cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2015.12.16.186 Da Nicolas Coolman (2015/12/16)
~ iniziato da sofian (Administrator) (2015/12/16 22:47:19)
~ Sito: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Stato della versione: Version OK
~ Modalità: Chercare
~ Report: C:\Users\sofian\Desktop\ZHPDiag.txt
~ Report: C:\Users\sofian\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Avvio del sistema: Normal (Normal boot)
Windows 7 Ultimate, 32-bit (Build 7260)

---\\ Browser Internet (2) - 0s
GCIE: Google Chrome v46.0.2490.86
MSIE: Internet Explorer v8.0.7260.0

---\\ Informazioni sul prodotto Windows (5) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Key Management Service client information : KO
Windows Automatic Updates : OK
Windows Activation Technologies : KO

---\\ Software di protezione del sistema (1) - 24s
Windows Defender W7 (Activate)

---\\ Software di sorveglianza (2) - 25s
Adobe Flash Player 19 NPAPI
Adobe Reader XI

---\\ Condivisione di software PeerToPeer (1) - 26s
Vuze v5.6.2.0

---\\ Informazioni sul sistema (6) - 0s
~ Operating System: x86 Family 15 Model 2 Stepping 9, GenuineIntel
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 1572.408 MB (20% free)
System Restore: Activé (Enable)
System drive C: has 67 GB () free of 152 GB

---\\ Connessione alla modalità sistema (3) - 0s
~ Computer Name: SOFIAN-PC
~ User Name: sofian
~ Logged in as Administrator

---\\ Enumerazione delle unità disco (2) - 12s
~ Drive C: has 67 GB free of 152 GB (System)
~ Drive G: has 12 GB free of 38 GB

---\\ Stato di Windows Security Center (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

---\\ Ricerca di particolari file generico (25) - 2s
[MD5.A3109A72E1D4BEC38B6FCD017EBDD3F4] - 13/06/2009 - (.Microsoft Corporation - Esplora risorse.) -- C:\Windows\Explorer.exe [2613248] ©
[MD5.61A872307B84B5CEE0FC2A654F1EF2EB] - 13/06/2009 - (.Microsoft Corporation - Processo host di Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe [44544] ©
[MD5.0AA9F875820313375BBC4A651F701B20] - 13/06/2009 - (.Microsoft Corporation - Applicazione di avvio di Windows.) -- C:\Windows\System32\Wininit.exe [96256] ©
[MD5.C7872AD106417DB4C8D265D45977D313] - 13/06/2009 - (.Microsoft Corporation - Internet Extensions per Win32.) -- C:\Windows\System32\wininet.dll [977920] ©
[MD5.1BD9EA57D416514ABC309BD80A88FDD2] - 13/06/2009 - (.Microsoft Corporation - Applicazione Accesso a Windows.) -- C:\Windows\System32\Winlogon.exe [285696] ©
[MD5.B0CF88557EC4962EF4185A241184AA66] - 13/06/2009 - (.Microsoft Corporation - Libreria gestione licenze software.) -- C:\Windows\System32\sppcomapi.dll [193024] ©
[MD5.867DDA096F0C53C365CADDDF0EDA0E54] - 13/06/2009 - (.Microsoft Corporation - DLL API client DNS.) -- C:\Windows\System32\dnsapi.dll [269824] ©
[MD5.C8CA5F1E459115FE6B0F61F6B4AF218A] - 20/06/2009 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [19968] ©
[MD5.52672D3AD0A79D4B83AE7B807CE85B76] - 13/06/2009 - (.Microsoft Corporation - Áηçîℓℓáŕγ ₣ϋʼn¢ťĭσл Ðřįνєґ ƒǿř ШΐňЅóćķ.) -- C:\Windows\System32\drivers\AFD.sys [338944] ©
[MD5.896F9178BBE0B3A79FE8E69C61B4863E] - 13/06/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [21568] =>.Microsoft Windows®
[MD5.A617D35D1B455DC59C1F7A810E371DB4] - 13/06/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [70656] ©
[MD5.8FF6CF0D61C8EE18037452938EA14B28] - 13/06/2009 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [108544] ©
[MD5.8EC2D4BD6B14469F81F7E07C5BF3611D] - 13/06/2009 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [77824] ©
[MD5.013202940E131DFC0BFD4704653C90F0] - 13/06/2009 - (.Μįćяō§σƒτ Ćόŕþŏѓάŧĭθή - Нϊģĥ Ďεƒīиϊτĭōņ Ǻùδĭŏ ßύś Đřîνëг.) -- C:\Windows\System32\drivers\HDAudBus.sys [108544]
[MD5.8AFE5261F73B89265690AB86ED7A96D7] - 13/06/2009 - (.Microsoft Corporation - Driver della porta i8042.) -- C:\Windows\System32\drivers\i8042prt.sys [80896] ©
[MD5.A82D26B5E7CA592B96C81447350BAAB2] - 13/06/2009 - (.Μĭсѓőŝøƒт €οяφǿŕăтįòň - ÍÞ ∏ёŧωøřк Ǻďδяέš§ Тяāňśĺāţσŗ.) -- C:\Windows\System32\drivers\IpNat.sys [101888]
[MD5.DDC78BD4B718F6341D96098F6AC75310] - 13/06/2009 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [123392] ©
[MD5.CFC04EC0E954197A8E3DE7300D7940F0] - 13/06/2009 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [187904] ©
[MD5.F79B18E48B5E125D6E0DF5256B2D8FEF] - 13/06/2009 - (.Microsoft Corporation - Driver file system NT.) -- C:\Windows\System32\drivers\ntfs.sys [1210432] =>.Microsoft Windows®
[MD5.AA0FE1835F234ACE43B29AD7A924AE63] - 13/06/2009 - (.Microsoft Corporation - Driver della porta parallela.) -- C:\Windows\System32\drivers\Parport.sys [79360] ©
[MD5.14BA985BB2BA8D2FDAF2B528598C19B0] - 13/06/2009 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [78848] ©
[MD5.2DE521DF88AB938DAED61E1446FD99BE] - 13/06/2009 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [133120] ©
[MD5.DA60FB9BC96D7F960554B6838904710A] - 13/06/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [71168] ©
[MD5.398B398AA9E285F764E1120F791BFC5E] - 13/06/2009 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [74240] ©
[MD5.DF75FE289CAD4BA08720D1CAB08E875A] - 13/06/2009 - (.Microsoft Corporation - Driver copia shadow del volume.) -- C:\Windows\System32\drivers\volsnap.sys [245312] =>.Microsoft Windows®

---\\ Servizi non Microsoft NT e non disabili (15) - 15s
O23 - Service: ArcSoft Connect Daemon (ACDaemon) . (.ArcSoft Inc. - ArcSoft Connect Service.) - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe =>.ArcSoft, Inc.®
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\atiesrxx.exe ©
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - YSLoader.exe.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe =>.Apple Inc.®
O23 - Service: Servizio Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.®
O23 - Service: C-DillaCdaC11BA (C-DillaCdaC11BA) . (.Macrovision - Macrovision RTS Service.) - C:\Windows\System32\drivers\CDAC11BA.EXE ©
O23 - Service: Servizio Google Update (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: InCD Helper (InCDSrv) . (.Nero AG - incdsrv.) - C:\Program Files\Nero\Tools\InCD\InCDSrv.exe =>.Nero AG®
O23 - Service: KMService (KMService) . (...) - C:\Windows\System32\srvany.exe =>PUP.Optional.Office
O23 - Service: Nero Registry InCD Service (NeroRegInCDSrv) . (.Nero AG - Nero Registry InCD Service.) - C:\Program Files\Nero\Tools\InCD\NBHRegInCDSrv.exe =>.Nero AG®
O23 - Service: ScsiAccess (ScsiAccess) . (...) - C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe
O23 - Service: SecureUpdate (SecureUpdateSvc) . (...) - C:\Program Files\Secure Speed Dial\IE\SecureUpdate.exe {1B5D68E0AFA12E8F1159C668DD228431} =>PUP.Optional.SpeedDial
O23 - Service: Update CommonShare (Update CommonShare) . (...) - C:\Program Files\CommonShare\updateCommonShare.exe (.not file.) =>PUP.Optional.CommonShare
O23 - Service: Updater By Sweetpacks (Updater By Sweetpacks) . (...) - C:\Program Files\Updater By Sweetpacks\ExtensionUpdaterService.exe (.not file.) =>PUP.Optional.SweetIM
O23 - Service: WajamUpdaterV3 (WajamUpdaterV3) . (...) - C:\Program Files\Wajam\Updater\WajamUpdaterV3.exe (.not file.) =>PUP.Optional.Wajam

---\\ Processo avviato (24) - 24s
[MD5.A3023B9767F7DD02091C725D4C0C3474] - (.AMD - AMD External Events Service Module.) -- C:\Windows\System32\atiesrxx.exe [180224] [PID.952] ©
[MD5.68D477E6E8F7DCD2557C5572AC07F34A] - (.AMD - AMD External Events Client Module.) -- C:\Windows\System32\atieclxx.exe [290816] [PID.1332] ©
[MD5.9BDBDA21D3BA8E374FD06A405BE10215] - (.Macrovision - Macrovision RTS Service.) -- C:\Windows\System32\drivers\CDAC11BA.EXE [54784] [PID.2304] ©
[MD5.A109CE7FF9FB13C13C6B2E7E8BAA6A61] - (.Plus HDV15.09 - Plus-HD-2.5iV15.09 exe.) -- C:\Program Files\Plus-HD-2.5iV15.09\394ee3a1-5525-4700-98be-e537097b6f52-10.exe [1272400] [PID.2332] {00F39F5E5096779B72822CF8381166A432} =>PUP.Optional.CrossRider
[MD5.9AF0B38E19FFB4CE1CF1B86C70306A58] - (...) -- C:\Program Files\ExpressFiles\EFUpdater.exe [249440] [PID.2356] {37B080A790663B8AF63D05448AD0343B} =>PUP.Optional.ExpressFiles
[MD5.FB252DD543A9DD5BF7887AF03584B665] - (.Plus HDV15.09 - Plus-HD-2.5iV15.09 exe.) -- C:\Program Files\Plus-HD-2.5iV15.09\394ee3a1-5525-4700-98be-e537097b6f52-1-6.exe [1356368] [PID.2440] {00F39F5E5096779B72822CF8381166A432} =>PUP.Optional.CrossRider
[MD5.921F0420FED6055C5BCA0AC263161D98] - (.Plus HDV15.09 - Plus-HD-2.5iV15.09 exe.) -- C:\Program Files\Plus-HD-2.5iV15.09\394ee3a1-5525-4700-98be-e537097b6f52-6.exe [1301072] [PID.2496] {00F39F5E5096779B72822CF8381166A432} =>PUP.Optional.CrossRider
[MD5.4635935FC972C582632BF45C26BFCB0E] - (...) -- C:\Windows\System32\srvany.exe [8192] [PID.2648]
[MD5.BCA43E19E7013331D99FF788EA6B42A0] - (...) -- C:\Windows\KMService.exe [151552] [PID.2668]
[MD5.54196CDAC7E1D81D71C652E100B99E77] - (...) -- C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe [181312] [PID.2748]
[MD5.3E5BF7CE8268B69DF46A3954BDEB79DA] - (...) -- C:\Users\sofian\AppData\Local\fst_it_231\upfst_it_231.exe [3357640] [PID.3736]
[MD5.1CB4D90DC6498787B0B6BE7A4AAA6571] - (.Babylon Ltd. - Babylon Information Tool.) -- C:\Program Files\Babylon\Babylon-Pro\Babylon.exe [3590224] [PID.3900] =>PUP.Optional.Babylon
[MD5.521A6D0E85DADF2C003EAF0EF69C5153] - (.Copy right(c). All rights reserved. - .) -- C:\Program Files\Alice Mobile Olicard 100\ConnMonitor.exe [401408] [PID.4016]
[MD5.AA16204FD1F75637E8EAEB593A8FA597] - (.PowerISO Computing, Inc. - PowerISO Virtual Drive Manager.) -- C:\Program Files\PowerISO\PWRISOVM.EXE [180224] [PID.4064]
[MD5.1B57FE76B8226C1544FCC896BDB17B25] - (...) -- C:\Program Files\rec_it_101\rec_it_101.exe [4164272] [PID.2476] {1121659F89D645B84A6361DBAB1CE36D6315}
[MD5.4F9236BE13917B89F7A03DEA85F220FA] - (.Copyright 2012 - WebPlayer.) -- C:\Users\sofian\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe [202752] [PID.2940]
[MD5.475A2BC64E0FF011C8C9AFC418E8E40D] - (.ultracopier.first-world.info - Supercopier under GPL3.) -- C:\Program Files\Supercopier\supercopier.exe [178688] [PID.3332] ©
[MD5.EBD7F91309221206A42FF06B210EC5C2] - (.Copyright (c). All rights reserved. - 3.5G Modem Application.) -- C:\Program Files\Alice Mobile Olicard 100\Alice Mobile Olicard 100.exe [2859008] [PID.3504]
[MD5.F278582F5D0E9DE01C374C43378EF801] - (.The BoBrowser Authors - BoBrowser.) -- C:\Users\sofian\AppData\Local\BoBrowser\Application\bobrowser.exe [590472] [PID.4328] {112123154E5E0FD1C6C84C77F8890B7472E0} =>PUP.Optional.BoBrowser
[MD5.F278582F5D0E9DE01C374C43378EF801] - (.The BoBrowser Authors - BoBrowser.) -- C:\Users\sofian\AppData\Local\BoBrowser\Application\bobrowser.exe [590472] [PID.4772] {112123154E5E0FD1C6C84C77F8890B7472E0} =>PUP.Optional.BoBrowser
[MD5.F278582F5D0E9DE01C374C43378EF801] - (.The BoBrowser Authors - BoBrowser.) -- C:\Users\sofian\AppData\Local\BoBrowser\Application\bobrowser.exe [590472] [PID.4856] {112123154E5E0FD1C6C84C77F8890B7472E0} =>PUP.Optional.BoBrowser
[MD5.F278582F5D0E9DE01C374C43378EF801] - (.The BoBrowser Authors - BoBrowser.) -- C:\Users\sofian\AppData\Local\BoBrowser\Application\bobrowser.exe [590472] [PID.3664] {112123154E5E0FD1C6C84C77F8890B7472E0} =>PUP.Optional.BoBrowser
[MD5.F278582F5D0E9DE01C374C43378EF801] - (.The BoBrowser Authors - BoBrowser.) -- C:\Users\sofian\AppData\Local\BoBrowser\Application\bobrowser.exe [590472] [PID.5384] {112123154E5E0FD1C6C84C77F8890B7472E0} =>PUP.Optional.BoBrowser
[MD5.633B6204CCEF51D1DF7293C23BBB35CF] - (.Copyright (C) 2015 Nicolas Coolman - ZHPDiag.) -- C:\Users\sofian\Downloads\ZHPDiag3.exe [2019328] [PID.760] ©

---\\ Google Chrome, start, cerca, estensioni (11) - 164s
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] __MSG_extName__
G2 - GCE: Preference [User Data\Default] [kfgaibfbmkjgmimhbbaikfnpkkjkpoan] [https://w9u6a2p6.ssl.hwcdn.net/plugin/chrome/updat] Object Browser =>Hijacker.Browser
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [papbadoldddalgcjcicnikcfenodpghp] ["update_url":"https://clients2.google.com/service/] Plus-HD-2.5iV15.09 =>Hijacker.Browser
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.

---\\ Mozilla Firefox, Plugin,Start,Cerca,Estensioni (4) - 2s
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\NPSWF32_19_0_0_245.dll ©
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Apple Inc..) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ©
P2 - FPN: [HKLM] [@staging.google.com/globalUpdate Update;version=10] - (.globalUpdate.) -- C:\Program Files\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll =>PUP.Optional.GlobalUpdate
P2 - FPN: [HKLM] [@staging.google.com/globalUpdate Update;version=4] - (.globalUpdate.) -- C:\Program Files\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll =>PUP.Optional.GlobalUpdate

---\\ Avvio di opera, Plugins, ricerca (B0,B1,B2) (1) - 0s
B2 - EXT: [cechdibmaolglcdioefoikpknppdekpc] C:\Users\sofian\AppData\Roaming\Opera Software\Opera Stable\Extensions\cechdibmaolglcdioefoikpknppdekpc

---\\ Internet Explorer, Start,Cerca,Phishing (8) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://it.search.yahoo.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://it.yahoo.com?fr=hp-avast&type=avastbcl
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://it.search.yahoo.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://feed.snapdo.com/ =>PUP.Optional.SmartBar
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://feed.snapdo.com/ =>PUP.Optional.SmartBar
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = about:newtab

---\\ Internet Explorer, gestione Proxy (5) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Analisi delle linee - IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe (.Microsoft Corporation.) ©

---\\ Hosts file redirection (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (22)

---\\ Browser Helper Object (BHO) (13) - 1s
O2 - BHO: IEPlugin Class - {11222041-111B-46E3-BD29-EFB2449479B1} . (.ArcSoft, Inc. - ArcURLRecord Module.) -- C:\Program Files\ArcSoft\Video Downloader\ArcURLRecord.dll =>.ArcSoft, Inc.®
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation®
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\ssv.dll =>.Oracle America, Inc.®
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll =>.AVAST Software a.s.®
O2 - BHO: ToolbarBHO Class - {9519AF7E-638D-4933-BAD6-D33D23C79FE5} . (.ArcSoft Inc. - EXIFToolBar Module.) -- C:\Program Files\ArcSoft\RAW Thumbnail Viewer\EXIFToolBar.dll ©
O2 - BHO: Babylon IE plugin - {9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} . (.Babylon Ltd. - Babylon Internet Explorer Addin.) -- C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll {48C39FBA62460E24E169054FE518E0AF} =>PUP.Optional.Babylon
O2 - BHO: Wajam IE BHO - {A7A6995D-6EE1-4FD1-A258-49395D5BF99C} . (...) -- C:\Program Files\Wajam\IE\priam_bho.dll (.not file.) =>PUP.Optional.Wajam
O2 - BHO: MinibarBHO - {AA74D58F-ACD0-450D-A85E-6C04B171C044} (Orphean) =>PUP.Optional.Minibar
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL =>.Microsoft Corporation®
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\jp2ssv.dll =>.Oracle America, Inc.®
O2 - BHO: Updater By Sweetpacks Helper - {DEDAF650-12B8-48f5-A843-BBA100716106} (Orphean) =>PUP.Optional.SweetIM
O2 - BHO: DVDVideoSoft.WebPageAdjuster - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} (Orphean)
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} (Orphean) =>PUP.Optional.SweetIM

---\\ Internet Explorer barre degli strumenti (2) - 0s
O3 - Toolbar: 0xE80D9009CA1D3F44924326FF581438AF - [HKCU]{09900DE8-1DCA-443F-9243-26FF581438AF} . (...) -- (.not file.)
O3 - Toolbar: 0x00 - [HKLM]{EEE6C35B-6118-11DC-9C72-001320C79847} . (...) -- (.not file.)

---\\ Iniziato da file e registro applicazioni (34) - 5s
O4 - HKLM\..\Run: [SoundMan] . (.Realtek Semiconductor Corp. - Realtek Sound Manager.) -- C:\Windows\SOUNDMAN.EXE =>.Realtek Semiconductor Corp®
O4 - HKLM\..\Run: [BCSSync] . (.Microsoft Corporation - Microsoft Office 2010 component.) -- C:\Program Files\Microsoft Office\Office14\BCSSync.exe =>.Microsoft Corporation®
O4 - HKLM\..\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe =>.Apple Inc.®
O4 - HKLM\..\Run: [NeroCheck] . (.Ahead Software Gmbh - NeroCheck.) -- C:\Windows\System32\NeroCheck.exe
O4 - HKLM\..\Run: [Babylon Client] . (.Babylon Ltd. - Babylon Information Tool.) -- C:\Program Files\Babylon\Babylon-Pro\Babylon.exe =>PUP.Optional.Babylon
O4 - HKLM\..\Run: [NBHGui] . (.Nero AG - Nero SecurDisc Host.) -- C:\Program Files\Nero\Tools\InCD\NBHGui.exe =>.Nero AG®
O4 - HKLM\..\Run: [Express FilesInstaller Starter] C:\Users\sofian\AppData\Local\Temp\install180265.exe (.not file.)
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe =>.Oracle America, Inc.®
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe {680F632DF09C0A79D10CFBC36604CD2B} ©
O4 - HKLM\..\Run: [AdobeCEPServiceManager] . (.Adobe Systems Incorporated - Adobe CEP Service Manager.) -- C:\Program Files\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe =>.Adobe Systems Incorporated®
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe =>.Apple Inc.®
O4 - HKLM\..\Run: [fst_it_277] (Orphean)
O4 - HKLM\..\Run: [ConnMonitor] . (.Copy right(c). All rights reserved. - .) -- C:\Program Files\Alice Mobile Olicard 100\ConnMonitor.exe
O4 - HKLM\..\Run: [3D BubbleSound] . (.zik.mu - 3D bubbleSound.) -- C:\Program Files\BubbleSound\3D BubbleSound.exe =>PUP.Optional.BubbleSound
O4 - HKLM\..\Run: [rec_it_70] (Orphean)
O4 - HKLM\..\Run: [PWRISOVM.EXE] . (.PowerISO Computing, Inc. - PowerISO Virtual Drive Manager.) -- C:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe ©
O4 - HKLM\..\Run: [rec_it_101] . (...) -- C:\Program Files\rec_it_101\rec_it_101.exe {1121659F89D645B84A6361DBAB1CE36D6315}
O4 - HKLM\..\Run: [ArcSoft Connection Service] . (.ArcSoft Inc. - ArcSoft Connect Daemon.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe =>.ArcSoft, Inc.®
O4 - HKLM\..\RunOnce: [upfst_it_231.exe] . (...) -- C:\Users\sofian\AppData\Local\fst_it_231\upfst_it_231.exe
O4 - HKCU\..\Run: [FLV Player] . (.Copyright 2012 - WebPlayer.) -- C:\Users\sofian\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe
O4 - HKCU\..\Run: [CrashService] . (...) -- C:\Users\sofian\AppData\Local\BoBrowser\Application\crash_service.exe {112123154E5E0FD1C6C84C77F8890B7472E0} =>PUP.Optional.BoBrowser
O4 - HKCU\..\Run: [BoBrowser] . (.The BoBrowser Authors - BoBrowser.) -- C:\Users\sofian\AppData\Local\BoBrowser\Application\bobrowser.exe {112123154E5E0FD1C6C84C77F8890B7472E0} =>PUP.Optional.BoBrowser
O4 - HKCU\..\Run: [ultracopier] . (.ultracopier.first-world.info - Supercopier under GPL3.) -- C:\Program Files\Supercopier\supercopier.exe ©
O4 - HKUS\.DEFAULT\..\Run: [Advanced SystemCare 6] C:\Program Files\IObit\Advanced SystemCare 6\ASCTray.exe (.not file.)
O4 - HKUS\S-1-5-18\..\Run: [Advanced SystemCare 6] C:\Program Files\IObit\Advanced SystemCare 6\ASCTray.exe (.not file.)
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadget per il desktop di Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadget per il desktop di Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-21-1548585239-3552790933-256527937-1000\..\Run: [FLV Player] . (.Copyright 2012 - WebPlayer.) -- C:\Users\sofian\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe
O4 - HKUS\S-1-5-21-1548585239-3552790933-256527937-1000\..\Run: [CrashService] . (...) -- C:\Users\sofian\AppData\Local\BoBrowser\Application\crash_service.exe {112123154E5E0FD1C6C84C77F8890B7472E0} =>PUP.Optional.BoBrowser
O4 - HKUS\S-1-5-21-1548585239-3552790933-256527937-1000\..\Run: [BoBrowser] . (.The BoBrowser Authors - BoBrowser.) -- C:\Users\sofian\AppData\Local\BoBrowser\Application\bobrowser.exe {112123154E5E0FD1C6C84C77F8890B7472E0} =>PUP.Optional.BoBrowser
O4 - HKUS\S-1-5-21-1548585239-3552790933-256527937-1000\..\Run: [ultracopier] . (.ultracopier.first-world.info - Supercopier under GPL3.) -- C:\Program Files\Supercopier\supercopier.exe ©

---\\ Scorciatoie globale Startup (26) - 28s
O4 - GS\Desktop [Administrator]: Amazon.lnk . (.The BoBrowser Authors - BoBrowser.) C:\Users\sofian\AppData\Local\BoBrowser\Application\bobrowser.exe {112123154E5E0FD1C6C84C77F8890B7472E0} =>PUP.Optional.BoBrowser
O4 - GS\Desktop [Administrator]: Facebook.lnk . (.The BoBrowser Authors - BoBrowser.) C:\Users\sofian\AppData\Local\BoBrowser\Application\bobrowser.exe {112123154E5E0FD1C6C84C77F8890B7472E0} =>PUP.Optional.BoBrowser
O4 - GS\Desktop [Administrator]: Hotmail.lnk . (.The BoBrowser Authors - BoBrowser.) C:\Users\sofian\AppData\Local\BoBrowser\Application\bobrowser.exe {112123154E5E0FD1C6C84C77F8890B7472E0} =>PUP.Optional.BoBrowser
O4 - GS\Desktop [Administrator]: Wikipedia.lnk . (.The BoBrowser Authors - BoBrowser.) C:\Users\sofian\AppData\Local\BoBrowser\Application\bobrowser.exe {112123154E5E0FD1C6C84C77F8890B7472E0} =>PUP.Optional.BoBrowser
O4 - GS\Desktop [Administrator]: Youtube.lnk . (.The BoBrowser Authors - BoBrowser.) C:\Users\sofian\AppData\Local\BoBrowser\Application\bobrowser.exe {112123154E5E0FD1C6C84C77F8890B7472E0} =>PUP.Optional.BoBrowser
O4 - GS\Quicklaunch [Administrator]: Babylon.lnk . (.Babylon Ltd. - Babylon Information Tool.) C:\Program Files\Babylon\Babylon-Pro\Babylon.exe =>PUP.Optional.Babylon
O4 - GS\Quicklaunch [Administrator]: BoBrowser.lnk . (.The BoBrowser Authors - BoBrowser.) C:\Users\sofian\AppData\Local\BoBrowser\Application\bobrowser.exe {112123154E5E0FD1C6C84C77F8890B7472E0} =>PUP.Optional.BoBrowser
O4 - GS\TaskBar [Administrator]: Babylon.lnk . (.Babylon Ltd. - Babylon Information Tool.) C:\Program Files\Babylon\Babylon-Pro\Babylon.exe =>PUP.Optional.Babylon
O4 - GS\Desktop [Guest]: Amazon.lnk . (.The BoBrowser Authors - BoBrowser.) C:\Users\sofian\AppData\Local\BoBrowser\Application\bobrowser.exe {112123154E5E0FD1C6C84C77F8890B7472E0} =>PUP.Optional.BoBrowser
O4 - GS\Desktop [Guest]: Facebook.lnk . (.The BoBrowser Authors - BoBrowser.) C:\Users\sofian\AppData\Local\BoBrowser\Application\bobrowser.exe {112123154E5E0FD1C6C84C77F8890B7472E0} =>PUP.Optional.BoBrowser
O4 - GS\Desktop [Guest]: Hotmail.lnk . (.The BoBrowser Authors - BoBrowser.) C:\Users\sofian\AppData\Local\BoBrowser\Application\bobrowser.exe {112123154E5E0FD1C6C84C77F8890B7472E0} =>PUP.Optional.BoBrowser
O4 - GS\Desktop [Guest]: Wikipedia.lnk . (.The BoBrowser Authors - BoBrowser.) C:\Users\sofian\AppData\Local\BoBrowser\Application\bobrowser.exe {112123154E5E0FD1C6C84C77F8890B7472E0} =>PUP.Optional.BoBrowser
O4 - GS\Desktop [Guest]: Youtube.lnk . (.The BoBrowser Authors - BoBrowser.) C:\Users\sofian\AppData\Local\BoBrowser\Application\bobrowser.exe {112123154E5E0FD1C6C84C77F8890B7472E0} =>PUP.Optional.BoBrowser
O4 - GS\Quicklaunch [Guest]: Babylon.lnk . (.Babylon Ltd. - Babylon Information Tool.) C:\Program Files\Babylon\Babylon-Pro\Babylon.exe =>PUP.Optional.Babylon
O4 - GS\Quicklaunch [Guest]: BoBrowser.lnk . (.The BoBrowser Authors - BoBrowser.) C:\Users\sofian\AppData\Local\BoBrowser\Application\bobrowser.exe {112123154E5E0FD1C6C84C77F8890B7472E0} =>PUP.Optional.BoBrowser
O4 - GS\TaskBar [Guest]: Babylon.lnk . (.Babylon Ltd. - Babylon Information Tool.) C:\Program Files\Babylon\Babylon-Pro\Babylon.exe =>PUP.Optional.Babylon
O4 - GS\Desktop [sofian]: Amazon.lnk . (.The BoBrowser Authors - BoBrowser.) C:\Users\sofian\AppData\Local\BoBrowser\Application\bobrowser.exe {112123154E5E0FD1C6C84C77F8890B7472E0} =>PUP.Optional.BoBrowser
O4 - GS\Desktop [sofian]: Facebook.lnk . (.The BoBrowser Authors - BoBrowser.) C:\Users\sofian\AppData\Local\BoBrowser\Application\bobrowser.exe {112123154E5E0FD1C6C84C77F8890B7472E0} =>PUP.Optional.BoBrowser
O4 - GS\Desktop [sofian]: Hotmail.lnk . (.The BoBrowser Authors - BoBrowser.) C:\Users\sofian\AppData\Local\BoBrowser\Application\bobrowser.exe {112123154E5E0FD1C6C84C77F8890B7472E0} =>PUP.Optional.BoBrowser
O4 - GS\Desktop [sofian]: Wikipedia.lnk . (.The BoBrowser Authors - BoBrowser.) C:\Users\sofian\AppData\Local\BoBrowser\Application\bobrowser.exe {112123154E5E0FD1C6C84C77F8890B7472E0} =>PUP.Optional.BoBrowser
O4 - GS\Desktop [sofian]: Youtube.lnk . (.The BoBrowser Authors - BoBrowser.) C:\Users\sofian\AppData\Local\BoBrowser\Application\bobrowser.exe {112123154E5E0FD1C6C84C77F8890B7472E0} =>PUP.Optional.BoBrowser
O4 - GS\Quicklaunch [sofian]: Babylon.lnk . (.Babylon Ltd. - Babylon Information Tool.) C:\Program Files\Babylon\Babylon-Pro\Babylon.exe =>PUP.Optional.Babylon
O4 - GS\Quicklaunch [sofian]: BoBrowser.lnk . (.The BoBrowser Authors - BoBrowser.) C:\Users\sofian\AppData\Local\BoBrowser\Application\bobrowser.exe {112123154E5E0FD1C6C84C77F8890B7472E0} =>PUP.Optional.BoBrowser
O4 - GS\TaskBar [sofian]: Babylon.lnk . (.Babylon Ltd. - Babylon Information Tool.) C:\Program Files\Babylon\Babylon-Pro\Babylon.exe =>PUP.Optional.Babylon
O4 - GS\CommonDesktop [Public]: Babylon.lnk . (.Babylon Ltd. - Babylon Information Tool.) C:\Program Files\Babylon\Babylon-Pro\Babylon.exe =>PUP.Optional.Babylon
O4 - GS\CommonDesktop [Public]: Express Files.lnk . (.http://www.express-files.com/ - ExpressFiles Application.) C:\Program Files\ExpressFiles\ExpressFiles.exe =>PUP.Optional.ExpressFiles

---\\ Modificare gli indirizzi DNS domain (9) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.4.4 =>.Google Public DNS
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.4.4,10.181.126.197 =>.Google Public DNS
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.204.57.104 10.205.41.16
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.4.4 =>.Google Public DNS
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.4.4,10.181.126.197 =>.Google Public DNS
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 10.204.57.104 10.205.41.16
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.4.4 =>.Google Public DNS
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.4.4,10.181.126.197 =>.Google Public DNS
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 10.204.57.104 10.205.41.16

---\\ Protocollo addizionale (24) - 1s
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizzatore HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Estensioni OLE32 per Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Controllo ActiveX per streaming video.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Estensioni OLE32 per Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Estensioni OLE32 per Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Estensioni OLE32 per Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Estensioni OLE32 per Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizzatore HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Estensioni OLE32 per Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizzatore HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll ©
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Estensioni OLE32 per Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll =>.Microsoft Corporation®
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizzatore HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Controllo ActiveX per streaming video.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizzatore HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Estensioni OLE32 per Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Estensioni OLE32 per Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL =>.Microsoft Corporation®

---\\ Valore di registro AppInit_DLLs e sottochiavi Winlogon Notify (1) - 0s
O20 - AppInit_DLLs: . (...) - C:\PROGRA~1\SearchProtect\SearchProtect\bin\SPVC32Loader.dll (.not file.) =>PUP.Optional.SearchProtect

---\\ Software installato (56) - 45s
O42 - Logiciel: Adobe Flash Player 19 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Flash Player 19 NPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Photoshop Lightroom 5.6 - (.Adobe Systems Incorporated.) [HKLM] -- {213D5223-CD40-4B7B-B292-6D5242AE5039} ©
O42 - Logiciel: Adobe Reader XI (11.0.13) - Italiano - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1040-7B44-AB0000000001} ©
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-0804-1033-1959-001824161310} ©
O42 - Logiciel: Alice Mobile Olicard 100 - (...) [HKLM] -- {93D35783-AD34-4CDB-8E7F-71CC730026EC} =>.Macrovision Corporation®
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {C0CC75CD-F5B7-46AD-B016-17C0F5171718} ©
O42 - Logiciel: ArcSoft MediaImpression 2 - (.ArcSoft.) [HKLM] -- {30B056AF-F414-4B68-B9B0-6EFDB9FCDF18} ©
O42 - Logiciel: ArcSoft Panorama Maker 4 - (.ArcSoft.) [HKLM] -- {37530151-56A6-4CE4-9F9F-CE1F5A1356C6} ©
O42 - Logiciel: ArcSoft Photo Book Screen Saver - (.ArcSoft.) [HKLM] -- {E2EE273D-E111-4FFD-ACD4-78E1D35E01D2} ©
O42 - Logiciel: ArcSoft PhotoStudio Darkroom 2 - (.ArcSoft.) [HKLM] -- {40DA94AF-34B7-4BA7-A37F-26F899C031FF} ©
O42 - Logiciel: ArcSoft Print Creations - (.ArcSoft.) [HKLM] -- {F03EC055-F34E-4F6B-A684-8A370E11A304} ©
O42 - Logiciel: ArcSoft Print Creations - Album Page - (.ArcSoft.) [HKLM] -- {E6B4117F-AC59-4B13-9274-EB136E8897EE} ©
O42 - Logiciel: ArcSoft Print Creations - Brochures & Flyers - (.ArcSoft.) [HKLM] -- {01A1A019-E1D8-482A-BE17-5E118D17C0A0} ©
O42 - Logiciel: ArcSoft Print Creations - Funhouse - (.ArcSoft.) [HKLM] -- {9591C049-5CAE-4E89-A8D9-191F1899628B} ©
O42 - Logiciel: ArcSoft Print Creations - Funhouse II - (.ArcSoft.) [HKLM] -- {3CE47E6B-AE27-4E40-AC54-329EED96B933} ©
O42 - Logiciel: ArcSoft Print Creations - Greeting Card - (.ArcSoft.) [HKLM] -- {F04F9557-81A9-4293-BC49-2C216FA325A7} ©
O42 - Logiciel: ArcSoft Print Creations - Photo Book - (.ArcSoft.) [HKLM] -- {56589DFE-0C29-4DFE-8E42-887B771ECD23} ©
O42 - Logiciel: ArcSoft Print Creations - Photo Calendar - (.ArcSoft.) [HKLM] -- {CA9ED5E4-1548-485B-A293-417840060158} ©
O42 - Logiciel: ArcSoft Print Creations - Photo Prints - (.ArcSoft.) [HKLM] -- {95F875CC-1B85-43E6-B3E0-13EA04F3D995} ©
O42 - Logiciel: ArcSoft Print Creations - Poster Creator - (.ArcSoft.) [HKLM] -- {5D1C82E7-7EC0-4404-A8AD-36C3B444BC34} ©
O42 - Logiciel: ArcSoft Print Creations - Scrapbook - (.ArcSoft.) [HKLM] -- {B0D83FCD-9D42-43ED-8315-250326AADA02} ©
O42 - Logiciel: ArcSoft Print Creations - Slimline Card - (.ArcSoft.) [HKLM] -- {007B37D9-0C45-4202-834B-DD5FAAE99D63} ©
O42 - Logiciel: ArcSoft RAW Thumbnail Viewer - (.ArcSoft.) [HKLM] -- {82FAC25D-D0E1-4D60-9268-F3DD958BF052} ©
O42 - Logiciel: ArcSoft Scan-n-Stitch Deluxe - (.ArcSoft.) [HKLM] -- {363188E4-1A27-4DE6-BA48-823D2E205385} ©
O42 - Logiciel: ArcSoft Video Downloader - (.ArcSoft.) [HKLM] -- {C8B44566-839A-459C-A73D-49764CE216CC} ©
O42 - Logiciel: BoBrowser - (.BoBrowser.) [HKCU] -- BoBrowser {112123154E5E0FD1C6C84C77F8890B7472E0} =>PUP.Optional.BoBrowser
O42 - Logiciel: DMUninstaller - (...) [HKLM] -- DMUninstaller
O42 - Logiciel: FLV Player - (.Somoto Ltd..) [HKCU] -- FLV Player =>PUP.Optional.MegaSearch
O42 - Logiciel: FreeSoftToday Maintenance 003.101 - (.FREESOFTTODAY.) [HKLM] -- rec_it_101_is1 =>PUP.Optional.Multiplug
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome =>.Google Inc®
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} ©
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {F32DC846-4457-40A8-BECA-BCC0E960BC53} ©
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} ©
O42 - Logiciel: Oracle VM VirtualBox 5.0.4 - (.Oracle Corporation.) [HKLM] -- {92836468-BD60-4DD7-8B1D-61D989740CB9} ©
O42 - Logiciel: Pacchetto driver Windows - ATI Technologies Inc. (atikmdag) Display (04/29 - (.ATI Technologies Inc..) [HKLM] -- 8390F55D5C2F0839721A081630AD7DAD3268E783 {288A6842C331C5443D747BDABF31E2A3} ©
O42 - Logiciel: Pacchetto driver Windows - ATI Technologies Inc. (atikmdag) Display (04/29 - (.ATI Technologies Inc..) [HKLM] -- 92EB8C41A34B417004470AF28094A8EEA6F242E7 {288A6842C331C5443D747BDABF31E2A3} ©
O42 - Logiciel: Pacchetto driver Windows - Broadcom (b57nd60x) Net (01/28/2013 15.6.0.10) - (.Broadcom.) [HKLM] -- 391D0D0F4EA65BC14A7DB69777FA233287D19D25 {288A6842C331C5443D747BDABF31E2A3} ©
O42 - Logiciel: Pacchetto driver Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (12 - (.Google, Inc..) [HKLM] -- D4558329EAB0A8AD871F128C3EFFC31C8650A8D0 {288A6842C331C5443D747BDABF31E2A3} ©
O42 - Logiciel: Pacchetto driver Windows - Intel hdc (07/25/2013 9.1.9.1005) - (.Intel.) [HKLM] -- 6078B84C20D1801A96ED545E08179F9F9929556A {288A6842C331C5443D747BDABF31E2A3} ©
O42 - Logiciel: Pacchetto driver Windows - Intel hdc (07/25/2013 9.1.9.1005) - (.Intel.) [HKLM] -- DA75139303F57E36D816944C971D590135A9C65F {288A6842C331C5443D747BDABF31E2A3} ©
O42 - Logiciel: Pacchetto driver Windows - Intel System (07/25/2013 9.1.9.1005) - (.Intel.) [HKLM] -- 5363CB64E5DEAB0EE726A48A6C919239F7F22A22 {288A6842C331C5443D747BDABF31E2A3} ©
O42 - Logiciel: Pacchetto driver Windows - Intel System (07/25/2013 9.1.9.1005) - (.Intel.) [HKLM] -- 7BC466F65DEA4C4147C81BA21E1876927A7DD525 {288A6842C331C5443D747BDABF31E2A3} ©
O42 - Logiciel: Pacchetto driver Windows - Intel System (11/07/2008 7.0.1.1011) - (.Intel.) [HKLM] -- 019BA247F4BF373BFF125045DCD742221AF9A191 {288A6842C331C5443D747BDABF31E2A3} ©
O42 - Logiciel: Pacchetto driver Windows - Intel USB (07/25/2013 9.1.9.1005) - (.Intel.) [HKLM] -- E0BB027CE34B6E51E38AAD90010D5E5457F0CD03 {288A6842C331C5443D747BDABF31E2A3} ©
O42 - Logiciel: PhraseProfessor 1.10.0.24 - (.PhraseProfessor.) [HKLM] -- PhraseProfessor_1.10.0.24 {11212ECCBE8A08CD220DFDB8DF22D0081744} =>PUP.Optional.Generic
O42 - Logiciel: Plus-HD-2.5iV15.09 - (.Plus HDV15.09.) [HKLM] -- Plus-HD-2.5iV15.09 {00F39F5E5096779B72822CF8381166A432} =>PUP.Optional.CrossRider
O42 - Logiciel: PowerISO - (.PowerISO Computing, Inc..) [HKLM] -- PowerISO
O42 - Logiciel: QuickTime 7 - (.Apple Inc..) [HKLM] -- {80CEEB1E-0A6C-45B9-A312-37A1D25FDEBC} ©
O42 - Logiciel: Revo Uninstaller 1.95 - (.VS Revo Group.) [HKLM] -- Revo Uninstaller ©
O42 - Logiciel: Setup - (...) [HKLM] -- {7ADF667E-E14D-4D2C-827C-B0108F0D93BC}
O42 - Logiciel: Supercopier 4.0.1.13 - (.Supercopier.) [HKLM] -- Supercopier ©
O42 - Logiciel: Supporto applicazioni Apple - (.Apple Inc..) [HKLM] -- {78002155-F025-4070-85B3-7C0453561701} ©
O42 - Logiciel: Vuze - (.Azureus Software, Inc..) [HKLM] -- 8461-7759-5462-8226 {373B392BBCBC58EB2F7EE0ADD6C26CC8}
O42 - Logiciel: Windows 7 USB/DVD Download Tool - (.Microsoft Corporation.) [HKLM] -- {CCF298AF-9CE1-4B26-B251-486E98A34789} ©

---\\ HKCU & HKLM Software Keys (170) - 45s
HKLM\SOFTWARE\8fedd4ce-4491-4a43-b95f-d1c87a3e3ae6 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Adobe
HKLM\SOFTWARE\Ahead
HKLM\SOFTWARE\Alice Mobile Olicard
HKLM\SOFTWARE\Alice Mobile Olicard 100
HKLM\SOFTWARE\Alienware
HKLM\SOFTWARE\AMD
HKLM\SOFTWARE\AppDataLow
HKLM\SOFTWARE\Apple Computer, Inc.
HKLM\SOFTWARE\Apple Inc.
HKLM\SOFTWARE\ArcSoft
HKLM\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKLM\SOFTWARE\ATI Technologies
HKLM\SOFTWARE\Autodesk
HKLM\SOFTWARE\Azureus
HKLM\SOFTWARE\Babylon =>PUP.Optional.Babylon
HKLM\SOFTWARE\Clara =>PUP.Optional.SupTab
HKLM\SOFTWARE\delta-homesSoftware =>PUP.Optional.DeltaHomes
HKLM\SOFTWARE\DVDVideoSoft
HKLM\SOFTWARE\ej-technologies
HKLM\SOFTWARE\ExpressFiles =>PUP.Optional.ExpressFiles
HKLM\SOFTWARE\Freemake
HKLM\SOFTWARE\FREESOFTTODAY =>PUP.Optional.Multiplug
HKLM\SOFTWARE\GEAR Software
HKLM\SOFTWARE\Gemplus
HKLM\SOFTWARE\GlobalUpdate =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\Goobzo =>PUP.Optional.Goobzo
HKLM\SOFTWARE\Google
HKLM\SOFTWARE\hdcode
HKLM\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKLM\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKLM\SOFTWARE\Intel
HKLM\SOFTWARE\IObit
HKLM\SOFTWARE\JavaSoft
HKLM\SOFTWARE\JreMetrics
HKLM\SOFTWARE\Kaydara
HKLM\SOFTWARE\Licenses
HKLM\SOFTWARE\Logitech
HKLM\SOFTWARE\LolliScan =>PUP.Optional.Graftor
HKLM\SOFTWARE\Macromedia
HKLM\SOFTWARE\Macrovision
HKLM\SOFTWARE\Mail.Ru
HKLM\SOFTWARE\Minibar =>PUP.Optional.Minibar
HKLM\SOFTWARE\Mio
HKLM\SOFTWARE\Mozilla
HKLM\SOFTWARE\MozillaPlugins
HKLM\SOFTWARE\Nero
HKLM\SOFTWARE\Object Browser =>PUP.Optional.ObjectBrowser
HKLM\SOFTWARE\ODBC
HKLM\SOFTWARE\OdinM
HKLM\SOFTWARE\Oracle
HKLM\SOFTWARE\Photodex Media Sources
HKLM\SOFTWARE\Photodex Presenter
HKLM\SOFTWARE\PhraseProfessor_1.10.0.24 =>PUP.Optional.Generic
HKLM\SOFTWARE\Plus-HD-2.5iV15.09 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Plus-HD-2.5iV15.09-nv =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Plus-HD-2.5iV15.09-nv-ie =>PUP.Optional.CrossRider
HKLM\SOFTWARE\PowerISO
HKLM\SOFTWARE\qone8Software
HKLM\SOFTWARE\Realtek
HKLM\SOFTWARE\Reg
HKLM\SOFTWARE\RegisteredApplications
HKLM\SOFTWARE\SAMSUNG
HKLM\SOFTWARE\Secure
HKLM\SOFTWARE\Sonic
HKLM\SOFTWARE\SRS Labs
HKLM\SOFTWARE\supTab =>PUP.Optional.SupTab
HKLM\SOFTWARE\supWPM =>PUP.Optional.WpManager
HKLM\SOFTWARE\Systweak =>PUP.Optional.Systweak
HKLM\SOFTWARE\Tutorials =>PUP.Optional.AgenceExclusive
HKLM\SOFTWARE\Updater By Sweetpacks
HKLM\SOFTWARE\V9 =>PUP.Optional.V9Software
HKLM\SOFTWARE\Volatile
HKLM\SOFTWARE\Wajam =>PUP.Optional.Wajam
HKLM\SOFTWARE\WexTech Systems
HKLM\SOFTWARE\Windows
HKLM\SOFTWARE\WinRAR
HKLM\SOFTWARE\winzipersvc =>.Superfluous.WinZipper
HKLM\SOFTWARE\Wow6432Node
HKLM\SOFTWARE\Wpm =>PUP.Optional.WpManager
HKLM\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\1ClickDownload =>PUP.Optional.1ClickDownloader
HKCU\SOFTWARE\4shared
HKCU\SOFTWARE\AceTools
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\Adobe Lightroom
HKCU\SOFTWARE\Ahead
HKCU\SOFTWARE\AnyProtect =>PUP.Optional.AnyProtect
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc.
HKCU\SOFTWARE\ArcSoft
HKCU\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Autodesk
HKCU\SOFTWARE\Azureus
HKCU\SOFTWARE\Babylon =>PUP.Optional.Babylon
HKCU\SOFTWARE\BI =>PUP.Optional.MegaSearch
HKCU\SOFTWARE\BoBrowser =>PUP.Optional.BoBrowser
HKCU\SOFTWARE\CommView
HKCU\SOFTWARE\Conduit =>PUP.Optional.Conduit
HKCU\SOFTWARE\DriverTuner =>PUP.Optional.DriverTuner
HKCU\SOFTWARE\DriverTuner_Init =>PUP.Optional.DriverTuner
HKCU\SOFTWARE\DVDVideoSoft
HKCU\SOFTWARE\ej-technologies
HKCU\SOFTWARE\ExpressFiles =>PUP.Optional.ExpressFiles
HKCU\SOFTWARE\FLEXlm License Manager
HKCU\SOFTWARE\Freemake
HKCU\SOFTWARE\freesofttoday =>PUP.Optional.Multiplug
HKCU\SOFTWARE\globalUpdate =>PUP.Optional.GlobalUpdate
HKCU\SOFTWARE\Goobzo =>PUP.Optional.Goobzo
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKCU\SOFTWARE\IM
HKCU\SOFTWARE\ImInstaller =>Toolbar.IncrediMail
HKCU\SOFTWARE\IncrediMail
HKCU\SOFTWARE\Informer Technologies, Inc.
HKCU\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\kde.org
HKCU\SOFTWARE\Leadertech
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\Logitech
HKCU\SOFTWARE\lollipop =>PUP.Optional.Lollipop
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Magnet
HKCU\SOFTWARE\Mail.Ru
HKCU\SOFTWARE\MiniTool Solution Ltd.
HKCU\SOFTWARE\Mio
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Nero
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\Nosibay =>PUP.Optional.SPointer
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\Oracle
HKCU\SOFTWARE\Photodex
HKCU\SOFTWARE\Plus-HD-2.5iV15.09 =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Plus-HD-2.5iV15.09-nv =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Plus-HD-2.5iV15.09-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\PowerISO
HKCU\SOFTWARE\Reg
HKCU\SOFTWARE\RegisteredApplicationsEx =>PUP.Optional.SfKpCouponApp
HKCU\SOFTWARE\Samsung
HKCU\SOFTWARE\Sensaura
HKCU\SOFTWARE\Smart PC Solutions =>PUP.Optional.SmartPCSolutions
HKCU\SOFTWARE\SmartbarBackup =>PUP.Optional.SmartBar
HKCU\SOFTWARE\SmartbarLog =>PUP.Optional.SmartBar
HKCU\SOFTWARE\Softonic =>PUP.Optional.Softonic
HKCU\SOFTWARE\SweetIM =>PUP.Optional.SweetIM
HKCU\SOFTWARE\systweak =>PUP.Optional.Systweak
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Tutorials =>PUP.Optional.AgenceExclusive
HKCU\SOFTWARE\TutoTag =>PUP.Optional.AgenceExclusive
HKCU\SOFTWARE\Ultracopier
HKCU\SOFTWARE\VSRevoGroup
HKCU\SOFTWARE\Wajam =>PUP.Optional.Wajam
HKCU\SOFTWARE\WebPlayer =>PUP.Optional.WebPlayer
HKCU\SOFTWARE\WEDLMNGR =>PUP.Optional.weDownloadManager
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\Mail.Ru
HKCU\SOFTWARE\AppDataLow\Software\MarkAny
HKCU\SOFTWARE\AppDataLow\Software\Object Browser =>PUP.Optional.ObjectBrowser

---\\ Contenuto delle cartelle Programmi (278) - 47s
O43 - CFD: 05/03/2014 - [] D -- C:\Program Files\Ace Translator
O43 - CFD: 15/09/2015 - [] D -- C:\Program Files\Adobe
O43 - CFD: 21/11/2013 - [] D -- C:\Program Files\Ahead
O43 - CFD: 14/09/2015 - [] D -- C:\Program Files\Alice Mobile Olicard 100
O43 - CFD: 02/11/2013 - [] D -- C:\Program Files\AnswerWorks 4.0
O43 - CFD: 12/08/2014 - [] D -- C:\Program Files\AnyProtectEx =>PUP.Optional.AnyProtect
O43 - CFD: 13/10/2013 - [] D -- C:\Program Files\Apple Software Update
O43 - CFD: 25/11/2015 - [] D -- C:\Program Files\ArcSoft
O43 - CFD: 02/11/2013 - [] D -- C:\Program Files\AutoCAD 2004
O43 - CFD: 02/11/2013 - [] D -- C:\Program Files\Autodesk
O43 - CFD: 29/09/2014 - [] D -- C:\Program Files\AVAST Software
O43 - CFD: 08/02/2014 - [] D -- C:\Program Files\Babylon =>PUP.Optional.Babylon
O43 - CFD: 13/10/2013 - [] D -- C:\Program Files\Bonjour
O43 - CFD: 30/09/2015 - [] D -- C:\Program Files\BubbleSound =>PUP.Optional.BubbleSound
O43 - CFD: 25/11/2015 - [] D -- C:\Program Files\Common Files
O43 - CFD: 04/11/2014 - [0] D -- C:\Program Files\CommonShare =>PUP.Optional.CommonShare
O43 - CFD: 07/10/2013 - [] D -- C:\Program Files\DIFX
O43 - CFD: 23/08/2014 - [] D -- C:\Program Files\DriverTuner =>PUP.Optional.DriverTuner
O43 - CFD: 13/06/2009 - [] D -- C:\Program Files\DVD Maker
O43 - CFD: 16/10/2013 - [] D -- C:\Program Files\DVDVideoSoft
O43 - CFD: 06/10/2013 - [] D -- C:\Program Files\encrupting.narod.ru
O43 - CFD: 29/09/2015 - [] D -- C:\Program Files\ExpressFiles =>PUP.Optional.ExpressFiles
O43 - CFD: 15/09/2015 - [] D -- C:\Program Files\fb39f3d3-5ef9-43a5-a5e0-5101daaf133c =>PUP.Optional.CrossRider
O43 - CFD: 06/10/2013 - [0] SHD -- C:\Program Files\File comuni
O43 - CFD: 12/01/2014 - [] D -- C:\Program Files\Freemake
O43 - CFD: 18/11/2015 - [] D -- C:\Program Files\FreeSoftToday =>PUP.Optional.FreeSoftToday
O43 - CFD: 12/08/2014 - [] D -- C:\Program Files\fst_it_231
O43 - CFD: 28/10/2013 - [] D -- C:\Program Files\FTDownloader.com =>PUP.Optional.Downware
O43 - CFD: 31/01/2014 - [0] D -- C:\Program Files\ggReaitsoaVoerr =>PUP.Optional.Multiplug
O43 - CFD: 29/09/2015 - [] D -- C:\Program Files\globalUpdate =>PUP.Optional.GlobalUpdate
O43 - CFD: 11/08/2014 - [] D -- C:\Program Files\Google
O43 - CFD: 28/10/2013 - [] D -- C:\Program Files\Gophoto.it =>PUP.Optional.GophotoIt
O43 - CFD: 02/12/2015 - [] HD -- C:\Program Files\InstallShield Installation Information
O43 - CFD: 07/10/2013 - [] D -- C:\Program Files\Intel
O43 - CFD: 02/02/2014 - [] D -- C:\Program Files\Intelore
O43 - CFD: 02/11/2013 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 02/11/2013 - [] D -- C:\Program Files\IObit
O43 - CFD: 17/09/2014 - [] D -- C:\Program Files\iPod
O43 - CFD: 17/09/2014 - [] D -- C:\Program Files\iTunes
O43 - CFD: 23/08/2014 - [] D -- C:\Program Files\Java
O43 - CFD: 25/11/2015 - [] D -- C:\Program Files\LifePosterMaker
O43 - CFD: 12/08/2014 - [] D -- C:\Program Files\Logitech
O43 - CFD: 06/10/2013 - [] D -- C:\Program Files\Mail.Ru
O43 - CFD: 01/11/2013 - [] D -- C:\Program Files\MarkAny
O43 - CFD: 09/10/2013 - [] D -- C:\Program Files\Microsoft Analysis Services
O43 - CFD: 13/06/2009 - [] D -- C:\Program Files\Microsoft Games
O43 - CFD: 02/11/2013 - [] D -- C:\Program Files\Microsoft Office
O43 - CFD: 18/09/2015 - [] D -- C:\Program Files\Microsoft Silverlight
O43 - CFD: 09/10/2013 - [] D -- C:\Program Files\Microsoft SQL Server Compact Edition
O43 - CFD: 09/10/2013 - [] D -- C:\Program Files\Microsoft Sync Framework
O43 - CFD: 09/10/2013 - [] D -- C:\Program Files\Microsoft Synchronization Services
O43 - CFD: 09/10/2013 - [] D -- C:\Program Files\Microsoft Visual Studio 8
O43 - CFD: 21/10/2013 - [] D -- C:\Program Files\Microsoft.NET
O43 - CFD: 02/11/2013 - [] D -- C:\Program Files\Minibar =>PUP.Optional.Minibar
O43 - CFD: 03/03/2014 - [] D -- C:\Program Files\MiniTool Partition Wizard Home Edition 8.0
O43 - CFD: 12/10/2015 - [0] D -- C:\Program Files\Mio
O43 - CFD: 12/08/2014 - [] D -- C:\Program Files\Mobogenie =>PUP.Optional.Mobogenie
O43 - CFD: 09/10/2013 - [] D -- C:\Program Files\MSBuild
O43 - CFD: 30/09/2015 - [] D -- C:\Program Files\Multi WIFI Hack
O43 - CFD: 24/08/2014 - [0] D -- C:\Program Files\MyFree Codec
O43 - CFD: 13/10/2013 - [] D -- C:\Program Files\MyPC Backup =>PUP.Optional.MyPCBackup
O43 - CFD: 21/02/2014 - [] D -- C:\Program Files\Nero
O43 - CFD: 13/10/2013 - [] D -- C:\Program Files\Nosibay =>PUP.Optional.SPointer
O43 - CFD: 15/09/2015 - [] D -- C:\Program Files\Object Browser =>PUP.Optional.ObjectBrowser
O43 - CFD: 11/03/2014 - [] D -- C:\Program Files\Opera
O43 - CFD: 02/11/2013 - [0] D -- C:\Program Files\Optimizer Pro =>PUP.Optional.OptimizerPro
O43 - CFD: 01/10/2015 - [] D -- C:\Program Files\Oracle
O43 - CFD: 10/10/2013 - [] D -- C:\Program Files\Photodex
O43 - CFD: 27/08/2014 - [] D -- C:\Program Files\Photodex Presenter
O43 - CFD: 18/09/2015 - [] D -- C:\Program Files\PhraseProfessor_1.10.0.24 =>PUP.Optional.Generic
O43 - CFD: 15/09/2015 - [] D -- C:\Program Files\Plus-HD-2.5iV15.09 =>PUP.Optional.CrossRider
O43 - CFD: 07/10/2015 - [] D -- C:\Program Files\PowerISO
O43 - CFD: 29/09/2015 - [0] D -- C:\Program Files\predm =>PUP.Optional.Downware
O43 - CFD: 21/10/2013 - [0] D -- C:\Program Files\qualitink =>PUP.Optional.Qualitink
O43 - CFD: 17/11/2015 - [] D -- C:\Program Files\QuickTime
O43 - CFD: 18/11/2015 - [] D -- C:\Program Files\rec_it_101
O43 - CFD: 29/09/2015 - [] D -- C:\Program Files\rec_it_70
O43 - CFD: 13/06/2009 - [] D -- C:\Program Files\Reference Assemblies
O43 - CFD: 01/11/2013 - [] D -- C:\Program Files\Samsung
O43 - CFD: 25/08/2014 - [] D -- C:\Program Files\SearchProtect =>PUP.Optional.SearchProtect
O43 - CFD: 02/11/2013 - [] D -- C:\Program Files\Secure Speed Dial =>PUP.Optional.SpeedDial
O43 - CFD: 31/01/2014 - [0] D -- C:\Program Files\SNT
O43 - CFD: 03/11/2015 - [] D -- C:\Program Files\Supercopier
O43 - CFD: 24/08/2014 - [] D -- C:\Program Files\SupTab =>PUP.Optional.SupTab
O43 - CFD: 08/12/2013 - [0] D -- C:\Program Files\TornTV.com =>PUP.Optional.TornTV
O43 - CFD: 13/06/2009 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 13/10/2013 - [] D -- C:\Program Files\Uninstaller =>PUP.Optional.Generic
O43 - CFD: 15/09/2014 - [] D -- C:\Program Files\VS Revo Group
O43 - CFD: 29/09/2015 - [] D -- C:\Program Files\Vuze
O43 - CFD: 14/11/2013 - [] D -- C:\Program Files\Wajam =>PUP.Optional.Wajam
O43 - CFD: 13/06/2009 - [] D -- C:\Program Files\Windows Defender
O43 - CFD: 13/06/2009 - [] D -- C:\Program Files\Windows Journal
O43 - CFD: 13/06/2009 - [] D -- C:\Program Files\Windows Mail
O43 - CFD: 13/06/2009 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 06/10/2013 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 13/06/2009 - [] D -- C:\Program Files\Windows Photo Viewer
O43 - CFD: 13/06/2009 - [] D -- C:\Program Files\Windows Portable Devices
O43 - CFD: 13/06/2009 - [] D -- C:\Program Files\Windows Sidebar
O43 - CFD: 21/06/2009 - [] D -- C:\Program Files\Windows Virtual PC
O43 - CFD: 27/08/2014 - [] D -- C:\Program Files\WinRAR
O43 - CFD: 02/11/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 05/03/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ace Translator
O43 - CFD: 06/10/2013 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 14/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Alice Mobile Olicard 100
O43 - CFD: 25/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft Connect
O43 - CFD: 25/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft MediaImpression 2
O43 - CFD: 25/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft Panorama Maker 4
O43 - CFD: 25/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft PhotoStudio Darkroom 2
O43 - CFD: 25/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft Print Creations
O43 - CFD: 25/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft Scan-n-Stitch Deluxe
O43 - CFD: 25/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft Video Downloader
O43 - CFD: 02/11/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
O43 - CFD: 29/09/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
O43 - CFD: 08/02/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Babylon =>PUP.Optional.Babylon
O43 - CFD: 06/10/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverTuner =>PUP.Optional.DriverTuner
O43 - CFD: 13/10/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
O43 - CFD: 06/10/2013 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 16/08/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 28/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter
O43 - CFD: 17/09/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
O43 - CFD: 23/08/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 12/11/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
O43 - CFD: 02/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Life Poster Maker
O43 - CFD: 12/08/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
O43 - CFD: 13/06/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 09/10/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 16/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 30/10/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiniTool Partition Wizard Home Edition 8.0
O43 - CFD: 21/11/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
O43 - CFD: 01/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
O43 - CFD: 07/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO
O43 - CFD: 10/10/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ProShow Gold
O43 - CFD: 17/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
O43 - CFD: 02/02/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RAR Password Recovery
O43 - CFD: 01/11/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
O43 - CFD: 09/10/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
O43 - CFD: 13/06/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 13/06/2009 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 06/10/2013 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Virtual PC
O43 - CFD: 06/10/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 26/02/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZipper =>.Superfluous.WinZipper
O43 - CFD: 17/09/2014 - [] D -- C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
O43 - CFD: 01/02/2014 - [] D -- C:\ProgramData\6f30f8f171207b14
O43 - CFD: 01/10/2015 - [] D -- C:\ProgramData\7c0535b143fc4671b6ebd202fbffe066
O43 - CFD: 27/08/2014 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 14/09/2015 - [] D -- C:\ProgramData\Alice Mobile Olicard 100
O43 - CFD: 06/10/2013 - [] D -- C:\ProgramData\Alwil Software
O43 - CFD: 17/09/2014 - [] D -- C:\ProgramData\Apple
O43 - CFD: 13/10/2013 - [] D -- C:\ProgramData\Apple Computer
O43 - CFD: 13/06/2009 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 04/12/2015 - [] HD -- C:\ProgramData\ArcSoft
O43 - CFD: 02/11/2013 - [] D -- C:\ProgramData\Autodesk
O43 - CFD: 29/09/2014 - [] D -- C:\ProgramData\AVAST Software
O43 - CFD: 16/12/2015 - [] D -- C:\ProgramData\Babylon =>PUP.Optional.Babylon
O43 - CFD: 06/10/2013 - [0] SHD -- C:\ProgramData\Dati applicazioni
O43 - CFD: 13/06/2009 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 06/10/2013 - [0] SHD -- C:\ProgramData\Documenti
O43 - CFD: 13/06/2009 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 07/01/2014 - [] D -- C:\ProgramData\eSafe =>PUP.Optional.eSafeSecurity
O43 - CFD: 13/06/2009 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 10/10/2013 - [] D -- C:\ProgramData\FLEXnet
O43 - CFD: 24/08/2014 - [] D -- C:\ProgramData\ggReaitsoaVoerr =>PUP.Optional.Multiplug
O43 - CFD: 28/10/2013 - [] D -- C:\ProgramData\IBUpdaterService =>PUP.Optional.InstallBrain
O43 - CFD: 24/08/2014 - [] D -- C:\ProgramData\IePluginService =>Trojan.SProtector
O43 - CFD: 01/02/2014 - [0] D -- C:\ProgramData\Informer Technologies, Inc
O43 - CFD: 24/08/2014 - [] D -- C:\ProgramData\InstallMate =>PUP.Optional.Tarma
O43 - CFD: 23/10/2013 - [] D -- C:\ProgramData\IObit
O43 - CFD: 12/08/2014 - [] D -- C:\ProgramData\Logishrd
O43 - CFD: 06/10/2013 - [0] SHD -- C:\ProgramData\Menu Avvio
O43 - CFD: 30/09/2015 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 16/12/2015 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 06/10/2013 - [0] SHD -- C:\ProgramData\Modelli
O43 - CFD: 23/08/2014 - [0] D -- C:\ProgramData\Oracle
O43 - CFD: 06/10/2013 - [0] SHD -- C:\ProgramData\Preferiti
O43 - CFD: 24/08/2014 - [] D -- C:\ProgramData\Premium
O43 - CFD: 25/08/2014 - [] D -- C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 30/10/2013 - [] D -- C:\ProgramData\Samsung
O43 - CFD: 01/10/2015 - [0] D -- C:\ProgramData\Service7609
O43 - CFD: 31/01/2014 - [] D -- C:\ProgramData\SetApp
O43 - CFD: 01/02/2014 - [] D -- C:\ProgramData\SNT
O43 - CFD: 13/06/2009 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 02/11/2013 - [] D -- C:\ProgramData\Sun
O43 - CFD: 03/11/2015 - [0] D -- C:\ProgramData\TamoSoft
O43 - CFD: 02/02/2014 - [0] AD -- C:\ProgramData\TEMP
O43 - CFD: 13/06/2009 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 27/09/2015 - [] D -- C:\ProgramData\VMware
O43 - CFD: 12/08/2014 - [] D -- C:\ProgramData\WPM =>PUP.Optional.WpManager
O43 - CFD: 23/10/2013 - [0] D -- C:\ProgramData\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A}
O43 - CFD: 27/08/2014 - [] D -- C:\Program Files\Common Files\Adobe
O43 - CFD: 21/11/2013 - [] D -- C:\Program Files\Common Files\Ahead
O43 - CFD: 17/09/2014 - [] D -- C:\Program Files\Common Files\Apple
O43 - CFD: 25/11/2015 - [] D -- C:\Program Files\Common Files\ArcSoft
O43 - CFD: 02/11/2013 - [] D -- C:\Program Files\Common Files\Autodesk Shared
O43 - CFD: 16/09/2015 - [] D -- C:\Program Files\Common Files\AV
O43 - CFD: 11/08/2014 - [] D -- C:\Program Files\Common Files\DESIGNER
O43 - CFD: 13/10/2013 - [] D -- C:\Program Files\Common Files\DVDVideoSoft
O43 - CFD: 25/11/2015 - [] D -- C:\Program Files\Common Files\InstallShield
O43 - CFD: 23/08/2014 - [] D -- C:\Program Files\Common Files\Java
O43 - CFD: 12/08/2014 - [] D -- C:\Program Files\Common Files\LogiShrd
O43 - CFD: 02/11/2013 - [] D -- C:\Program Files\Common Files\Macrovision Shared
O43 - CFD: 02/11/2013 - [] D -- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 13/06/2009 - [] D -- C:\Program Files\Common Files\Services
O43 - CFD: 13/06/2009 - [] D -- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 16/10/2013 - [] D -- C:\Program Files\Common Files\System
O43 - CFD: 27/09/2015 - [] D -- C:\Program Files\Common Files\VMware
O43 - CFD: 08/02/2014 - [] D -- C:\Users\sofian\AppData\Roaming\Acapela Group
O43 - CFD: 27/08/2014 - [] D -- C:\Users\sofian\AppData\Roaming\Adobe
O43 - CFD: 21/11/2013 - [] D -- C:\Users\sofian\AppData\Roaming\Ahead
O43 - CFD: 23/10/2013 - [] D -- C:\Users\sofian\AppData\Roaming\Apple Computer
O43 - CFD: 04/12/2015 - [] D -- C:\Users\sofian\AppData\Roaming\ArcSoft
O43 - CFD: 02/11/2013 - [] D -- C:\Users\sofian\AppData\Roaming\Autodesk
O43 - CFD: 29/09/2014 - [] D -- C:\Users\sofian\AppData\Roaming\AVAST Software
O43 - CFD: 12/10/2015 - [] D -- C:\Users\sofian\AppData\Roaming\Azureus
O43 - CFD: 26/02/2014 - [] D -- C:\Users\sofian\AppData\Roaming\Babylon =>PUP.Optional.Babylon
O43 - CFD: 13/10/2013 - [] D -- C:\Users\sofian\AppData\Roaming\DealPly =>PUP.Optional.Dealply
O43 - CFD: 12/08/2014 - [] D -- C:\Users\sofian\AppData\Roaming\Dropbox
O43 - CFD: 13/12/2013 - [] D -- C:\Users\sofian\AppData\Roaming\DVDVideoSoft
O43 - CFD: 13/10/2013 - [] D -- C:\Users\sofian\AppData\Roaming\DVDVideoSoftIEHelpers
O43 - CFD: 05/03/2014 - [] D -- C:\Users\sofian\AppData\Roaming\ExpressFiles =>PUP.Optional.ExpressFiles
O43 - CFD: 06/10/2013 - [] D -- C:\Users\sofian\AppData\Roaming\Identities
O43 - CFD: 14/09/2015 - [] D -- C:\Users\sofian\AppData\Roaming\InstallShield
O43 - CFD: 24/10/2013 - [] D -- C:\Users\sofian\AppData\Roaming\IObit
O43 - CFD: 07/10/2013 - [] D -- C:\Users\sofian\AppData\Roaming\Leadertech
O43 - CFD: 07/10/2013 - [] D -- C:\Users\sofian\AppData\Roaming\Logishrd
O43 - CFD: 07/10/2013 - [] D -- C:\Users\sofian\AppData\Roaming\Logitech
O43 - CFD: 06/10/2013 - [] D -- C:\Users\sofian\AppData\Roaming\Macromedia
O43 - CFD: 13/06/2009 - [0] D -- C:\Users\sofian\AppData\Roaming\Media Center Programs
O43 - CFD: 25/11/2015 - [] SD -- C:\Users\sofian\AppData\Roaming\Microsoft
O43 - CFD: 28/10/2013 - [] D -- C:\Users\sofian\AppData\Roaming\Mozilla
O43 - CFD: 10/10/2013 - [] D -- C:\Users\sofian\AppData\Roaming\Netscape
O43 - CFD: 21/02/2014 - [] D -- C:\Users\sofian\AppData\Roaming\newnext.me =>PUP.Optional.NextLive
O43 - CFD: 13/10/2013 - [] D -- C:\Users\sofian\AppData\Roaming\Nosibay =>PUP.Optional.BubbleDock
O43 - CFD: 12/01/2014 - [] D -- C:\Users\sofian\AppData\Roaming\OpenCandy =>PUP.Optional.OpenCandy
O43 - CFD: 19/10/2013 - [] D -- C:\Users\sofian\AppData\Roaming\Opera Software
O43 - CFD: 10/10/2013 - [] D -- C:\Users\sofian\AppData\Roaming\Photodex
O43 - CFD: 01/11/2013 - [] D -- C:\Users\sofian\AppData\Roaming\Samsung
O43 - CFD: 28/10/2013 - [] D -- C:\Users\sofian\AppData\Roaming\SpeedTestAnalysis =>PUP.Optional.ScriptHost
O43 - CFD: 26/02/2014 - [] D -- C:\Users\sofian\AppData\Roaming\SupTab =>PUP.Optional.SupTab
O43 - CFD: 13/10/2014 - [0] D -- C:\Users\sofian\AppData\Roaming\Systweak =>PUP.Optional.Systweak
O43 - CFD: 13/12/2013 - [0] D -- C:\Users\sofian\AppData\Roaming\uTorrent
O43 - CFD: 24/08/2014 - [] D -- C:\Users\sofian\AppData\Roaming\VOPackage =>PUP.Optional.Downware
O43 - CFD: 06/10/2013 - [] D -- C:\Users\sofian\AppData\Roaming\WinRAR
O43 - CFD: 01/03/2014 - [] D -- C:\Users\sofian\AppData\Roaming\WinZipper =>.Superfluous.WinZipper
O43 - CFD: 16/12/2015 - [] D -- C:\Users\sofian\AppData\Roaming\ZHP
O43 - CFD: 29/09/2015 - [] D -- C:\Users\sofian\AppData\Local\Adobe
O43 - CFD: 15/09/2015 - [] D -- C:\Users\sofian\AppData\Local\Apple
O43 - CFD: 15/09/2015 - [] D -- C:\Users\sofian\AppData\Local\Apple Computer
O43 - CFD: 07/10/2015 - [] D -- C:\Users\sofian\AppData\Local\Apps
O43 - CFD: 25/11/2015 - [] D -- C:\Users\sofian\AppData\Local\ArcSoft
O43 - CFD: 04/11/2015 - [] D -- C:\Users\sofian\AppData\Local\Babylon =>PUP.Optional.Babylon
O43 - CFD: 06/11/2015 - [] D -- C:\Users\sofian\AppData\Local\BoBrowser =>PUP.Optional.BoBrowser
O43 - CFD: 16/12/2015 - [] D -- C:\Users\sofian\AppData\Local\CrashDumps
O43 - CFD: 15/09/2015 - [0] D -- C:\Users\sofian\AppData\Local\DriverTuner =>PUP.Optional.DriverTuner
O43 - CFD: 28/09/2015 - [] D -- C:\Users\sofian\AppData\Local\freeSOFTtoday =>PUP.Optional.FreeSoftToday
O43 - CFD: 16/12/2015 - [] D -- C:\Users\sofian\AppData\Local\fst_it_231
O43 - CFD: 15/09/2015 - [] D -- C:\Users\sofian\AppData\Local\gmsd_us_005010074
O43 - CFD: 29/09/2015 - [] D -- C:\Users\sofian\AppData\Local\Google
O43 - CFD: 25/11/2015 - [] D -- C:\Users\sofian\AppData\Local\Microsoft
O43 - CFD: 18/09/2015 - [] D -- C:\Users\sofian\AppData\Local\MiTAC_International_Corpo
O43 - CFD: 30/09/2015 - [] D -- C:\Users\sofian\AppData\Local\Opera Software
O43 - CFD: 15/09/2015 - [] D -- C:\Users\sofian\AppData\Local\Programs
O43 - CFD: 18/11/2015 - [] D -- C:\Users\sofian\AppData\Local\rec_it_101
O43 - CFD: 16/12/2015 - [] D -- C:\Users\sofian\AppData\Local\Temp
O43 - CFD: 15/09/2015 - [] D -- C:\Users\sofian\AppData\Local\VirtualStore
O43 - CFD: 15/09/2015 - [] D -- C:\Users\sofian\AppData\Local\WebPlayer
O43 - CFD: 02/12/2015 - [] D -- C:\Users\sofian\AppData\Local\{BF73892F-9BDB-E597-F643-C07FD22B3CE7}
O43 - CFD: 13/06/2009 - [] RD -- C:\Users\sofian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 02/12/2015 - [] RD -- C:\Users\sofian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 15/09/2015 - [] D -- C:\Users\sofian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BoBrowser =>PUP.Optional.BoBrowser
O43 - CFD: 15/01/2014 - [] D -- C:\Users\sofian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FLV Player
O43 - CFD: 13/06/2009 - [] RD -- C:\Users\sofian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 21/11/2013 - [] D -- C:\Users\sofian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nero
O43 - CFD: 15/09/2014 - [] D -- C:\Users\sofian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
O43 - CFD: 02/12/2015 - [] RD -- C:\Users\sofian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 03/11/2015 - [] D -- C:\Users\sofian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Supercopier
O43 - CFD: 12/08/2014 - [] D -- C:\Users\sofian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage =>PUP.Optional.Downware
O43 - CFD: 07/10/2015 - [] D -- C:\Users\sofian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool
O43 - CFD: 06/10/2013 - [] D -- C:\Users\sofian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

---\\ File più recenti creati in Prefetcher (4) - 21s
O45 - LFCP:[MD5.A6256F76F3DDFAB193801841F57BAEB2] 16/12/2015 A -- C:\Windows\Prefetch\BOBROWSER.EXE-51E2813D.pf =>PUP.Optional.BoBrowser
O45 - LFCP:[MD5.CAB1F28C6A1D1766C44DFB5257827C4D] 16/12/2015 A -- C:\Windows\Prefetch\OBJECT BROWSER-CHROMEINSTALLE-96DCAD09.pf =>PUP.Optional.ObjectBrowser
O45 - LFCP:[MD5.E035311216068875EAB95292A7218E2A] 16/12/2015 A -- C:\Windows\Prefetch\OBJECT BROWSER-CODEDOWNLOADER-78CAC4AF.pf =>PUP.Optional.ObjectBrowser
O45 - LFCP:[MD5.8230288D5C06A734E17DBD4B768E2529] 16/12/2015 A -- C:\Windows\Prefetch\OBJECT BROWSER-FIREFOXINSTALL-0D0FBF2A.pf =>PUP.Optional.ObjectBrowser

---\\ ShellIconOverlayIdentifiers (SIOI) (10) - 1s
O106 - SIOI: AcSignIcon [AutoCAD Digital Signatures Icon Overlay Handler] - {36A21736-36C2-4C11-8ACB-D4136F2B57BD}. (.Autodesk - AcSignIcon Module.) -- C:\Windows\System32\AcSignIcon.dll {210FC8B567A8689FA236FD5E26915622} ©
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL di estensione della shell per Archiviaz.) -- C:\Windows\System32\EhStorShell.dll ©
O106 - SIOI: Groove Explorer Icon Overlay 1 (GFS Unread Stub) [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] - {99FD978C-D287-4F50-827F-B2C658EDA8E7}. (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 2 (GFS Stub) [Groove Explorer Icon Overlay 2 (GFS Stub)] - {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC}. (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] - {920E6DB1-9907-4370-B3A0-BAFC03D81399}. (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 3 (GFS Folder) [Groove Explorer Icon Overlay 3 (GFS Folder)] - {16F3DD56-1AF5-4347-846D-7C10C4192619}. (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 4 (GFS Unread Mark) [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] - {2916C86E-86A6-43FE-8112-43ABE6BF8DCC}. (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: NBHShellExt Class [NBHShellExt] - {8D2223A2-B3C6-4e32-B096-CDD11F628C60}. (.Nero AG - InCD.) -- C:\Program Files\Nero\Tools\InCD\NBHshx.dll =>.Nero AG®
O106 - SIOI: [Offline Files] - {4E77131D-3629-431c-9818-C5679DC83E81}. (.Microsoft Corporation - Interfaccia della cache sul lato client.) -- C:\Windows\System32\cscui.dll ©
O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Estensioni shell per la condivisione.) -- C:\Windows\System32\ntshrui.dll ©

---\\ Elenco dei driver del sistema (110) - 28s
O58 - SDL:2009/06/13 09:02:31 A . (.Мιčřόśбƒŧ Čǿŕφбґάţįøή - 1394 ÖрēлΉÇÎ Đřϊνėŕ.) -- C:\Windows\System32\drivers\1394ohci.sys [163328]
O58 - SDL:2009/06/13 10:29:11 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [422976] =>.Microsoft Windows®
O58 - SDL:2009/06/13 10:29:08 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [297552] =>.Microsoft Windows®
O58 - SDL:2009/06/13 10:29:02 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\System32\drivers\adpu320.sys [146496] =>.Microsoft Windows®
O58 - SDL:2006/11/10 15:05:00 A . (.Arcsoft, Inc. - Arcsoft(R) ASPI Shell.) -- C:\Windows\System32\drivers\afc.sys [18688] {45E771AF8D2D0458FEF731A3952FE298} ©
O58 - SDL:2009/06/13 10:28:45 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [14416] =>.Microsoft Windows®
O58 - SDL:2009/06/13 08:22:19 A . (.Мìćřøšθƒτ Čòґφоřαťïöñ - Рѓσčéŝśòґ Ðěνі¢ё Ðґίνèя.) -- C:\Windows\System32\drivers\amdk8.sys [55296]
O58 - SDL:2009/06/13 08:22:19 A . (.Мĩςяøśŏƒţ Сōярōŕаτïôп - Рѓσĉėş§ōř Ďёνί¢ě Ðгîνеґ.) -- C:\Windows\System32\drivers\amdppm.sys [52736]
O58 - SDL:2009/06/13 10:28:55 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [79952] =>.Microsoft Windows®
O58 - SDL:2009/06/13 10:29:02 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [159296] =>.Microsoft Windows®
O58 - SDL:2009/06/13 10:28:45 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [23616] =>.Microsoft Windows®
O58 - SDL:2009/06/13 10:28:53 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [76368] =>.Microsoft Windows®
O58 - SDL:2009/06/13 10:28:58 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [86608] =>.Microsoft Windows®
O58 - SDL:2009/03/17 04:33:54 A . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\System32\drivers\atikmdag.sys [4361216] ©
O58 - SDL:2013/05/23 12:26:40 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60x.sys [404176] =>.Broadcom Corporation®
O58 - SDL:2009/06/13 08:04:26 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [13568] ©
O58 - SDL:2009/06/13 08:04:26 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [5248] ©
O58 - SDL:2009/06/13 10:02:20 A . (.Brother Industries Ltd. - Driver I/F seriale Brother (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [272128] ©
O58 - SDL:2009/06/13 08:04:28 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [62336] ©
O58 - SDL:2009/06/13 08:04:29 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [12160] ©
O58 - SDL:2009/06/13 08:04:29 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [11904] ©
O58 - SDL:2009/06/13 09:02:20 A . (.Мį¢ŕǿѕσƒт Сòŕρōŕªτįǿп - Ъℓцěŧóбťђ Ρēѓŝôпªŀ Аѓěā Пεŧшöгќĭⁿĝ.) -- C:\Windows\System32\drivers\bthpan.sys [93696]
O58 - SDL:2009/06/13 07:14:31 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbdx.sys [430080] ©
O58 - SDL:2013/11/02 14:48:30 A . (.Macrovision Europe Ltd - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\CDAC15BA.SYS [12464]
O58 - SDL:2009/06/13 10:28:45 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [15936] =>.Microsoft Windows®
O58 - SDL:2009/06/13 10:25:44 A . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\System32\drivers\djsvs.sys [70720] =>.Microsoft Windows®
O58 - SDL:2009/06/13 10:25:58 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [453696] =>.Microsoft Windows®
O58 - SDL:2009/06/13 07:14:31 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbdx.sys [3100160] ©
O58 - SDL:2012/08/21 12:01:22 A . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\System32\drivers\GEARAspiWDM.sys [26840] =>.GEAR Software Inc.®
O58 - SDL:2001/12/04 10:03:20 A . (.Gemplus - Smart Card Reader Driver.) -- C:\Windows\System32\drivers\gemusb.sys [53568] ©
O58 - SDL:2009/06/13 08:05:11 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [26624] ©
O58 - SDL:2009/06/13 09:01:33 A . (.Μįćяō§σƒτ Ćόŕþŏѓάŧĭθή - Нϊģĥ Ďεƒīиϊτĭōņ Ǻùδĭŏ ßύś Đřîνëг.) -- C:\Windows\System32\drivers\hdaudbus.sys [108544]
O58 - SDL:2009/06/13 10:25:44 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [67136] =>.Microsoft Windows®
O58 - SDL:2009/06/13 10:25:58 A . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\System32\drivers\iaStorV.sys [332352] =>.Microsoft Windows®
O58 - SDL:2009/06/13 10:25:40 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [41040] =>.Microsoft Windows®
O58 - SDL:2003/03/29 16:45:18 A . (.Ahead Software AG and its licensors - NERO IMAGEDRIVE SCSI miniport.) -- C:\Windows\System32\drivers\imagedrv.sys [89184]
O58 - SDL:2009/10/16 10:43:04 A . (.Nero AG - InCD File System Driver.) -- C:\Windows\System32\drivers\InCDFs.sys [130200] =>.Nero AG®
O58 - SDL:2009/10/16 10:42:50 A . (.Nero AG - Nero InCD RW Filter Driver.) -- C:\Windows\System32\drivers\InCDPass.sys [48280] =>.Nero AG®
O58 - SDL:2009/10/16 10:42:58 A . (.Nero AG - Nero InCD File System Recognizer.) -- C:\Windows\System32\drivers\InCDRec.sys [19096] =>.Nero AG®
O58 - SDL:2009/06/13 08:22:19 A . (.Мϊ¢řó§όƒŧ Ċòŗþбŗąťīбη - Þŗǿç秧бř Đėνїçĕ Ðřіνзг.) -- C:\Windows\System32\drivers\intelppm.sys [53760]
O58 - SDL:2009/06/13 09:05:01 A . (.Μĭсѓőŝøƒт €οяφǿŕăтįòň - ÍÞ ∏ёŧωøřк Ǻďδяέš§ Тяāňśĺāţσŗ.) -- C:\Windows\System32\drivers\ipnat.sys [101888]
O58 - SDL:2011/09/02 07:31:20 A . (.Logitech, Inc. - Logitech HID Filter Driver..) -- C:\Windows\System32\drivers\LHidFilt.Sys [41240] {1EF05F3F3C037D743941DB75D7FB8637} ©
O58 - SDL:2011/09/02 07:31:28 A . (.Logitech, Inc. - Logitech Mouse Filter Driver..) -- C:\Windows\System32\drivers\LMouFilt.Sys [39192] {1EF05F3F3C037D743941DB75D7FB8637} ©
O58 - SDL:2014/09/15 14:30:08 A . (.Logitech, Inc. - Logitech Non-Plug and Play Driver..) -- C:\Windows\System32\drivers\LNonPnP.sys [16400] =>.Logitech®
O58 - SDL:2009/06/13 10:25:52 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [95808] =>.Microsoft Windows®
O58 - SDL:2009/06/13 10:25:47 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [89152] =>.Microsoft Windows®
O58 - SDL:2009/06/13 10:25:44 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [54864] =>.Microsoft Windows®
O58 - SDL:2009/06/13 10:25:50 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [96832] =>.Microsoft Windows®
O58 - SDL:2011/09/02 07:31:28 A . (.Logitech, Inc. - Logitech USB Filter Driver..) -- C:\Windows\System32\drivers\LUsbFilt.sys [30360] {1EF05F3F3C037D743941DB75D7FB8637} ©
O58 - SDL:2009/06/13 10:25:38 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [30800] =>.Microsoft Windows®
O58 - SDL:2009/06/13 10:25:57 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [235584] =>.Microsoft Windows®
O58 - SDL:2009/06/13 10:25:38 A . (.Μíĉŗöşθƒт Сŏřρǿřãŧĭοй - Šŷ§τĕм Мăⁿåġėмейť βІΟŚ Đřίνēř.) -- C:\Windows\System32\drivers\mssmbios.sys [28240] =>.Microsoft Windows®
O58 - SDL:2009/06/13 07:14:36 A . (.Ralink Technology Corp. - Ralink 802.11n Wireless Adapter Driver.) -- C:\Windows\System32\drivers\netr28u.sys [657408] ©
O58 - SDL:2009/06/13 10:25:39 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [44624] =>.Microsoft Windows®
O58 - SDL:2009/06/13 10:25:51 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [117312] =>.Microsoft Windows®
O58 - SDL:2009/06/13 10:25:53 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [142400] =>.Microsoft Windows®
O58 - SDL:2009/06/13 09:02:04 A . (.Μΐćřőśōƒţ Čöřþôřąŧϊôπ - 1394 ŎрęŋΉĆĪ Рöřт Ðѓíνэѓ.) -- C:\Windows\System32\drivers\ohci1394.sys [62464]
O58 - SDL:2009/03/26 07:11:15 A . (.Olivetti - USB Modem/Serial Device Driver.) -- C:\Windows\System32\drivers\pmx3gmdm.sys [103552] ©
O58 - SDL:2009/03/26 07:11:15 A . (.Olivetti - USB NDIS Miniport Driver.) -- C:\Windows\System32\drivers\pmx3gnet.sys [116736] ©
O58 - SDL:2009/06/13 09:01:40 A . (.Μϊсяθşóƒţ Ċōřφθѓąŧīòη - Ρǿяţ Ćļá§ѕ (Çľαѕŝ Ðґîνëř ƒōг Ρöґť/Μїήĭρõгτ.) -- C:\Windows\System32\drivers\portcls.sys [177152]
O58 - SDL:2015/09/02 21:10:16 A . (.PhraseProfessor - PP TDI Driver x86.) -- C:\Windows\System32\drivers\ppfd_vt_1_10_0_24.sys [56464] {11212ECCBE8A08CD220DFDB8DF22D0081744} =>PUP.Optional.Generic
O58 - SDL:2015/09/02 21:10:18 A . (.PhraseProfessor - PP WFP Driver x86.) -- C:\Windows\System32\drivers\ppfd_vw_1_10_0_24.sys [48528] {11212ECCBE8A08CD220DFDB8DF22D0081744} =>PUP.Optional.Generic
O58 - SDL:2009/06/13 08:22:19 A . (.Мίčřóѕóƒţ Ćòгрόгăţїоή - Þřøçεѕśŏř Ďēνιçέ Ðґįνëŗ.) -- C:\Windows\System32\drivers\processr.sys [52224]
O58 - SDL:2009/06/13 10:22:14 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1383488] =>.Microsoft Windows®
O58 - SDL:2009/06/13 10:22:08 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [106048] =>.Microsoft Windows®
O58 - SDL:2009/06/13 09:04:45 A . (.Мĭçŕǿ§őƒţ Çóѓþőгάτĭοń - Řєmбтε ∏ĎĮЅ Μîʼnįρōŗţ.) -- C:\Windows\System32\drivers\RNDISMP.sys [33280]
O58 - SDL:2008/09/16 07:43:10 A . (.Realtek Semiconductor Corp. - Realtek AC'97 Audio Driver (WDM).) -- C:\Windows\System32\drivers\RTKVAC.SYS [4127648] =>.Realtek Semiconductor Corp®
O58 - SDL:2010/01/07 10:20:22 A . (.Realtek Semiconductor Corporation - Realtek RTL8187 NDIS Driver.) -- C:\Windows\System32\drivers\RTL8187.sys [375808] ©
O58 - SDL:2010/04/12 09:44:34 A . (.PowerISO Computing, Inc. - PowerISO Virtual Drive.) -- C:\Windows\System32\drivers\scdemu.sys [59388]
O58 - SDL:2009/06/13 10:22:11 A . (.Μϊčґōšσƒτ €óřрöѓãŧїōñ - ЅĈŞĨ Ρόяţ Ďŗίνзŕ.) -- C:\Windows\System32\drivers\scsiport.sys [140352] =>.Microsoft Windows®
O58 - SDL:2009/06/13 06:04:54 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [20480] ©
O58 - SDL:2009/06/13 10:22:04 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [40016] =>.Microsoft Windows®
O58 - SDL:2009/06/13 10:22:06 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [77904] =>.Microsoft Windows®
O58 - SDL:2009/06/13 08:26:21 A . (.Μΐćřοşόƒť Ċόярōяàтιőл - Ѕěŕνêŕ δѓįνéř.) -- C:\Windows\System32\drivers\srv.sys [309760]
O58 - SDL:2011/12/08 05:22:38 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ve.) -- C:\Windows\System32\drivers\ssudbus.sys [80184] =>.Samsung Electronics CO., LTD.®
O58 - SDL:2011/12/08 05:22:38 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG Android Modem Device Driver (MSS Ve.) -- C:\Windows\System32\drivers\ssudmdm.sys [181432] =>.Samsung Electronics CO., LTD.®
O58 - SDL:2011/12/08 05:22:38 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Mobile OBEX Device Driver (MSS.) -- C:\Windows\System32\drivers\ssudobex.sys [181432] =>.Samsung Electronics CO., LTD.®
O58 - SDL:2009/06/13 10:21:59 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [21072] =>.Microsoft Windows®
O58 - SDL:2014/04/01 09:04:47 A . (.TamoSoft - WiFi Capture Driver.) -- C:\Windows\System32\drivers\TsLwWfF.sys [25288] =>.TamoSoft Ltd®
O58 - SDL:2009/06/13 09:02:15 A . (.Μï¢ѓбŝōƒτ Ĉσяþσгατїôʼn - Ùѕēř-Моđē ßũś Эńџмĕгªтóŗ.) -- C:\Windows\System32\drivers\umbus.sys [39936]
O58 - SDL:2014/07/28 13:52:00 A . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\System32\drivers\usbaapl.sys [45056] ©
O58 - SDL:2009/06/13 09:02:45 A . (.Мї¢ŕŏşόƒτ Çôŗþθяαŧįòʼn - Ďĕƒäúļт Нūъ Ďřìνèг ƒθґ ÜŚЪ.) -- C:\Windows\System32\drivers\usbhub.sys [258560]
O58 - SDL:2015/09/08 10:56:50 A . (.Oracle Corporation - VirtualBox Support Driver.) -- C:\Windows\System32\drivers\VBoxDrv.sys [784696] =>.Oracle Corporation®
O58 - SDL:2015/09/08 10:56:26 A . (.Oracle Corporation - VirtualBox NDIS 6.0 Host-Only Network Adapt.) -- C:\Windows\System32\drivers\VBoxNetAdp6.sys [98704] =>.Oracle Corporation®
O58 - SDL:2015/09/08 10:56:26 A . (.Oracle Corporation - VirtualBox NDIS 6.0 Lightweight Filter Driv.) -- C:\Windows\System32\drivers\VBoxNetLwf.sys [118792] =>.Oracle Corporation®
O58 - SDL:2015/09/08 10:56:26 A . (.Oracle Corporation - VirtualBox USB Driver.) -- C:\Windows\System32\drivers\VBoxUSB.sys [102336] =>.Oracle Corporation®
O58 - SDL:2015/09/08 10:56:26 A . (.Oracle Corporation - VirtualBox USB Monitor Driver.) -- C:\Windows\System32\drivers\VBoxUSBMon.sys [112112] =>.Oracle Corporation®
O58 - SDL:2009/06/13 08:22:19 A . (.Μĩċяōšòƒţ Čбŕφοгªτĩøʼn - Þřōĉеśśог Ďēνїćê Ďяïνėŕ.) -- C:\Windows\System32\drivers\viac7.sys [52736]
O58 - SDL:2009/06/13 10:21:58 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [16976] =>.Microsoft Windows®
O58 - SDL:2009/06/13 10:22:12 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [141888] =>.Microsoft Windows®
O58 - SDL:2009/06/13 08:57:34 A . (.Μι¢řǿşøƒт €ǿяþσŕâŧίõή - Ŵдčθм Şèřїąļ Ρєπ ТâБļéт ĤΪÐ Ðřіνēя.) -- C:\Windows\System32\drivers\wacompen.sys [21632]
O58 - SDL:2014/10/13 07:03:42 A . (.StdLib - StdLib.) -- C:\Windows\System32\drivers\{e4a6645a-3f85-4e1f-aa41-8367978844db}Gw.sys [43200] {24BACA2B8A7487F0D275256D00BF7493} =>PUP.Optional.LinkiDoo
O58 - SDL:2014/10/15 12:42:22 A . (.StdLib - StdLib.) -- C:\Windows\System32\drivers\{e4a6645a-3f85-4e1f-aa41-8367978844db}w.sys [43200] {24BACA2B8A7487F0D275256D00BF7493} =>PUP.Optional.LinkiDoo
O58 - SDL:2009/06/13 06:53:32 A . (...) -- C:\Windows\System32\ANSI.SYS [9029]
O58 - SDL:2009/06/13 06:53:35 A . (...) -- C:\Windows\System32\country.sys [27097]
O58 - SDL:2009/06/13 06:53:31 A . (...) -- C:\Windows\System32\HIMEM.SYS [4768]
O58 - SDL:2009/06/13 06:53:34 A . (...) -- C:\Windows\System32\KEY01.SYS [42809]
O58 - SDL:2009/06/13 06:53:34 A . (...) -- C:\Windows\System32\KEYBOARD.SYS [42537]
O58 - SDL:2009/06/13 06:53:14 A . (...) -- C:\Windows\System32\NTDOS.SYS [27866]
O58 - SDL:2009/06/13 06:53:22 A . (...) -- C:\Windows\System32\NTDOS404.SYS [29146]
O58 - SDL:2009/06/13 06:53:26 A . (...) -- C:\Windows\System32\NTDOS411.SYS [29370]
O58 - SDL:2009/06/13 06:53:30 A . (...) -- C:\Windows\System32\NTDOS412.SYS [29274]
O58 - SDL:2009/06/13 06:53:19 A . (...) -- C:\Windows\System32\NTDOS804.SYS [29146]
O58 - SDL:2009/06/13 06:53:04 A . (...) -- C:\Windows\System32\NTIO.SYS [33952]
O58 - SDL:2009/06/13 06:53:07 A . (...) -- C:\Windows\System32\NTIO404.SYS [34672]
O58 - SDL:2009/06/13 06:53:08 A . (...) -- C:\Windows\System32\NTIO411.SYS [35776]
O58 - SDL:2009/06/13 06:53:10 A . (...) -- C:\Windows\System32\NTIO412.SYS [35536]
O58 - SDL:2009/06/13 06:53:05 A . (...) -- C:\Windows\System32\NTIO804.SYS [34672]
O58 - SDL:2013/07/01 10:25:04 N . (...) -- C:\Windows\System32\pwdrvio.sys [15576] =>.MiniTool Solution Ltd®
O58 - SDL:2013/07/01 10:25:02 N . (...) -- C:\Windows\System32\pwdspio.sys [10200] =>.MiniTool Solution Ltd®

---\\ Ultimi file modificati o creati (utente) (1) - 37s
O61 - LFC: 2015/12/16 22:17:41 A . (..) -- C:\Users\sofian\AppData\Local\BoBrowser\User Data\ev_hashes_whitelist.bin [674082] =>PUP.Optional.BoBrowser

---\\ Associazioni Shell Spawning (12) - 1s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe ©
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Utilità di avvio snap-in Visualizzatore eve.) -- C:\Windows\System32\eventvwr.exe ©
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe ©
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Editor del Registro di sistema.) -- C:\Windows\regedit.exe ©
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.The BoBrowser Authors - BoBrowser.) -- C:\Users\sofian\AppData\Local\BoBrowser\Application\bobrowser.exe {112123154E5E0FD1C6C84C77F8890B7472E0} =>PUP.Optional.BoBrowser
O67 - Shell Spawning: <.scr> [HKCU\..\open\Command] (.Microsoft Corporation - Blocco note.) -- C:\Windows\System32\notepad.exe ©

---\\ Menu Start Internet (12) - 1s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.The BoBrowser Authors - BoBrowser.) -- C:\Users\sofian\AppData\Local\BoBrowser\Application\bobrowser.exe =>PUP.Optional.BoBrowser
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files\Opera\Launcher.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.The BoBrowser Authors - BoBrowser.) -- C:\Users\sofian\AppData\Local\BoBrowser\Application\bobrowser.exe =>PUP.Optional.BoBrowser
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files\Opera\launcher.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.The BoBrowser Authors - BoBrowser.) -- C:\Users\sofian\AppData\Local\BoBrowser\Application\bobrowser.exe =>PUP.Optional.BoBrowser
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files\Opera\launcher.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.The BoBrowser Authors - BoBrowser.) -- C:\Users\sofian\AppData\Local\BoBrowser\Application\bobrowser.exe =>PUP.Optional.BoBrowser
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files\Opera\launcher.exe ©

---\\ Cerca infezione su browser internet (7) - 1s
O69 - SBI: SearchScopes [HKCU] {006ee092-9658-4fd6-bd8e-a21a348e59f5} - (Web Search) - http://feed.snapdo.com/ =>PUP.Optional.SmartBar
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {33BB0A4E-99AF-4226-BDF6-49120163DE86} - (delta-homes) - http://search.delta-homes.com/ =>PUP.Optional.Qvo6
O69 - SBI: SearchScopes [HKCU] {9CB96984-43C3-4D44-90EF-01466EFCF7BB} [DefaultScope] - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} - (WebSearch) - http://websearch.searchinweb.info/
O69 - SBI: SearchScopes [HKCU] {EEE6C360-6118-11DC-9C72-001320C79847} - (Sweetpacks) - http://mysearch.sweetpacks.com/ =>PUP.Optional.SweetIM
O69 - SBI: SearchScopes [HKCU] {FFEBBF0A-C22C-4172-89FF-45215A135AC7} - (Поиск@Mail.Ru) - http://go.mail.ru/

---\\ Enumera i file Crack e Keygen (2) - 40s
O82 - LFC: 2014/03/05 00:58:03 A . (...) -- C:\Users\sofian\Desktop\vari documenti\autodesk autocad 2014 keygen\xf-adsk32.7z [295057] =>.Crack,Keygen
O82 - LFC: 2014/03/05 00:58:03 A . (...) -- C:\Users\sofian\Desktop\vari documenti\autodesk autocad 2014 keygen\xf-adsk64.7z [310087] =>.Crack,Keygen

---\\ Enumera l''avvio del servizio Svchost (33) - 3s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Servizio verifica compatibilità applicazion.) -- C:\Windows\System32\aelupsvc.dll [62464] ©
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Servizio Propagazione certificati smart car.) -- C:\Windows\System32\certprop.dll [67584] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Servizio Propagazione certificati smart car.) -- C:\Windows\System32\certprop.dll [67584] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL di servizio server.) -- C:\Windows\System32\srvsvc.dll [168448] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client di Criteri di gruppo.) -- C:\Windows\System32\gpsvc.dll [590848] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Estensione IKE.) -- C:\Windows\System32\IKEEXT.DLL [667136] ©
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Servizio Audio di Windows.) -- C:\Windows\System32\audiosrv.dll [473088] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestione composizione automatica di accesso.) -- C:\Windows\System32\rasauto.dll [90624] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Connection Manager di Accesso remoto.) -- C:\Windows\System32\rasmans.dll [285184] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestione interfaccia dinamica.) -- C:\Windows\System32\mprdim.dll [75264] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Servizio di notifica eventi di sistema (SEN.) -- C:\Windows\System32\Sens.dll [49664] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Componenti helper NAT Microsoft.) -- C:\Windows\System32\ipnathlp.dll [300544] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Server di Telefonia Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll [241664] ©
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestione connessioni remote server Host ses.) -- C:\Windows\System32\termsrv.dll [543232] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agente di Windows Update.) -- C:\Windows\System32\wuaueng.dll [1911296] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Servizio trasferimento intelligente in back.) -- C:\Windows\System32\qmgr.dll [589312] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll di servizi shell di Windows.) -- C:\Windows\System32\shsvcs.dll [328192] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Servizio che offre connettività IPv6 su una.) -- C:\Windows\System32\iphlpsvc.dll [497152] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL del Servizio di accesso secondario.) -- C:\Windows\System32\seclogon.dll [21504] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Servizio Informazioni applicazioni.) -- C:\Windows\System32\appinfo.dll [46592] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Servizio di individuazione iSCSI.) -- C:\Windows\System32\iscsiexe.dll [114688] ©
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Servizio Utilità di pianificazione classi m.) -- C:\Windows\System32\mmcss.dll [49664] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Segnalazioni di problemi e soluzioni.) -- C:\Windows\System32\wercplsupport.dll [61440] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Servizio Microsoft EAPHost.) -- C:\Windows\System32\eapsvc.dll [98304] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [162816] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Servizio Utilità di pianificazione.) -- C:\Windows\System32\schedsvc.dll [743424] ©
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Servizio di gestione delle chiavi.) -- C:\Windows\System32\KMSVC.DLL [71168] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Servizio Configurazione Desktop remoto.) -- C:\Windows\System32\SessEnv.dll [99328] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [168960] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL servizio Browser di computer.) -- C:\Windows\System32\browser.dll [102400] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL servizio temi shell di Windows.) -- C:\Windows\System32\themeservice.dll [37376] ©
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Servizio BDE.) -- C:\Windows\System32\bdesvc.dll [76800] ©
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Servizio di installazione software.) -- C:\Windows\System32\appmgmts.dll [149504] ©

---\\ Elenco di eccezioni del firewall (18) - 6s
O87 - FAEL: "{6E4CEF58-DD74-4519-9AAC-10B6DCA64A82}" [In-None-P6-TRUE] .(...) -- C:\ProgramData\eSafe\eGdpSvc.exe (.not file.)
O87 - FAEL: "{36624CAE-D02F-4FF9-BA2B-13B710FB3F82}" [In-None-P6-TRUE] .(...) -- C:\Windows\System32\dmwu.exe (.not file.)
O87 - FAEL: "{9B200698-131F-4122-958C-8E93E7E90589}" [In-None-P17-TRUE] .(...) -- C:\Windows\System32\dmwu.exe (.not file.)
O87 - FAEL: "{B37C41D4-0577-48F8-9EC3-075892951315}" [In-None-P6-TRUE] .(...) -- C:\Windows\System32\ARFC\wrtc.exe (.not file.)
O87 - FAEL: "{F72E8B12-B0A3-49F8-B1E4-30514F183AC9}" [In-None-P17-TRUE] .(...) -- C:\Windows\System32\ARFC\wrtc.exe (.not file.)
O87 - FAEL: "TCP Query User{43453B55-6C90-411B-B172-F10518E27F0B}C:\program files\torntv.com\torntv.exe" [In-None-P6-TRUE] .(...) -- C:\program files\torntv.com\torntv.exe (.not file.) =>PUP.Optional.TornTV
O87 - FAEL: "UDP Query User{A31B728E-3B73-4097-B4D4-26F28F002A86}C:\program files\torntv.com\torntv.exe" [In-None-P17-TRUE] .(...) -- C:\program files\torntv.com\torntv.exe (.not file.) =>PUP.Optional.TornTV
O87 - FAEL: "{6257A675-ABD0-4881-A524-522621A90D29}" [In-None-P6-TRUE] .(...) -- C:\Users\sofian\AppData\Roaming\uTorrent\uTorrent.exe (.not file.)
O87 - FAEL: "{5F55D5A8-F3FC-4BFE-B005-6A14F6327FBF}" [In-None-P17-TRUE] .(...) -- C:\Users\sofian\AppData\Roaming\uTorrent\uTorrent.exe (.not file.)
O87 - FAEL: "TCP Query User{34EE5BF3-5700-479E-AF2A-F5B498A599CC}C:\program files\vuze\azureus.exe" [In-None-P6-TRUE] .(.Azureus Software, Inc - Vuze Launcher.) -- C:\program files\vuze\azureus.exe {373B392BBCBC58EB2F7EE0ADD6C26CC8}
O87 - FAEL: "UDP Query User{CC08D7DC-A0CC-4A8B-96EC-EE72FBB1345D}C:\program files\vuze\azureus.exe" [In-None-P17-TRUE] .(.Azureus Software, Inc - Vuze Launcher.) -- C:\program files\vuze\azureus.exe {373B392BBCBC58EB2F7EE0ADD6C26CC8}
O87 - FAEL: "{8C444BC4-CF14-45C9-BCF1-290BDDDF8CBE}" [In-None-P6-TRUE] .(.http://www.express-files.com/ - ExpressDL Application.) -- C:\Program Files\ExpressFiles\expressdl.exe {37B080A790663B8AF63D05448AD0343B} =>PUP.Optional.ExpressFiles
O87 - FAEL: "{B9C4AC76-CC25-4FCE-B819-DB15B0FCF335}" [In-None-P17-TRUE] .(.http://www.express-files.com/ - ExpressDL Application.) -- C:\Program Files\ExpressFiles\expressdl.exe {37B080A790663B8AF63D05448AD0343B} =>PUP.Optional.ExpressFiles
O87 - FAEL: "{A5D40E4D-0EE2-4A90-B8B9-7622F2EB20E8}" [In-None-P6-TRUE] .(.http://www.express-files.com/ - ExpressFiles Application.) -- C:\Program Files\ExpressFiles\ExpressFiles.exe =>PUP.Optional.ExpressFiles
O87 - FAEL: "{A67C9D24-337B-46C3-91C7-94B1A881E74F}" [In-None-P17-TRUE] .(.http://www.express-files.com/ - ExpressFiles Application.) -- C:\Program Files\ExpressFiles\ExpressFiles.exe =>PUP.Optional.ExpressFiles
O87 - FAEL: "{4E9D562E-1D38-49E2-8F82-F97DBB641F51}" [In-None-P17-TRUE] .(.The BoBrowser Authors - BoBrowser.) -- C:\Users\sofian\AppData\Local\BoBrowser\Application\bobrowser.exe {112123154E5E0FD1C6C84C77F8890B7472E0} =>PUP.Optional.BoBrowser
O87 - FAEL: "{029B969B-DE3A-4F78-A979-06720DA76FFF}" [In-None-P6-TRUE] .(.Azureus Software, Inc - Vuze Launcher.) -- C:\Program Files\Vuze\Azureus.exe {373B392BBCBC58EB2F7EE0ADD6C26CC8}
O87 - FAEL: "{FB3AA051-3345-47CB-BFCB-01E9A95F3430}" [In-None-P17-TRUE] .(.Azureus Software, Inc - Vuze Launcher.) -- C:\Program Files\Vuze\Azureus.exe {373B392BBCBC58EB2F7EE0ADD6C26CC8}

---\\ Servizi non Microsoft (GSR) (SR = esecuzione, SS = fermato) (17) - 144s

SR - Auto [18/03/2010] [ 113152] ArcSoft Connect Daemon (ACDaemon) . (.ArcSoft Inc..) - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe =>.ArcSoft, Inc.®
SR - Auto [28/10/2015] [ 82128] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
SS - Demand [18/11/2015] [ 269000] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SR - Auto [17/03/2009] [ 180224] (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exe ©
SR - Auto [28/08/2014] [ 43336] Apple Mobile Device (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe =>.Apple Inc.®
SR - Auto [30/08/2011] [ 390504] Servizio Bonjour (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.®
SR - Auto [02/11/2013] [ 54784] C-DillaCdaC11BA (C-DillaCdaC11BA) . (.Macrovision.) - C:\Windows\System32\drivers\CDAC11BA.EXE ©
SS - Demand [10/10/2013] [ 651720] FLEXnet Licensing Service (FLEXnet Licensing Service) . (.Macrovision Europe Ltd..) - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe ©
SR - Auto [15/09/2015] [ 144200] Servizio Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [15/09/2015] [ 144200] Servizio Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe =>.Google Inc®
SR - Auto [16/10/2009] [ 1420592] InCD Helper (InCDSrv) . (.Nero AG.) - C:\Program Files\Nero\Tools\InCD\InCDSrv.exe =>.Nero AG®
SR - Demand [01/09/2014] [ 553288] Servizio iPod (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe =>.Apple Inc.®
SR - Auto [21/11/2013] [ 8192] KMService (KMService) . (...) - C:\Windows\System32\srvany.exe =>PUP.Optional.Office
SR - Auto [16/10/2009] [ 53560] Nero Registry InCD Service (NeroRegInCDSrv) . (.Nero AG.) - C:\Program Files\Nero\Tools\InCD\NBHRegInCDSrv.exe =>.Nero AG®
SR - Auto [10/10/2013] [ 181312] ScsiAccess (ScsiAccess) . (...) - C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe
SS - Auto [29/09/2013] [ 2470736] SecureUpdate (SecureUpdateSvc) . (...) - C:\Program Files\Secure Speed Dial\IE\SecureUpdate.exe {1B5D68E0AFA12E8F1159C668DD228431} =>PUP.Optional.SpeedDial

---\\ Chieve Tracing (18) - 10s
HKLM\SOFTWARE\Microsoft\Tracing\3D BubbleSound_RASAPI32 =>PUP.Optional.BubbleSound
HKLM\SOFTWARE\Microsoft\Tracing\3D BubbleSound_RASMANCS =>PUP.Optional.BubbleSound
HKLM\SOFTWARE\Microsoft\Tracing\appshat-distribution_RASAPI32 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Microsoft\Tracing\appshat-distribution_RASMANCS =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Microsoft\Tracing\BabylonTC_RASAPI32 =>PUP.Optional.Babylon
HKLM\SOFTWARE\Microsoft\Tracing\BabylonTC_RASMANCS =>PUP.Optional.Babylon
HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASAPI32 =>PUP.Optional.Babylon
HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASMANCS =>PUP.Optional.Babylon
HKLM\SOFTWARE\Microsoft\Tracing\BI_RunOnce_RASAPI32 =>PUP.Optional.MegaSearch
HKLM\SOFTWARE\Microsoft\Tracing\BI_RunOnce_RASMANCS =>PUP.Optional.MegaSearch
HKLM\SOFTWARE\Microsoft\Tracing\bobrowser_RASAPI32 =>PUP.Optional.BoBrowser
HKLM\SOFTWARE\Microsoft\Tracing\bobrowser_RASMANCS =>PUP.Optional.BoBrowser
HKLM\SOFTWARE\Microsoft\Tracing\Bubble Dock BSetup_RASAPI32 =>PUP.Optional.BubbleDock
HKLM\SOFTWARE\Microsoft\Tracing\Bubble Dock BSetup_RASMANCS =>PUP.Optional.BubbleDock
HKLM\SOFTWARE\Microsoft\Tracing\Bubble Dock_RASAPI32 =>PUP.Optional.BubbleDock
HKLM\SOFTWARE\Microsoft\Tracing\Bubble Dock_RASMANCS =>PUP.Optional.BubbleDock
HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASAPI32 =>PUP.Optional.SweetIM
HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASMANCS =>PUP.Optional.SweetIM

---\\ Scansione aggiuntive (176) - 1s
HKLM\SYSTEM\CurrentControlSet\Services\KMService =>PUP.Optional.Office
C:\Windows\System32\srvany.exe =>PUP.Optional.Office
HKLM\SYSTEM\CurrentControlSet\Services\SecureUpdateSvc =>PUP.Optional.SpeedDial
C:\Program Files\Secure Speed Dial\IE\SecureUpdate.exe =>PUP.Optional.SpeedDial
C:\Program Files\CommonShare =>PUP.Optional.CommonShare
HKLM\SYSTEM\CurrentControlSet\Services\Update CommonShare =>PUP.Optional.CommonShare
HKLM\SYSTEM\CurrentControlSet\Services\Updater By Sweetpacks =>PUP.Optional.SweetIM
HKLM\SYSTEM\CurrentControlSet\Services\WajamUpdaterV3 =>PUP.Optional.Wajam
C:\Program Files\Plus-HD-2.5iV15.09\394ee3a1-5525-4700-98be-e537097b6f52-10.exe =>PUP.Optional.CrossRider
C:\Program Files\ExpressFiles\EFUpdater.exe =>PUP.Optional.ExpressFiles
C:\Program Files\Plus-HD-2.5iV15.09\394ee3a1-5525-4700-98be-e537097b6f52-1-6.exe =>PUP.Optional.CrossRider
C:\Program Files\Plus-HD-2.5iV15.09\394ee3a1-5525-4700-98be-e537097b6f52-6.exe =>PUP.Optional.CrossRider
C:\Program Files\Babylon\Babylon-Pro\Babylon.exe =>PUP.Optional.Babylon
C:\Users\sofian\AppData\Local\BoBrowser\Application\bobrowser.exe =>PUP.Optional.BoBrowser
C:\Users\sofian\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfgaibfbmkjgmimhbbaikfnpkkjkpoan =>Hijacker.Browser
C:\Users\sofian\AppData\Local\Google\Chrome\User Data\Default\Extensions\papbadoldddalgcjcicnikcfenodpghp =>Hijacker.Browser
C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll =>PUP.Optional.Babylon
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} =>PUP.Optional.Babylon
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C} =>PUP.Optional.Wajam
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA74D58F-ACD0-450D-A85E-6C04B171C044} =>PUP.Optional.Minibar
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DEDAF650-12B8-48f5-A843-BBA100716106} =>PUP.Optional.SweetIM
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847} =>PUP.Optional.SweetIM
C:\Program Files\BubbleSound\3D BubbleSound.exe =>PUP.Optional.BubbleSound
C:\Users\sofian\AppData\Local\BoBrowser\Application\crash_service.exe =>PUP.Optional.BoBrowser
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PhraseProfessor_1.10.0.24 =>PUP.Optional.Generic
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Plus-HD-2.5iV15.09 =>PUP.Optional.CrossRider
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\rec_it_101_is1 =>PUP.Optional.Multiplug
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BoBrowser =>PUP.Optional.BoBrowser
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FLV Player =>PUP.Optional.MegaSearch
HKLM\SOFTWARE\8fedd4ce-4491-4a43-b95f-d1c87a3e3ae6 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Babylon =>PUP.Optional.Babylon
HKLM\SOFTWARE\Clara =>PUP.Optional.SupTab
HKLM\SOFTWARE\delta-homesSoftware =>PUP.Optional.DeltaHomes
HKLM\SOFTWARE\ExpressFiles =>PUP.Optional.ExpressFiles
HKLM\SOFTWARE\FREESOFTTODAY =>PUP.Optional.Multiplug
HKLM\SOFTWARE\GlobalUpdate =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\Goobzo =>PUP.Optional.Goobzo
HKLM\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKLM\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKLM\SOFTWARE\LolliScan =>PUP.Optional.Graftor
HKLM\SOFTWARE\Minibar =>PUP.Optional.Minibar
HKLM\SOFTWARE\Object Browser =>PUP.Optional.ObjectBrowser
HKLM\SOFTWARE\PhraseProfessor_1.10.0.24 =>PUP.Optional.Generic
HKLM\SOFTWARE\Plus-HD-2.5iV15.09 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Plus-HD-2.5iV15.09-nv =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Plus-HD-2.5iV15.09-nv-ie =>PUP.Optional.CrossRider
HKLM\SOFTWARE\supTab =>PUP.Optional.SupTab
HKLM\SOFTWARE\supWPM =>PUP.Optional.WpManager
HKLM\SOFTWARE\Systweak =>PUP.Optional.Systweak
HKLM\SOFTWARE\Tutorials =>PUP.Optional.AgenceExclusive
HKLM\SOFTWARE\V9 =>PUP.Optional.V9Software
HKLM\SOFTWARE\Wajam =>PUP.Optional.Wajam
HKLM\SOFTWARE\winzipersvc =>.Superfluous.WinZipper
HKLM\SOFTWARE\Wpm =>PUP.Optional.WpManager
HKLM\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\1ClickDownload =>PUP.Optional.1ClickDownloader
HKCU\SOFTWARE\AnyProtect =>PUP.Optional.AnyProtect
HKCU\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Babylon =>PUP.Optional.Babylon
HKCU\SOFTWARE\BI =>PUP.Optional.MegaSearch
HKCU\SOFTWARE\BoBrowser =>PUP.Optional.BoBrowser
HKCU\SOFTWARE\Conduit =>PUP.Optional.Conduit
HKCU\SOFTWARE\DriverTuner =>PUP.Optional.DriverTuner
HKCU\SOFTWARE\DriverTuner_Init =>PUP.Optional.DriverTuner
HKCU\SOFTWARE\ExpressFiles =>PUP.Optional.ExpressFiles
HKCU\SOFTWARE\freesofttoday =>PUP.Optional.Multiplug
HKCU\SOFTWARE\globalUpdate =>PUP.Optional.GlobalUpdate
HKCU\SOFTWARE\Goobzo =>PUP.Optional.Goobzo
HKCU\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKCU\SOFTWARE\ImInstaller =>Toolbar.IncrediMail
HKCU\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKCU\SOFTWARE\lollipop =>PUP.Optional.Lollipop
HKCU\SOFTWARE\Nosibay =>PUP.Optional.SPointer
HKCU\SOFTWARE\Plus-HD-2.5iV15.09 =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Plus-HD-2.5iV15.09-nv =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Plus-HD-2.5iV15.09-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\RegisteredApplicationsEx =>PUP.Optional.SfKpCouponApp
HKCU\SOFTWARE\Smart PC Solutions =>PUP.Optional.SmartPCSolutions
HKCU\SOFTWARE\SmartbarBackup =>PUP.Optional.SmartBar
HKCU\SOFTWARE\SmartbarLog =>PUP.Optional.SmartBar
HKCU\SOFTWARE\Softonic =>PUP.Optional.Softonic
HKCU\SOFTWARE\SweetIM =>PUP.Optional.SweetIM
HKCU\SOFTWARE\systweak =>PUP.Optional.Systweak
HKCU\SOFTWARE\Tutorials =>PUP.Optional.AgenceExclusive
HKCU\SOFTWARE\TutoTag =>PUP.Optional.AgenceExclusive
HKCU\SOFTWARE\Wajam =>PUP.Optional.Wajam
HKCU\SOFTWARE\WebPlayer =>PUP.Optional.WebPlayer
HKCU\SOFTWARE\WEDLMNGR =>PUP.Optional.weDownloadManager
HKCU\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\Object Browser =>PUP.Optional.ObjectBrowser
C:\Program Files\AnyProtectEx =>PUP.Optional.AnyProtect
C:\Program Files\Babylon =>PUP.Optional.Babylon
C:\Program Files\BubbleSound =>PUP.Optional.BubbleSound
C:\Program Files\DriverTuner =>PUP.Optional.DriverTuner
C:\Program Files\ExpressFiles =>PUP.Optional.ExpressFiles
C:\Program Files\fb39f3d3-5ef9-43a5-a5e0-5101daaf133c =>PUP.Optional.CrossRider
C:\Program Files\FreeSoftToday =>PUP.Optional.FreeSoftToday
C:\Program Files\FTDownloader.com =>PUP.Optional.Downware
C:\Program Files\ggReaitsoaVoerr =>PUP.Optional.Multiplug
C:\Program Files\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Program Files\Gophoto.it =>PUP.Optional.GophotoIt
C:\Program Files\Minibar =>PUP.Optional.Minibar
C:\Program Files\Mobogenie =>PUP.Optional.Mobogenie
C:\Program Files\MyPC Backup =>PUP.Optional.MyPCBackup
C:\Program Files\Nosibay =>PUP.Optional.SPointer
C:\Program Files\Object Browser =>PUP.Optional.ObjectBrowser
C:\Program Files\Optimizer Pro =>PUP.Optional.OptimizerPro
C:\Program Files\PhraseProfessor_1.10.0.24 =>PUP.Optional.Generic
C:\Program Files\Plus-HD-2.5iV15.09 =>PUP.Optional.CrossRider
C:\Program Files\predm =>PUP.Optional.Downware
C:\Program Files\qualitink =>PUP.Optional.Qualitink
C:\Program Files\SearchProtect =>PUP.Optional.SearchProtect
C:\Program Files\Secure Speed Dial =>PUP.Optional.SpeedDial
C:\Program Files\SupTab =>PUP.Optional.SupTab
C:\Program Files\TornTV.com =>PUP.Optional.TornTV
C:\Program Files\Uninstaller =>PUP.Optional.Generic
C:\Program Files\Wajam =>PUP.Optional.Wajam
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Babylon =>PUP.Optional.Babylon
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverTuner =>PUP.Optional.DriverTuner
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZipper =>.Superfluous.WinZipper
C:\ProgramData\Babylon =>PUP.Optional.Babylon
C:\ProgramData\eSafe =>PUP.Optional.eSafeSecurity
C:\ProgramData\ggReaitsoaVoerr =>PUP.Optional.Multiplug
C:\ProgramData\IBUpdaterService =>PUP.Optional.InstallBrain
C:\ProgramData\IePluginService =>Trojan.SProtector
C:\ProgramData\InstallMate =>PUP.Optional.Tarma
C:\ProgramData\WPM =>PUP.Optional.WpManager
C:\Users\sofian\AppData\Roaming\Babylon =>PUP.Optional.Babylon
C:\Users\sofian\AppData\Roaming\DealPly =>PUP.Optional.Dealply
C:\Users\sofian\AppData\Roaming\ExpressFiles =>PUP.Optional.ExpressFiles
C:\Users\sofian\AppData\Roaming\newnext.me =>PUP.Optional.NextLive
C:\Users\sofian\AppData\Roaming\Nosibay =>PUP.Optional.BubbleDock
C:\Users\sofian\AppData\Roaming\OpenCandy =>PUP.Optional.OpenCandy
C:\Users\sofian\AppData\Roaming\SpeedTestAnalysis =>PUP.Optional.ScriptHost
C:\Users\sofian\AppData\Roaming\SupTab =>PUP.Optional.SupTab
C:\Users\sofian\AppData\Roaming\Systweak =>PUP.Optional.Systweak
C:\Users\sofian\AppData\Roaming\VOPackage =>PUP.Optional.Downware
C:\Users\sofian\AppData\Roaming\WinZipper =>.Superfluous.WinZipper
C:\Users\sofian\AppData\Local\Babylon =>PUP.Optional.Babylon
C:\Users\sofian\AppData\Local\BoBrowser =>PUP.Optional.BoBrowser
C:\Users\sofian\AppData\Local\DriverTuner =>PUP.Optional.DriverTuner
C:\Users\sofian\AppData\Local\freeSOFTtoday =>PUP.Optional.FreeSoftToday
C:\Users\sofian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BoBrowser =>PUP.Optional.BoBrowser
C:\Users\sofian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage =>PUP.Optional.Downware
C:\Windows\Prefetch\BOBROWSER.EXE-51E2813D.pf =>PUP.Optional.BoBrowser
C:\Windows\Prefetch\OBJECT BROWSER-CHROMEINSTALLE-96DCAD09.pf =>PUP.Optional.ObjectBrowser
C:\Windows\Prefetch\OBJECT BROWSER-CODEDOWNLOADER-78CAC4AF.pf =>PUP.Optional.ObjectBrowser
C:\Windows\Prefetch\OBJECT BROWSER-FIREFOXINSTALL-0D0FBF2A.pf =>PUP.Optional.ObjectBrowser
C:\Windows\System32\drivers\ppfd_vt_1_10_0_24.sys =>PUP.Optional.Generic
C:\Windows\System32\drivers\ppfd_vw_1_10_0_24.sys =>PUP.Optional.Generic
C:\Windows\System32\drivers\{e4a6645a-3f85-4e1f-aa41-8367978844db}Gw.sys =>PUP.Optional.LinkiDoo
C:\Windows\System32\drivers\{e4a6645a-3f85-4e1f-aa41-8367978844db}w.sys =>PUP.Optional.LinkiDoo
C:\Users\sofian\AppData\Local\BoBrowser\User Data\ev_hashes_whitelist.bin =>PUP.Optional.BoBrowser
HKCU\SOFTWARE\Classes\BoBrowsHTML.EA6HKKNB74H65M2FSLYCCVXXGM =>PUP.Optional.BoBrowser
C:\Program Files\ExpressFiles\expressdl.exe =>PUP.Optional.ExpressFiles
C:\Program Files\ExpressFiles\ExpressFiles.exe =>PUP.Optional.ExpressFiles
HKLM\SOFTWARE\Microsoft\Tracing\3D BubbleSound_RASAPI32 =>PUP.Optional.BubbleSound
HKLM\SOFTWARE\Microsoft\Tracing\3D BubbleSound_RASMANCS =>PUP.Optional.BubbleSound
HKLM\SOFTWARE\Microsoft\Tracing\appshat-distribution_RASAPI32 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Microsoft\Tracing\appshat-distribution_RASMANCS =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Microsoft\Tracing\BabylonTC_RASAPI32 =>PUP.Optional.Babylon
HKLM\SOFTWARE\Microsoft\Tracing\BabylonTC_RASMANCS =>PUP.Optional.Babylon
HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASAPI32 =>PUP.Optional.Babylon
HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASMANCS =>PUP.Optional.Babylon
HKLM\SOFTWARE\Microsoft\Tracing\BI_RunOnce_RASAPI32 =>PUP.Optional.MegaSearch
HKLM\SOFTWARE\Microsoft\Tracing\BI_RunOnce_RASMANCS =>PUP.Optional.MegaSearch
HKLM\SOFTWARE\Microsoft\Tracing\bobrowser_RASAPI32 =>PUP.Optional.BoBrowser
HKLM\SOFTWARE\Microsoft\Tracing\bobrowser_RASMANCS =>PUP.Optional.BoBrowser
HKLM\SOFTWARE\Microsoft\Tracing\Bubble Dock BSetup_RASAPI32 =>PUP.Optional.BubbleDock
HKLM\SOFTWARE\Microsoft\Tracing\Bubble Dock BSetup_RASMANCS =>PUP.Optional.BubbleDock
HKLM\SOFTWARE\Microsoft\Tracing\Bubble Dock_RASAPI32 =>PUP.Optional.BubbleDock
HKLM\SOFTWARE\Microsoft\Tracing\Bubble Dock_RASMANCS =>PUP.Optional.BubbleDock
HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASAPI32 =>PUP.Optional.SweetIM
HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASMANCS =>PUP.Optional.SweetIM

---\\ Riepilogo dei elementi trovato sulla workstation (60) - 0s
http://www.nicolascoolman.fr/?p=888 =>PUP.Optional.Office
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.SpeedDial
http://www.nicolascoolman.fr/pup-commonshare/ =>PUP.Optional.CommonShare
http://www.nicolascoolman.fr/?p=332 =>PUP.Optional.SweetIM
http://www.nicolascoolman.fr/?p=263 =>PUP.Optional.Wajam
http://www.nicolascoolman.fr/?p=180 =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.DriverTuner
http://www.nicolascoolman.fr/pup-globalupdate/ =>PUP.Optional.GlobalUpdate
http://www.nicolascoolman.fr/?p=203 =>PUP.Optional.Dealply
http://www.nicolascoolman.fr/?p=1272 =>PUP.Optional.ExpressFiles
http://www.nicolascoolman.fr/?p=170 =>PUP.Optional.Babylon
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.BoBrowser
http://www.nicolascoolman.fr/?p=4664 =>Hijacker.Browser
http://www.nicolascoolman.fr/?p=308 =>PUP.Optional.SmartBar
http://www.nicolascoolman.fr/?p=418 =>PUP.Optional.Minibar
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.BubbleSound
http://www.nicolascoolman.fr/?p=1633 =>PUP.Optional.SearchProtect
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.Generic
http://www.nicolascoolman.fr/?p=1402 =>PUP.Optional.Multiplug
http://www.nicolascoolman.fr/?p=431 =>PUP.Optional.MegaSearch
http://www.nicolascoolman.fr/?p=297 =>PUP.Optional.SupTab
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.DeltaHomes
http://www.nicolascoolman.fr/pup-goobzo/ =>PUP.Optional.Goobzo
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.BrowserExtensions
http://www.nicolascoolman.fr/pup-graftor/ =>PUP.Optional.Graftor
http://www.nicolascoolman.fr/pup-objectbrowser/ =>PUP.Optional.ObjectBrowser
http://www.nicolascoolman.fr/?p=173 =>PUP.Optional.WpManager
http://www.nicolascoolman.fr/pup-systweak/ =>PUP.Optional.Systweak
http://www.nicolascoolman.fr/?p=122 =>PUP.Optional.AgenceExclusive
http://www.nicolascoolman.fr/?p=556 =>PUP.Optional.V9Software
http://www.nicolascoolman.fr/?p=4664 =>.Superfluous.WinZipper
http://www.nicolascoolman.fr/?p=668 =>PUP.Optional.1ClickDownloader
http://www.nicolascoolman.fr/?p=266 =>PUP.Optional.AnyProtect
http://www.nicolascoolman.fr/?p=210 =>PUP.Optional.Conduit
http://www.nicolascoolman.fr/?p=4664 =>Toolbar.IncrediMail
http://www.nicolascoolman.fr/?p=302 =>PUP.Optional.Lollipop
http://www.nicolascoolman.fr/?p=205 =>PUP.Optional.SPointer
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.SfKpCouponApp
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.SmartPCSolutions
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.Softonic
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.WebPlayer
http://www.nicolascoolman.fr/?p=1135 =>PUP.Optional.weDownloadManager
http://www.nicolascoolman.fr/?p=340 =>PUP.Optional.FreeSoftToday
http://www.nicolascoolman.fr/?p=401 =>PUP.Optional.Downware
http://www.nicolascoolman.fr/?p=1311 =>PUP.Optional.GophotoIt
http://www.nicolascoolman.fr/?p=215 =>PUP.Optional.Mobogenie
http://www.nicolascoolman.fr/?p=316 =>PUP.Optional.MyPCBackup
http://www.nicolascoolman.fr/?p=324 =>PUP.Optional.OptimizerPro
http://www.nicolascoolman.fr/?p=1644 =>PUP.Optional.Qualitink
http://www.nicolascoolman.fr/?p=290 =>PUP.Optional.TornTV
http://www.nicolascoolman.fr/?p=573 =>PUP.Optional.eSafeSecurity
http://www.nicolascoolman.fr/?p=600 =>PUP.Optional.InstallBrain
http://www.nicolascoolman.fr/?p=187 =>Trojan.SProtector
http://www.nicolascoolman.fr/?p=259 =>PUP.Optional.Tarma
http://www.nicolascoolman.fr/?p=537 =>PUP.Optional.NextLive
http://www.nicolascoolman.fr/?p=177 =>PUP.Optional.BubbleDock
http://www.nicolascoolman.fr/?p=197 =>PUP.Optional.OpenCandy
http://www.nicolascoolman.fr/?p=1120 =>PUP.Optional.ScriptHost
http://www.nicolascoolman.fr/?p=62 =>PUP.Optional.LinkiDoo
http://www.nicolascoolman.fr/?p=721 =>PUP.Optional.Qvo6

~ End of the scan, 37121 items in 689 seconds (1266)(2)

Publicité


Signaler le contenu de ce document

Publicité