\Common Files\ArcSoft
O43 - CFD: 16/05/2014 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 15/03/2015 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 20/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 20/10/2015 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 16/05/2014 - [] D -- C:\Users\Flavio\AppData\Roaming\Adobe
O43 - CFD: 08/08/2015 - [] D -- C:\Users\Flavio\AppData\Roaming\Apple Computer
O43 - CFD: 18/03/2015 - [] D -- C:\Users\Flavio\AppData\Roaming\ArcSoft
O43 - CFD: 21/04/2015 - [] D -- C:\Users\Flavio\AppData\Roaming\Bitdefender
O43 - CFD: 08/07/2014 - [] RD -- C:\Users\Flavio\AppData\Roaming\Brother
O43 - CFD: 21/04/2015 - [] D -- C:\Users\Flavio\AppData\Roaming\com.1minus1.socialsafe.D675411CF670AA3EFAC13BDD847989BEDE2115E2.1
O43 - CFD: 28/11/2015 - [] D -- C:\Users\Flavio\AppData\Roaming\Dropbox
O43 - CFD: 05/04/2015 - [] D -- C:\Users\Flavio\AppData\Roaming\Epson
O43 - CFD: 26/05/2015 - [] D -- C:\Users\Flavio\AppData\Roaming\Google
O43 - CFD: 14/05/2014 - [] D -- C:\Users\Flavio\AppData\Roaming\Identities
O43 - CFD: 15/03/2015 - [] D -- C:\Users\Flavio\AppData\Roaming\InstallShield
O43 - CFD: 07/09/2014 - [] D -- C:\Users\Flavio\AppData\Roaming\Macromedia
O43 - CFD: 12/04/2011 - [0] D -- C:\Users\Flavio\AppData\Roaming\Media Center Programs
O43 - CFD: 05/12/2015 - [] SD -- C:\Users\Flavio\AppData\Roaming\Microsoft
O43 - CFD: 26/05/2014 - [] D -- C:\Users\Flavio\AppData\Roaming\Mozilla
O43 - CFD: 21/04/2015 - [0] D -- C:\Users\Flavio\AppData\Roaming\QuickScan
O43 - CFD: 29/12/2014 - [] D -- C:\Users\Flavio\AppData\Roaming\U3
O43 - CFD: 08/12/2015 - [] D -- C:\Users\Flavio\AppData\Roaming\ZHP
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Flavio\AppData\Local\Adobe
O43 - CFD: 08/08/2015 - [] D -- C:\Users\Flavio\AppData\Local\Apple
O43 - CFD: 08/08/2015 - [] D -- C:\Users\Flavio\AppData\Local\Apple Computer
O43 - CFD: 15/03/2015 - [] D -- C:\Users\Flavio\AppData\Local\ArcSoft
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Flavio\AppData\Local\CEF
O43 - CFD: 20/10/2015 - [0] SHD -- C:\Users\Flavio\AppData\Local\Cronologia
O43 - CFD: 20/10/2015 - [0] SHD -- C:\Users\Flavio\AppData\Local\Dati applicazioni
O43 - CFD: 08/12/2015 - [] D -- C:\Users\Flavio\AppData\Local\Dropbox
O43 - CFD: 22/09/2015 - [0] D -- C:\Users\Flavio\AppData\Local\ElevatedDiagnostics
O43 - CFD: 08/08/2015 - [0] SHD -- C:\Users\Flavio\AppData\Local\EmieBrowserModeList
O43 - CFD: 08/08/2015 - [0] SHD -- C:\Users\Flavio\AppData\Local\EmieSiteList
O43 - CFD: 08/08/2015 - [0] SHD -- C:\Users\Flavio\AppData\Local\EmieUserList
O43 - CFD: 21/04/2015 - [] D -- C:\Users\Flavio\AppData\Local\Fnac
O43 - CFD: 05/10/2015 - [] D -- C:\Users\Flavio\AppData\Local\Google
O43 - CFD: 02/06/2015 - [] D -- C:\Users\Flavio\AppData\Local\GWX
O43 - CFD: 07/09/2014 - [] D -- C:\Users\Flavio\AppData\Local\Macromedia
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Flavio\AppData\Local\Microsoft
O43 - CFD: 09/01/2015 - [] D -- C:\Users\Flavio\AppData\Local\Microsoft Games
O43 - CFD: 14/05/2014 - [0] D -- C:\Users\Flavio\AppData\Local\Microsoft Help
O43 - CFD: 20/10/2015 - [] D -- C:\Users\Flavio\AppData\Local\MicrosoftEdge
O43 - CFD: 26/05/2014 - [] D -- C:\Users\Flavio\AppData\Local\Mozilla
O43 - CFD: 21/04/2015 - [] D -- C:\Users\Flavio\AppData\Local\Pack Fnac
O43 - CFD: 25/10/2015 - [] D -- C:\Users\Flavio\AppData\Local\Packages
O43 - CFD: 16/03/2015 - [] D -- C:\Users\Flavio\AppData\Local\Programs
O43 - CFD: 20/10/2015 - [] D -- C:\Users\Flavio\AppData\Local\Publishers
O43 - CFD: 08/12/2015 - [] D -- C:\Users\Flavio\AppData\Local\Temp
O43 - CFD: 20/10/2015 - [0] SHD -- C:\Users\Flavio\AppData\Local\Temporary Internet Files
O43 - CFD: 20/10/2015 - [] D -- C:\Users\Flavio\AppData\Local\TileDataLayer
O43 - CFD: 28/11/2015 - [] D -- C:\Users\Flavio\AppData\Local\VirtualStore
O43 - CFD: 10/07/2015 - [] RD -- C:\Users\Flavio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 20/10/2015 - [] RD -- C:\Users\Flavio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 20/10/2015 - [] RD -- C:\Users\Flavio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 10/07/2015 - [] D -- C:\Users\Flavio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 20/10/2015 - [] D -- C:\Users\Flavio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pack Fnac
O43 - CFD: 20/10/2015 - [] RD -- C:\Users\Flavio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 10/07/2015 - [] RD -- C:\Users\Flavio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 10/07/2015 - [] RSD -- C:\Users\Flavio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
---\\ ShellIconOverlayIdentifiers (SIOI) (13) - 2s
O106 - SIOI: DropboxExt1 Class [ DropboxExt1] - {FB314ED9-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll {017CA19B5859E83F44D874C1CE506E6D} ©
O106 - SIOI: DropboxExt2 Class [ DropboxExt2] - {FB314EDA-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll {017CA19B5859E83F44D874C1CE506E6D} ©
O106 - SIOI: DropboxExt5 Class [ DropboxExt3] - {FB314EDD-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll {017CA19B5859E83F44D874C1CE506E6D} ©
O106 - SIOI: DropboxExt6 Class [ DropboxExt4] - {FB314EDE-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll {017CA19B5859E83F44D874C1CE506E6D} ©
O106 - SIOI: DropboxExt3 Class [ DropboxExt5] - {FB314EDB-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll {017CA19B5859E83F44D874C1CE506E6D} ©
O106 - SIOI: DropboxExt7 Class [ DropboxExt6] - {FB314EDF-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll {017CA19B5859E83F44D874C1CE506E6D} ©
O106 - SIOI: DropboxExt4 Class [ DropboxExt7] - {FB314EDC-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll {017CA19B5859E83F44D874C1CE506E6D} ©
O106 - SIOI: DropboxExt8 Class [ DropboxExt8] - {FB314EE0-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll {017CA19B5859E83F44D874C1CE506E6D} ©
O106 - SIOI: ErrorOverlayHandler Class [ OneDrive1] - {BBACC218-34EA-4666-9D7A-C78F2274A524}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Flavio\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SharedOverlayHandler Class [ OneDrive2] - {5AB7172C-9C11-405C-8DD5-AF20F3606282}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Flavio\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SharedSyncingOverlayHandler Class [ OneDrive3] - {A78ED123-AB77-406B-9962-2A5D9D2F7F30}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Flavio\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: UpToDateOverlayHandler Class [ OneDrive4] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Flavio\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SyncingOverlayHandler Class [ OneDrive5] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Flavio\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileSyncShell.dll =>.Microsoft Corporation®
---\\ Elenco dei driver del sistema (42) - 10s
O58 - SDL:2015/07/10 11:59:38 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [107360] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:38 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [1135456] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:38 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [83296] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:38 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [259424] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:38 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [26976] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:38 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [131936] =>.Microsoft Windows®
O58 - SDL:2013/05/17 10:13:26 A . (. - ATK0110 ACPI Utility.) -- C:\WINDOWS\System32\drivers\ASACPI.sys [17280] =>.ASUSTeK Computer Inc.®
O58 - SDL:2015/07/10 11:59:38 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [17624] =>.Broadcom Corporation®
O58 - SDL:2014/12/15 17:04:16 A . (.BitDefender LLC - BitDefender Firewall NDIS6 Filter Driver.) -- C:\WINDOWS\System32\drivers\BdfNdisf6.sys [93600] =>.Bitdefender SRL®
O58 - SDL:2015/07/10 11:59:38 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [531296] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:38 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3436896] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:38 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [64352] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:36 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128] =>.Intel Corporation - Client Components Group®
O58 - SDL:2015/07/10 11:59:36 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [122608] =>.Intel Corporation - Client Components Group®
O58 - SDL:2015/07/10 11:59:38 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [673120] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:38 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412000] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\WINDOWS\System32\drivers\ibbus.sys [424800] =>.Microsoft Windows®
O58 - SDL:2010/07/28 23:25:10 A . (.Initio Corporation - Initio Default Vendor Specific Device Drive.) -- C:\WINDOWS\System32\drivers\ivusb.sys [29720] {56CD068387BA175A3D5FEBDC98B41C04}
O58 - SDL:2015/07/10 11:59:38 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [108896] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:38 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2i.sys [104800] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:38 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3i.sys [99168] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:38 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82784] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [59744] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575840] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.Mellanox - MLX4 Bus Driver.) -- C:\WINDOWS\System32\drivers\mlx4_bus.sys [705376] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63840] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\System32\drivers\ndfltr.sys [76128] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150368] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [166240] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas2i.sys [58208] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas3i.sys [58720] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.40 64-bit Dri.) -- C:\WINDOWS\System32\drivers\rt640x64.sys [587264] ©
O58 - SDL:2015/07/10 11:59:39 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44896] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81760] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31072] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:48 A . (...) -- C:\WINDOWS\System32\drivers\Udecx.sys [44032]
O58 - SDL:2015/06/22 01:49:50 A . (.VIA Technologies, Inc. - VIA High Definition Audio Function Driver.) -- C:\WINDOWS\System32\drivers\viahduaa.sys [701136] {48B232AC601840B7ECE54FBCBEB5A947} ©
O58 - SDL:2015/06/22 01:49:50 A . (.Creative Technology Ltd. - Creative Audio Driver.) -- C:\WINDOWS\System32\drivers\VMfilt64.sys [42192] {48B232AC601840B7ECE54FBCBEB5A947} ©
O58 - SDL:2015/07/10 11:59:39 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [166752] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305504] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.Mellanox - Kernel WinMad.) -- C:\WINDOWS\System32\drivers\winmad.sys [26976] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.Mellanox - Kernel WinVerbs.) -- C:\WINDOWS\System32\drivers\winverbs.sys [59232] =>.Microsoft Windows®
---\\ Ultimi file modificati o creati (utente) (10) - 8s
O61 - LFC: 2015/12/05 19:11:34 A . (..) -- C:\Users\Flavio\Downloads\AdwCleaner-5.023 (1).exe [11489]
O61 - LFC: 2015/12/05 18:33:07 A . (..) -- C:\Users\Flavio\Downloads\AdwCleaner-5.023(1).exe [11489]
O61 - LFC: 2015/12/05 18:30:10 A . (..) -- C:\Users\Flavio\Downloads\AdwCleaner-5.023.exe [11489]
O61 - LFC: 2015/12/05 18:34:16 A . (.Nicolas Coolman.) -- C:\Users\Flavio\Downloads\ZHPCleaner.exe [1908224] ©
O61 - LFC: 2015/12/08 21:04:40 A . (.Copyright (C) 2015 Nicolas Coolman.) -- C:\Users\Flavio\Downloads\ZHPDiag3.exe [1999360] ©
O61 - LFC: 2015/12/05 18:34:16 A . (.Nicolas Coolman.) -- C:\Users\Flavio\AppData\Roaming\ZHP\ZHPCleaner.exe [1908224] ©
O61 - LFC: 2015/12/08 21:04:40 A . (.Copyright (C) 2015 Nicolas Coolman.) -- C:\Users\Flavio\AppData\Roaming\ZHP\ZHPDiag3.exe [1999360] ©
O61 - LFC: 2015/12/05 22:53:36 A . (..) -- C:\Users\Flavio\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\speech_onecorereg.bin [0]
O61 - LFC: 2015/12/05 19:11:06 A . (..) -- C:\Users\Flavio\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\UrlBlock\urlblock_635849299294394628.bin [69376]
O61 - LFC: 2015/12/08 21:01:31 A . (..) -- C:\Users\Flavio\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [674082]
---\\ Associazioni Shell Spawning (11) - 1s
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.scr>
O67 - Shell Spawning: <.html>
---\\ Menu Start Internet (12) - 0s
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
---\\ Cerca infezione su browser internet (4) - 6s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {56EF61F3-262E-4DA4-AE74-695508411F21} - (Google) - http://www.google.fr/
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} [DefaultScope] - (Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKCU] {7EFBFE57-12F0-4C74-B673-D03B81FC1791} - ((www.google.com) Google) - http://www.google.com/
---\\ Enumera l''avvio del servizio Svchost (41) - 2s
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Servizio Propagazione certificati smart car.) -- C:\WINDOWS\System32\certprop.dll [192000] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Servizio Propagazione certificati smart car.) -- C:\WINDOWS\System32\certprop.dll [192000] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL di servizio server.) -- C:\WINDOWS\system32\srvsvc.dll [283136] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client di Criteri di gruppo.) -- C:\WINDOWS\System32\gpsvc.dll [1335296] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Estensione IKE.) -- C:\WINDOWS\System32\ikeext.dll [954368] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Servizio che offre connettività IPv6 su una.) -- C:\WINDOWS\System32\iphlpsvc.dll [954880] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL del Servizio di accesso secondario.) -- C:\WINDOWS\system32\seclogon.dll [31232] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Servizio Informazioni applicazioni.) -- C:\WINDOWS\System32\appinfo.dll [93696] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Servizio di individuazione iSCSI.) -- C:\WINDOWS\system32\iscsiexe.dll [151040] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Servizio Microsoft EAPHost.) -- C:\WINDOWS\System32\eapsvc.dll [106496] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Servizio Utilità di pianificazione.) -- C:\WINDOWS\system32\schedsvc.dll [1008640] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\WMIsvc.dll [226304] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL servizio Browser di computer.) -- C:\WINDOWS\System32\browser.dll [133120] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\WINDOWS\system32\profsvc.dll [324608] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Servizio Configurazione Desktop remoto.) -- C:\Windows\System32\SessEnv.dll [371200] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Segnalazioni di problemi e soluzioni.) -- C:\WINDOWS\System32\wercplsupport.dll [95744] ©
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Servizio account Microsoft®.) -- C:\WINDOWS\system32\wlidsvc.dll [2093056] ©
O83 - Search Svchost Services: DcpSvc (DcpSvc) . (.Microsoft Corporation - dcpsvc Task.) -- C:\WINDOWS\system32\dcpsvc.dll [196096] ©
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Servizio Assistente connettività di rete Mi.) -- C:\WINDOWS\System32\ncasvc.dll [167424] ©
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Servizio di installazione della rete.) -- C:\WINDOWS\System32\NetSetupSvc.dll [187392] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestione composizione automatica di accesso.) -- C:\WINDOWS\System32\rasauto.dll [106496] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Connection Manager di Accesso remoto.) -- C:\WINDOWS\System32\rasmans.dll [679936] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestione interfaccia dinamica.) -- C:\Windows\System32\mprdim.dll [497152] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Servizio di notifica eventi di sistema (SEN.) -- C:\WINDOWS\System32\sens.dll [72192] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Componenti helper NAT Microsoft.) -- C:\WINDOWS\System32\ipnathlp.dll [452608] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Server di Telefonia Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll [311808] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agente di Windows Update.) -- C:\WINDOWS\system32\wuaueng.dll [2236416] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Servizio trasferimento intelligente in back.) -- C:\WINDOWS\System32\qmgr.dll [1168896] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll di servizi shell di Windows.) -- C:\Windows\System32\shsvcs.dll [593920] ©
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\WINDOWS\system32\dmwappushsvc.dll [63488] ©
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\WINDOWS\System32\XblGameSave.dll [1149440] ©
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\WINDOWS\system32\XboxNetApiSvc.dll [1019392] ©
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Componenti principali agente di orchestrazi.) -- C:\WINDOWS\system32\usocore.dll [343040] ©
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\WINDOWS\System32\usermgr.dll [713216] ©
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Servizio di georilevazione.) -- C:\Windows\System32\lfsvc.dll [27136] ©
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - DLL servizio gestione Windows.) -- C:\Windows\System32\Windows.Internal.Management.dll [267776] ©
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\WINDOWS\System32\XblAuthManager.dll [918016] ©
O83 - Search Svchost Services: RetailDemo (RetailDemo) . (.Microsoft Corporation - RDXService.) -- C:\WINDOWS\system32\RDXService.dll [1015808] ©
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Servizio BDE.) -- C:\WINDOWS\System32\bdesvc.dll [359936] ©
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestione configurazione dispositivi.) -- C:\WINDOWS\System32\DeviceSetupManager.dll [237568] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL servizio temi shell di Windows.) -- C:\WINDOWS\system32\themeservice.dll [58368] ©
---\\ Elenco di eccezioni del firewall (2) - 1s
O87 - FAEL: "UDP Query User{06A7CDC2-2F71-48D4-8D29-B0FD8F54495B}C:\program files (x86)\panda security\panda internet security 2014\apvxdwin.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\panda security\panda internet security 2014\apvxdwin.exe (.not file.)
O87 - FAEL: "TCP Query User{80D38721-DE02-4177-95C8-57CCA4C8D9F6}C:\program files (x86)\panda security\panda internet security 2014\apvxdwin.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\panda security\panda internet security 2014\apvxdwin.exe (.not file.)
---\\ Servizi non Microsoft (GSR) (SR = esecuzione, SS = fermato) (14) - 16s
SR - Auto [18/03/2010] [ 1365304] ArcSoft Connect Daemon (ACDaemon) . (.ArcSoft Inc..) - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe {38B5A40BC3E8552B45588D0EB9B5F330} ©
SR - Auto [14/09/2015] [ 1365304] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
SS - Demand [11/11/2015] [ 1365304] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SR - Auto [29/05/2015] [ 1365304] Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe =>.Apple Inc.®
SR - Auto [30/08/2011] [ 1365304] Servizio Bonjour (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.®
SS - Auto [28/11/2015] [ 1365304] Servizio Aggiornamento Dropbox (dbupdate) (dbupdate) . (.Dropbox, Inc..) - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe {0C89CBE063927780186EC0063F10D323} ©
SS - Demand [28/11/2015] [ 1365304] Servizio Aggiornamento Dropbox (dbupdatem) (dbupdatem) . (.Dropbox, Inc..) - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe {0C89CBE063927780186EC0063F10D323} ©
SS - Auto [31/08/2015] [ 1365304] Servizio Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [31/08/2015] [ 1365304] Servizio Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [15/03/2015] [ 1365304] Google Software Updater (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe =>.Google Inc®
SR - Demand [11/07/2015] [ 1365304] Servizio iPod (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe =>.Apple Inc.®
SS - Demand [03/11/2015] [ 1365304] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SR - Auto [0] [ 1365304] @oem15.inf,%ViaKaraokeSrv.SvcDesc%;VIA Karaoke digital mixe (VIAKaraokeService) . (.VIA Technologies, Inc..) - C:\Windows\System32\viakaraokesrv.exe ©
---\\ Scansione aggiuntive (1) - 0s
~ Nessun elemento malevolo o inutili trovato.
---\\ Riepilogo dei elementi trovato sulla workstation (1) - 0s
~ Nessun elemento malevolo o inutili trovato.
~ End of the scan, 29067 items in 129 seconds (584)(0)