Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14.03.2018
Ran by Peppe (01-04-2018 20:50:44)
Running from C:\Users\Peppe\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2014-09-30 11:46:01)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2921988991-613299845-3104574246-500 - Administrator - Disabled) => C:\Users\Administrator
Guest (S-1-5-21-2921988991-613299845-3104574246-501 - Limited - Disabled)
Peppe (S-1-5-21-2921988991-613299845-3104574246-1000 - Administrator - Enabled) => C:\Users\Peppe
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-2921988991-613299845-3104574246-1000\...\uTorrent) (Version: 3.5.1.44332 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Italiano (HKLM-x32\...\{AC76BA86-7AD7-1040-7B44-AC0F074E4100}) (Version: 18.011.20038 - Adobe Systems Incorporated)
Adobe After Effects 7.0 (HKLM-x32\...\Adobe After Effects 7.0) (Version: 7.0.0.244 - Adobe Systems, Inc.)
Adobe After Effects CS4 (HKLM-x32\...\Adobe_3dcb365ab9e01871fb8c6f27b0ea079) (Version: 9 - Adobe Systems Incorporated)
Adobe After Effects CS6 (HKLM-x32\...\{4817D846-700B-474E-A31B-80892B3E92E3}) (Version: 11 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.2.0.129 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2015 (HKLM-x32\...\{0FAC7130-BEC5-47A5-8813-1D339B8326ED}) (Version: 9.0.1 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.1 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.2.172 - Adobe Systems, Inc.)
AI Suite 3 (HKLM-x32\...\{D46DA5F0-25AD-4B77-98DA-6DD6AF39FBD9}) (Version: 1.00.56 - ASUSTeK Computer Inc.)
Akamai NetSession Interface (HKU\S-1-5-21-2921988991-613299845-3104574246-1000\...\Akamai) (Version: - Akamai Technologies, Inc)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 18.2.1 - Advanced Micro Devices, Inc.)
Apple Mobile Device Support (HKLM\...\{0A596141-97D5-45FA-9281-98DFAF48D579}) (Version: 10.3.2.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{52D87F32-70E4-4348-8148-C0B9F35B1314}) (Version: 2.3.0.177 - Apple Inc.)
Arc (HKLM-x32\...\{CED8E25B-122A-4E80-B612-7F99B93284B3}) (Version: 1.0.0.9668 - Perfect World Entertainment)
ASUS Product Register Program (HKLM-x32\...\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}) (Version: 1.0.020 - ASUSTek Computer Inc.)
aTube Catcher (HKLM-x32\...\aTube Catcher) (Version: 2.9.1025 - DsNET Corp)
aTube Catcher versione 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Audacity 2.0.6 (HKLM-x32\...\Audacity_is1) (Version: 2.0.6 - Audacity Team)
AutoIt v3.3.14.2 (HKLM-x32\...\AutoItv3) (Version: 3.3.14.2 - AutoIt Team)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 18.2.2328 - AVAST Software)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
BioniX Wallpaper Changer v9 (HKU\S-1-5-21-2921988991-613299845-3104574246-1000\...\BioniX Wallpaper Changer v9) (Version: - )
BlackBerry Desktop Software 7.1 (HKLM-x32\...\{BE5B0450-DCCB-4FE9-93E2-3B38D88A745B}) (Version: 7.1.0.41 - Research In Motion Ltd.) Hidden
BlackBerry Desktop Software 7.1 (HKLM-x32\...\BlackBerry_Desktop) (Version: 7.1.0.41 - Research In Motion Ltd.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Canopus Codec Option 6.01 (HKLM-x32\...\{28C515CC-489B-4c02-898E-FE5B790E52FF}) (Version: 6.01 - Thomson Canopus Co., Ltd.)
CCleaner (HKLM\...\CCleaner) (Version: 5.41 - Piriform)
Championify (HKU\S-1-5-21-2921988991-613299845-3104574246-1000\...\Championify) (Version: 2.0.4 - Dustin Blackman)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.6.0.0283 - Disc Soft Ltd)
DaVinci Resolve (HKLM\...\{993A1353-910B-41B1-9846-7BD2E15641D5}) (Version: 12.0.1006 - Blackmagic Design)
DeskPins (remove only) (HKLM-x32\...\DeskPins) (Version: - )
Desktop-Reminder 2 (HKLM-x32\...\{288487BA-D8C5-4C81-BD89-C7E49DD48E18}) (Version: 2.118 - Polenter - Software Solutions) Hidden
Desktop-Reminder 2 (HKLM-x32\...\Desktop-Reminder 2) (Version: 2.118 - Polenter - Software Solutions)
Discord (HKU\S-1-5-21-2921988991-613299845-3104574246-1000\...\Discord) (Version: 0.0.300 - Discord Inc.)
EDIUS (HKLM\...\{E7CCB338-2A54-4F44-947B-958BD847A5D3}) (Version: 7.50 - Grass Valley K.K.)
EDIUS 6.01 (HKLM-x32\...\{B91A1230-C199-421e-8F63-7235731D925E}) (Version: 6.01 - Thomson Canopus Co., Ltd.)
EDIUS Codec Option 7.50 (HKLM-x32\...\{7E4E5B65-9B8B-4ECE-9C1F-9C96DA0BC620}) (Version: 7.50 - Grass Valley K.K.)
eLicenser Control (HKLM-x32\...\eLicenser Control) (Version: 6.10.5.1203 - Steinberg Media Technologies GmbH)
Enter the Gungeon (HKLM-x32\...\1456912569_is1) (Version: 2.7.0.9 - GOG.com)
Epic Games Launcher (HKLM-x32\...\{7A92850A-3660-487C-BE6B-0D054942570B}) (Version: 1.1.123.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epson Easy Photo Print 2 (HKLM-x32\...\{DEDB47A3-C988-4A43-A645-E2CEA571E680}) (Version: 2.0.0.0 - SEIKO EPSON CORPORATION)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - )
EPSON Stylus SX100_TX100 Manuale (HKLM-x32\...\EPSON Stylus SX100_TX100 Guida utente) (Version: - )
EPSON SX100 Series Printer Uninstall (HKLM\...\EPSON SX100 Series) (Version: - SEIKO EPSON Corporation)
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
EVEREST Home Edition v2.20 (HKLM-x32\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc)
FIFA18 version 1.0 (HKLM\...\FIFA18_is1) (Version: 1.0 - STEAMPUNKS) <==== ATTENTION
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
Gameforge Live 2.0.13 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.13 - Gameforge)
GitHub (HKU\S-1-5-21-2921988991-613299845-3104574246-1000\...\5f7eb300e2ea4ebf) (Version: 3.3.2.0 - GitHub, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 65.0.3325.181 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
Heroes of the Storm Public Test (HKLM-x32\...\Heroes of the Storm Public Test) (Version: - Blizzard Entertainment)
HiPatch (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF000}) (Version: 5.0.6.4 - Hi-Rez Studios)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
HOTSLogsUploader (HKU\S-1-5-21-2921988991-613299845-3104574246-1000\...\99a83d131490dc73) (Version: 1.0.0.12 - HOTSLogsUploader)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4578 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.9.0.1001 - Intel Corporation)
Intel(R) USB 3.0\3.1 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 5.0.0.32 - Intel Corporation)
Ironsight version 1 (HKLM-x32\...\Ironsight_is1) (Version: 1 - Aeria Games)
iTunes (HKLM\...\{F0C7385A-9D20-45F3-8101-05D383885180}) (Version: 12.6.1.25 - Apple Inc.)
Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
Java 8 Update 91 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Java SE Development Kit 8 Update 65 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180650}) (Version: 8.0.650.17 - Oracle Corporation)
Keep Talking and Nobody Explodes 1.1.4 (HKLM-x32\...\Keep Talking and Nobody Explodes 1.1.4) (Version: 1.1.4 - Steel Crate Games)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LCDSirReal - a multipurpose plugin for the Logitech G13/G15 (HKU\S-1-5-21-2921988991-613299845-3104574246-1000\...\LCDSirReal) (Version: - Link Data Stockholm)
League of Legends (HKLM-x32\...\{83B763CD-5771-408A-B7C9-6C1A5B161F41}) (Version: 3.0.1 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
Logitech Gaming Software 8.57 (HKLM\...\Logitech Gaming Software) (Version: 8.57.145 - Logitech Inc.)
Malwarebytes versione 3.4.5.2467 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.4.5.2467 - Malwarebytes)
M-Audio M-Track 2X2M 1.0.6 (HKLM\...\{A1AD4677-B615-4E51-B559-E0145F0FE3A7}) (Version: 1.0.6 - M-Audio)
Microsoft .NET Compact Framework 2.0 SP1 (HKLM-x32\...\{625386A4-B6B6-4911-A6E8-23189C3F2D15}) (Version: 2.0.6129 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Italiano) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1040) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.6.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01590 - Microsoft Corporation)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE (HKLM-x32\...\{B45FABE7-D101-4D99-A671-E16DA40AF7F0}) (Version: 3.0.86.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{B578C85A-A84C-4230-A177-C5B2AF565B8C}) (Version: 3.0.17.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50906.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{2DFD8316-9EF1-3210-908C-4CB61961C1AC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 RC Redistributable (x64) - 14.0.22816 (HKLM-x32\...\{e2495eb6-cca8-47aa-91ea-3410ca44d7b7}) (Version: 14.0.22816.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25017 (HKLM-x32\...\{e9d78d68-c26c-4da7-9158-99355d8ef3ad}) (Version: 14.10.25017.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools per Office Runtime (x64) - Language Pack - ITA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - ITA) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Moobot Assistant (HKU\S-1-5-21-2921988991-613299845-3104574246-1000\...\40790fab0e175d6b) (Version: 1.0.0.1 - Knudsen Apps)
Mozilla Firefox 56.0 (x86 it) (HKLM-x32\...\Mozilla Firefox 56.0 (x86 it)) (Version: 56.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 56.0.0.6478 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nero 8 (HKLM-x32\...\{1CA7ACD6-B21B-4240-AA05-4FC55F6E1040}) (Version: 8.3.465 - Nero AG)
Nier Automata (HKLM-x32\...\{0F48043A-5115-42C3-B1B3-958AC3A319CF}_is1) (Version: - Square Enix)
Nox APP Player (HKLM-x32\...\Nox) (Version: 3.8.1.2 - Duodian Technology Co. Ltd.)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 10.4.5.30491 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.104.210.0 - Overwolf Ltd.)
paint.net (HKLM\...\{DF3A46D9-67B3-44B2-9D01-25C8BA772C8A}) (Version: 4.0.6 - dotPDN LLC)
Photoshop Camera Raw (HKLM-x32\...\{CC75AB5C-2110-4A7F-AF52-708680D22FE8}) (Version: 5.0 - Adobe Systems Incorporated) Hidden
Pixel Bender Toolkit (HKLM-x32\...\{43509E18-076E-40FE-AF38-CA5ED400A5A9}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
PlanetSide 2 (HKU\S-1-5-21-2921988991-613299845-3104574246-1000\...\SOE-PlanetSide 2) (Version: - Sony Online Entertainment)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.67.1226.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7487 - Realtek Semiconductor Corp.)
Redout Enhanced Edition Neptune Pack (HKLM-x32\...\Redout Enhanced Edition Neptune Pack_is1) (Version: - )
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
RogueKiller version 12.12.10.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 12.12.10.0 - Adlice Software)
ShareX (HKLM\...\82E6AC09-0FEF-4390-AD9F-0DD3F5561EFC_is1) (Version: 12.1.1 - ShareX Team)
Sky Go Download Player (HKU\S-1-5-21-2921988991-613299845-3104574246-1000\...\690096451.skygo.sky.it) (Version: - skygo.sky.it)
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.151 - Skype Technologies S.A.)
Smart-X7 7.80 (HKLM\...\WheelMouse) (Version: - )
Software per periferiche con chipset Intel® (HKLM-x32\...\{98f335cd-0a32-4b3f-b74c-ef9480e834f0}) (Version: 10.0.27 - Intel(R) Corporation) Hidden
SoundSwitch 4.3.6643.23689 (HKLM\...\SoundSwitch_is1) (Version: 4.3.6643.23689 - Antoine Aflalo)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Spotify (HKU\S-1-5-21-2921988991-613299845-3104574246-1000\...\Spotify) (Version: 1.0.77.338.g758ebd78 - Spotify AB)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1) (Version: 1.6.2 - Safer Networking Limited)
Startup Optimizer 1.6 (HKLM-x32\...\Startup Optimizer_is1) (Version: - Cyberlion Solutions Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Steinberg Cubase LE AI Elements 9 (HKLM\...\{E0FA80FD-82A7-4328-ABC3-0DA6A9FA1824}) (Version: 9.0.1 - Steinberg Media Technologies GmbH)
Steinberg Generic Lower Latency ASIO Driver 64bit (HKLM\...\{16D5A798-10BE-4FF3-BB71-54C012CD0D7D}) (Version: 1.0.10 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent SE 64bit (HKLM\...\{A5AB0D21-21BD-4DB8-F097-02E8FC8C486A}) (Version: 4.2.30 - Steinberg Media Technologies GmbH)
Steinberg HALion Sonic SE 64bit (HKLM\...\{B99C316B-C135-43B5-8E77-2BC5E241F964}) (Version: 2.0.2 - Steinberg Media Technologies GmbH)
Steinberg Upload Manager (HKLM-x32\...\{88BBBD8F-4C19-4809-B84B-7A8F8238B48D}) (Version: 1.0.2 - Steinberg Media Technologies GmbH)
Suite Shared Configuration CS4 (HKLM-x32\...\{842B4B72-9E8F-4962-B3C1-1C422A5C4434}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Super Meat Boy v1.5 (HKLM-x32\...\Super Meat Boy v1.5_is1) (Version: - Team Meat)
Supporto applicazioni Apple (32 bit) (HKLM-x32\...\{E92BB800-BCC5-4C25-8102-AC2C3B7C7C1E}) (Version: 5.5 - Apple Inc.)
Supporto applicazioni Apple (64 bit) (HKLM\...\{9C912B1E-06DD-43EF-BB2B-45CB2C88BAAE}) (Version: 5.5 - Apple Inc.)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
TeamViewer 12 Host (MSI Wrapper) (HKLM-x32\...\{146C4A0D-592D-4D7E-A637-6BC18BA614F8}) (Version: 12.1.6829 - TeamViewer)
TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.1.1548 - TeamViewer)
Thimbleweed Park (HKLM-x32\...\1325604411_is1) (Version: 1.0.955 - GOG.com)
Total Video Converter 3.71 100812 (HKLM-x32\...\Total Video Converter 3.71_is1) (Version: - EffectMatrix Inc.)
Trust GXT Gaming Headset (HKLM\...\C-Media CM108 Like Sound Driver) (Version: - )
Trust GXT Gaming Headset (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392006300}) (Version: 2.0.01.13 - Trust)
TunesKit Spotify Converter 1.2.1.100 (HKLM-x32\...\TunesKit Spotify Converter_is1) (Version: - TunesKit, Inc.)
Tunngle (HKLM-x32\...\Tunngle_is1) (Version: 5.8.8 - Tunngle.net GmbH)
Unity Web Player (HKU\S-1-5-21-2921988991-613299845-3104574246-1000\...\UnityWebPlayer) (Version: 5.3.5f1 - Unity Technologies ApS)
Uplay (HKLM-x32\...\Uplay) (Version: 27.0 - Ubisoft)
VCRedistSetup (HKLM-x32\...\{3921A67A-5AB1-4E48-9444-C71814CF3027}) (Version: 1.0.0 - Nero AG) Hidden
Vegas Pro 12.0 (64-bit) (HKLM\...\{64A98EF1-2680-11E3-A909-F04DA23A5C58}) (Version: 12.0.726 - Sony)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
VNC Server 6.1.1 (HKLM\...\{BF68FC97-1CBA-49D5-88EB-3E0CDC3D379D}) (Version: 6.1.1.28093 - RealVNC Ltd)
VNC Viewer 6.1.1 (HKLM\...\{1B14F26D-AAC9-4781-A468-5DFD5DF5FF91}) (Version: 6.1.1.28093 - RealVNC Ltd)
VSO ConvertXToDVD (HKLM-x32\...\{CE1F93C0-4353-4C9D-84DA-AB4E7C63ED32}_is1) (Version: 5.2.0.52 - VSO Software)
Vulkan Run Time Libraries 1.0.65.0 (HKLM\...\VulkanRT1.0.65.0) (Version: 1.0.65.0 - LunarG, Inc.) Hidden
WarRock (HKLM-x32\...\Warrock EU) (Version: - )
Windows Driver Package - BigNox Corporation (VBoxUSB) USB (01/20/2017 4.3.12) (HKLM\...\5704FF66AFA4D394842933DCC54279C2E177D380) (Version: 01/20/2017 4.3.12 - BigNox Corporation)
Windows Driver Package - BigNox Corporation VBoxUSBMon System (01/20/2017 4.3.12) (HKLM\...\35C6212A24F5D9B7942ECD18B0255759779999C2) (Version: 01/20/2017 4.3.12 - BigNox Corporation)
WinRAR 5.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)
WinSCP 5.5.6 (HKLM-x32\...\winscp3_is1) (Version: 5.5.6 - Martin Prikryl)
XSplit Broadcaster (HKLM-x32\...\{19F00CA3-338D-497C-BA31-0507101F2BBB}) (Version: 1.3.1403.1202 - SplitmediaLabs)
XSplit Gamecaster (HKLM-x32\...\{7CBDC2CD-F5C7-4DD3-91C8-1E4D68924955}) (Version: 1.9.1409.2308 - SplitmediaLabs)
YoloMouse (HKLM\...\{084C443B-D061-4B8E-8764-7F34160BBE8B}) (Version: 0.7.0.0 - HaPpY)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2921988991-613299845-3104574246-1000_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2921988991-613299845-3104574246-1000_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2921988991-613299845-3104574246-1000_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2921988991-613299845-3104574246-1000_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2921988991-613299845-3104574246-1000_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2921988991-613299845-3104574246-1000_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2921988991-613299845-3104574246-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-2921988991-613299845-3104574246-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> No File
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> No File
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> No File
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-07-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-07-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-07-22] ()
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-04-01] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-04-01] (AVAST Software)
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> No File
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> No File
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> No File
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-04-01] (AVAST Software)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2014-12-02] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2014-12-02] (Alexander Roshal)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-04-01] (AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-03-27] (Malwarebytes)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2018-01-31] (Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2017-01-24] (Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-04-01] (AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-03-27] (Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2014-12-02] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2014-12-02] (Alexander Roshal)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {342C16A9-1225-4A48-96C0-6212CDE49072} - System32\Tasks\ASUS\ASUS DIPAwayMode => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe [2013-08-13] ()
Task: {43ECB724-D5A7-43E2-B4AE-EB0B718CEDAF} - System32\Tasks\ASUS\USB 3.0 Boost Service => C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr.exe [2013-07-24] (ASUSTeK Computer Inc.)
Task: {50D67F8C-89B8-415C-83B7-E1159DFDC2BC} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-04-01] (AVAST Software)
Task: {52C11248-CFEA-40C6-AE02-C23BB533A609} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [2018-01-31] (Advanced Micro Devices, Inc.)
Task: {54876FB3-2555-4A3D-A4D2-4C2BD6BC7AEC} - System32\Tasks\iToolsDaemon => C:\Program Files (x86)\ThinkSky\iTools 3\iToolsDaemon.exe
Task: {5A5F73DE-5F06-41B8-985A-8CFB1D002B18} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe [2018-01-31] (Advanced Micro Devices, Inc.)
Task: {5CF391B2-9CD8-45A6-AD15-4098F6ADB9CD} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2013-01-25] (ASUSTek Computer Inc.)
Task: {6083B581-E2C7-497B-A55A-ED50BE8D6E8E} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2018-02-05] (AVAST Software)
Task: {7255F974-1275-4EB5-BDBB-CD9CE21C6267} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-02-09] (Adobe Systems Incorporated)
Task: {8225076B-9A2D-476B-83DD-81FAB6A4C075} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2017-02-14] (Apple Inc.)
Task: {885BD0A2-A46A-4762-82DA-6F7AEFC07730} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\avast software\overseer\overseer.exe [2018-01-07] (AVAST Software)
Task: {8B940028-C506-4B94-A223-83055C1545FB} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig
Task: {8B940028-C506-4B94-A223-83055C1545FB} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(2): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshContent
Task: {8B940028-C506-4B94-A223-83055C1545FB} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(3): C:\Windows\system32\GWX\GWXDetector.exe [2015-07-04] (Microsoft Corporation)
Task: {ACA6B3AF-306E-464F-A234-11E19E1F6F68} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {B92FB331-15EC-45A3-BA12-7BB323F6BBFF} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-03-06] (Piriform Ltd)
Task: {C161BAEC-D415-45CC-9167-024E993F966F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {CAFB815E-F7AA-4A1A-A32F-09CDF204E458} - System32\Tasks\ASUS\ASUS AISuiteIII => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [2013-08-07] (ASUSTeK Computer Inc.)
Task: {D6A18C6F-323B-469B-B06B-A9A9FBA57729} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-03-06] (Piriform Ltd)
Task: {D8999CE7-4769-4C8B-A28D-F74FF3D0B971} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfigAndContent
Task: {D8999CE7-4769-4C8B-A28D-F74FF3D0B971} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => Command(2): C:\Windows\system32\GWX\GWXDetector.exe [2015-07-04] (Microsoft Corporation)
Task: {DB2DCE1D-C1FC-48F9-A4A6-1FE43D01A41F} - System32\Tasks\ASUS\ASUS Network iControl Help Execute => C:\Program Files (x86)\ASUS\AI Suite III\Network iControl\NetSvcHelp\NetSvcHelpEntry.exe [2013-02-07] (ASUSTeK Computer Inc.)
Task: {E8C62854-E833-47D8-9BB1-2155662F50CC} - System32\Tasks\ASUS\Ez Update => C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe [2013-07-24] ()
Task: {EBCB3D36-20CE-4310-BAF0-A91BA205F967} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig
Task: {EBCB3D36-20CE-4310-BAF0-A91BA205F967} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => Command(2): C:\Windows\system32\GWX\GWXDetector.exe [2015-07-04] (Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\iToolsDaemon.job => C:\Program Files (x86)\ThinkSky\iTools 3\iToolsDaemon.exe
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Peppe\AppData\Local\Google\Chrome\User Data\Avvio applicazioni di Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe () -> --show-app-list
==================== Loaded Modules (Whitelisted) ==============
2017-05-09 00:44 - 2017-05-09 00:44 - 001354040 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2016-10-05 19:17 - 2016-10-05 19:17 - 000092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2014-09-30 15:26 - 2013-08-13 20:55 - 001225528 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
2014-09-30 15:24 - 2013-07-24 10:16 - 001425208 _____ () C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe
2017-07-12 13:22 - 2017-07-12 13:22 - 000015360 _____ () C:\Program Files\AMD\CNext\CNext\libEGL.DLL
2017-07-12 13:22 - 2017-07-12 13:22 - 002519040 _____ () C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2014-09-30 15:09 - 2013-05-07 09:45 - 000936728 ____N () C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
2014-09-18 09:23 - 2014-09-18 09:23 - 000866584 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2014-10-14 20:51 - 2014-10-14 20:51 - 001050904 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2014-09-18 09:23 - 2014-09-18 09:23 - 000059160 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2014-10-14 20:51 - 2014-10-14 20:51 - 000242456 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2016-11-13 14:10 - 2000-01-01 02:00 - 000196608 _____ () C:\Program Files\Mouse\Amoumain.exe
2017-05-09 03:05 - 2017-05-09 03:05 - 001354040 _____ () C:\Program Files\iTunes\libxml2.dll
2017-05-09 03:05 - 2017-05-09 03:05 - 000092472 _____ () C:\Program Files\iTunes\zlib1.dll
2018-03-06 23:58 - 2018-03-06 23:58 - 000089984 _____ () C:\Program Files\CCleaner\lang\lang-1040.dll
2015-07-18 22:00 - 2016-07-31 21:53 - 000076152 _____ () C:\Windows\system32\PnkBstrA.exe
2018-04-01 05:36 - 2018-03-12 15:09 - 002300192 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2018-04-01 05:24 - 2018-04-01 05:24 - 000721624 _____ () c:\Program Files\AVAST Software\Avast\x64\vaarclient.dll
2018-04-01 05:24 - 2018-04-01 05:24 - 000912088 _____ () C:\Program Files\AVAST Software\Avast\x64\ffl2.dll
2018-04-01 05:24 - 2018-04-01 05:24 - 000341720 _____ () c:\Program Files\AVAST Software\Avast\x64\StreamBack.dll
2011-06-21 11:14 - 2011-06-21 11:14 - 000207872 _____ () C:\Users\Peppe\Documents\LCDSirReal\LCDSirReal.exe
2018-03-21 03:13 - 2018-03-20 08:00 - 004435288 _____ () C:\Program Files (x86)\Google\Chrome\Application\65.0.3325.181\libglesv2.dll
2018-03-21 03:13 - 2018-03-20 08:00 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\65.0.3325.181\libegl.dll
2015-07-22 01:02 - 2015-07-22 01:02 - 000803488 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2013-09-05 00:17 - 2013-09-05 00:17 - 004300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2018-04-01 05:24 - 2018-04-01 05:24 - 000287960 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2018-04-01 05:24 - 2018-04-01 05:24 - 000280280 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
2018-04-01 14:40 - 2018-04-01 14:40 - 005810832 _____ () C:\Program Files\AVAST Software\Avast\defs\18040100\algo.dll
2018-04-01 05:24 - 2018-04-01 05:24 - 000756952 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2018-04-01 05:24 - 2018-04-01 05:24 - 000172760 _____ () C:\Program Files\AVAST Software\Avast\hns_tools.dll
2018-04-01 05:24 - 2018-04-01 05:24 - 000964824 _____ () C:\Program Files\AVAST Software\Avast\shepherdsync.dll
2018-04-01 05:24 - 2018-04-01 05:24 - 000475352 _____ () C:\Program Files\AVAST Software\Avast\gui_cache.dll
2018-04-01 05:24 - 2018-04-01 05:24 - 000339672 _____ () C:\Program Files\AVAST Software\Avast\streamback_avast.dll
2014-09-30 15:24 - 2013-08-07 19:11 - 000147456 _____ () C:\Program Files (x86)\ASUS\AI Suite III\AssistFunc.dll
2014-09-30 15:26 - 2013-08-13 20:46 - 002745344 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\dip4.dll
2014-09-30 15:24 - 2013-08-08 10:44 - 001139200 _____ () C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EasyUpdt.dll
2014-09-30 15:25 - 2013-06-24 15:59 - 001173504 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Network iControl\Network iControl.dll
2014-09-30 15:24 - 2013-06-04 19:41 - 000662016 ____R () C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMLib.dll
2014-09-30 15:24 - 2013-08-07 19:11 - 000053248 _____ () C:\Program Files (x86)\ASUS\AI Suite III\cpuutil.dll
2014-09-30 15:26 - 2013-08-13 20:55 - 000685056 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4DIGIPowerControlAction.dll
2014-09-30 15:26 - 2013-08-13 20:55 - 000825344 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4EpuAction.dll
2014-09-30 15:26 - 2013-08-13 20:55 - 000765952 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4FanAction.dll
2014-09-30 15:26 - 2013-08-13 20:55 - 000776704 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4TurboVEVOAction.dll
2014-09-30 15:24 - 2013-07-31 20:05 - 005773588 _____ () C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzULIB.dll
2014-09-30 15:24 - 2010-06-21 15:21 - 000208896 _____ () C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\ImageHelper.dll
2014-09-30 15:09 - 2018-04-01 20:37 - 000027136 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\PEbiosinterface32.dll
2014-09-30 15:09 - 2013-05-07 09:45 - 000104448 ____N () C:\Program Files (x86)\ASUS\AXSP\1.01.02\ATKEX.dll
2018-04-01 05:25 - 2018-04-01 05:25 - 067126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2018-04-01 05:24 - 2018-04-01 05:24 - 000275160 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2017-10-11 16:38 - 2000-01-01 02:00 - 001242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Program Files (x86)\Desktop-Reminder 2:{66007900-6900-6800-6200-470032003600} [192]
AlternateDataStreams: C:\Program Files (x86)\Desktop-Reminder 2:{67005600-3500-4800-7000-70004A006400} [748]
AlternateDataStreams: C:\Users\Peppe:Heroes & Generals [38]
AlternateDataStreams: C:\Users\Peppe\Documents\Certificato.jpeg:3or4kl4x13tuuug3Byamue2s4b [81]
AlternateDataStreams: C:\Users\Peppe\Documents\Certificato.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Peppe\Documents\DOC.jpeg:3or4kl4x13tuuug3Byamue2s4b [81]
AlternateDataStreams: C:\Users\Peppe\Documents\DOC.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Public\AppData:CSM [464]
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\.DEFAULT\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\.DEFAULT\...\freerealms.com -> freerealms.com
IE trusted site: HKU\.DEFAULT\...\soe.com -> soe.com
IE trusted site: HKU\.DEFAULT\...\sony.com -> sony.com
IE trusted site: HKU\S-1-5-19\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-19\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-19\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-19\...\sony.com -> sony.com
IE trusted site: HKU\S-1-5-20\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-20\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-20\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-20\...\sony.com -> sony.com
IE trusted site: HKU\S-1-5-21-2921988991-613299845-3104574246-1000\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-2921988991-613299845-3104574246-1000\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-2921988991-613299845-3104574246-1000\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-2921988991-613299845-3104574246-1000\...\sony.com -> sony.com
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2016-03-23 19:48 - 2018-04-01 06:25 - 000000511 _____ C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 mpa.one.microsoft.com
0.0.0.0 pubads.g.doubleclick.net
0.0.0.0 securepubads.g.doubleclick.net
0.0.0.0 pubads.g.doubleclick.net
0.0.0.0 securepubads.g.doubleclick.net
0.0.0.0
www.googletagservices.com
0.0.0.0 gads.pubmatic.com
0.0.0.0 ads.pubmatic.com
0.0.0.0 spclient.wg.spotify.com
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2921988991-613299845-3104574246-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Peppe\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
MpsSvc => Firewall Service is not running.
bfe => Firewall Service is not running.
==================== MSCONFIG/TASK MANAGER disabled items ==
MSCONFIG\Services: avast! Antivirus => 2
MSCONFIG\Services: BFE => 2
MSCONFIG\startupreg: Adobe Creative Cloud => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AvastUI.exe => "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} => "C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: NBKeyScan => "C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: Spoti15Autostart => "C:\Users\Peppe\Downloads\Spoti15_fix_by_nima158\Release\Spoti15.exe" -autostart
MSCONFIG\startupreg: Spotify => "C:\Users\Peppe\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Peppe\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [TCP Query User{A3A59915-427B-494E-A622-82A59F4DA8BD}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [UDP Query User{64E16E3D-C230-4491-8D5C-C2A5F9E5056B}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [{9F26BE04-A505-4ABF-919D-AD642F27D51B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{5D81436F-15FB-4143-99C8-DB261813F64B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{4F1C2A98-ABB7-4575-914B-606C0AA9587C}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{B3087EB8-F16E-45EE-9302-CEC891FC9C29}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{ADF88EC1-A8F0-499C-960F-2FFBF618EFDD}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{D2B4B39B-08A1-4A5B-BCF9-AE941F330A97}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{225B4C9A-F34D-4B7B-A6B0-9325D1776C18}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{63950430-0921-4779-9FA9-053A0E421B51}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{4D72CD56-2E16-4316-AD2F-A85CEBD0E05E}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{7A7B648F-36AC-4213-A91B-88872A590AB0}] => (Allow) C:\Program Files (x86)\Research In Motion\BlackBerry Desktop\Rim.Desktop.exe
FirewallRules: [{8D46AAEE-D439-48BC-9247-C24EA9E9905B}] => (Allow) C:\Program Files (x86)\Research In Motion\BlackBerry Desktop\Rim.Desktop.exe
FirewallRules: [{2F6FDF15-D135-4909-BF3C-5AF866BB97AF}] => (Allow) LPort=4481
FirewallRules: [{FA0DB5FA-25C0-45A7-A522-1D414818A12B}] => (Allow) LPort=4481
FirewallRules: [{A892D951-F776-4DE4-B8B8-61CFF450DAA3}] => (Allow) LPort=4482
FirewallRules: [{BF3E8268-5D92-4949-903D-446E3D373AA1}] => (Allow) LPort=4482
FirewallRules: [{E7E639A6-305A-473B-8384-584BAAFD8912}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{D61D3BAC-5ECC-48BA-9F2D-16B24C159237}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [TCP Query User{1B4627E5-3559-4A53-A14F-4808F7263E77}C:\games\hammerwatch v1.3\hammerwatch.exe] => (Allow) C:\games\hammerwatch v1.3\hammerwatch.exe
FirewallRules: [UDP Query User{5E6A5FA4-2169-48C2-88B6-749E8DB2395B}C:\games\hammerwatch v1.3\hammerwatch.exe] => (Allow) C:\games\hammerwatch v1.3\hammerwatch.exe
FirewallRules: [TCP Query User{55ACBA91-B223-4FD7-8862-793CC72A47FD}C:\users\peppe\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\peppe\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{F3A79791-5DA0-49FD-A6A2-1009648B510E}C:\users\peppe\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\peppe\appdata\local\akamai\netsession_win.exe
FirewallRules: [{51FDE9D4-A93B-4123-8303-1D960759709C}] => (Block) C:\users\peppe\appdata\local\akamai\netsession_win.exe
FirewallRules: [{DA910F7A-8C41-4688-B933-4B0F65299C98}] => (Block) C:\users\peppe\appdata\local\akamai\netsession_win.exe
FirewallRules: [{0454318D-3FE4-4FA8-8931-A99D8A27EF22}] => (Allow) C:\ProgramData\NexonEU\NGM\NGM.exe
FirewallRules: [{8C18AFBE-A306-4DFA-A461-CB98423960B5}] => (Allow) C:\ProgramData\NexonEU\NGM\NGM.exe
FirewallRules: [{53E59F4A-37F9-47A6-B8AB-F27DDDD4D3C1}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe
FirewallRules: [{C8F88B47-E566-41EF-B047-5B91C0A2E337}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe
FirewallRules: [{8C753392-D2C2-461C-8659-2AF2B09319A7}] => (Allow) C:\Users\Peppe\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{B47133E7-0EB5-464D-9B7F-BEACFDCBDF4C}] => (Allow) C:\Users\Peppe\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{92A2FF91-B16A-415F-B2EF-A654457F5E44}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{1142F39E-2025-4078-9DAE-5632983F608D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{4D8EA730-DC2A-489D-A5F3-5586926F4DEA}C:\users\peppe\downloads\hko_download_manager.exe] => (Allow) C:\users\peppe\downloads\hko_download_manager.exe
FirewallRules: [UDP Query User{7B346264-1CD7-4EEC-9567-6B7F8E228619}C:\users\peppe\downloads\hko_download_manager.exe] => (Allow) C:\users\peppe\downloads\hko_download_manager.exe
FirewallRules: [{FFCAFFFF-EDDF-4F07-A09B-4348A4E258E8}] => (Allow) C:\Program Files (x86)\GameforgeLive\gfl_client.exe
FirewallRules: [{DE892CE3-1897-4C67-AC36-54BA20D93958}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{F93DB709-E6FA-4AAF-8F24-3B47AFEAE821}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{1AC1AD2D-B6D5-4137-B489-7E76DA727340}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{DC1D5F44-B451-4684-8110-D8EF51CD8891}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [TCP Query User{FAE21213-D420-44F2-AAFC-24EF77AE3859}C:\users\peppe\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\peppe\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{B93C6F4C-8CC5-4E85-84E5-F132F16D1B8F}C:\users\peppe\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\peppe\appdata\roaming\spotify\spotify.exe
FirewallRules: [{23384FD3-E699-47B1-ACF7-0B0654EBC160}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{34B4986E-8092-4FCB-8DE8-FD0779B4BFFB}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{A6907BB7-AD03-4227-86D6-2A45F2BCA1FA}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{F64BB74C-AE97-4D7E-A7D1-A4E501E1803F}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{7D29240D-05B6-4F27-A5E7-B4896EBFC6C6}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{60F791D7-298A-46BF-8028-D07C47630670}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Restore Points =========================
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (04/01/2018 07:16:27 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Errore del servizio Copia Shadow del volume: errore imprevisto durante la ricerca dell'interfaccia IVssWriterCallback. hr = 0x80070005, Accesso negato.
.
L'errore è spesso causato da impostazioni di sicurezza non corrette nel processo di scrittura o richiedente.
Operazione:
Raccolta dei dati del processo di scrittura
Contesto:
ID della classe del processo di scrittura: {e8132975-6f93-4464-a53e-1050253ae220}
Nome del processo di scrittura: System Writer
ID dell'istanza del processo di scrittura: {9746529f-53b9-4f10-aa3b-f0efdd5d2146}
Error: (04/01/2018 02:01:05 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Il programma Cadavers.exe versione 9.5.8.166 non interagisce più con Windows ed è stato chiuso. Per vedere se sono disponibili ulteriori informazioni sul problema, verificare la cronologia del problema in Centro operativo nel Pannello di controllo.
ID processo: 1c50
Ora di avvio: 01d3c9af2e792f65
Ora di chiusura: 3
Percorso applicazione: C:\Users\Peppe\AppData\Local\Cadavers.exe
ID segnalazione: 5437df03-35a4-11e8-97b5-00ac31a303cd
Error: (04/01/2018 12:15:59 PM) (Source: ESENT) (EventID: 489) (User: )
Description: CCleaner64 (1964) Tentativo di apertura del file "C:\Users\Peppe\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat" per accesso in sola lettura non riuscito con errore di sistema 32 (0x00000020): "Impossibile accedere al file. Il file è utilizzato da un altro processo. ". L'operazione di apertura file non verrà effettuata con errore -1032 (0xfffffbf8).
Error: (01/01/2000 12:05:59 AM) (Source: TracerX - SoundSwitch) (EventID: 10004) (User: )
Description: 23:05:58.862 <null> SoundSwitch+ Exception while getting release Exception type: System.Net.WebException
Message: The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel.
Source: System
StackTrace:
at System.Net.HttpWebRequest.EndGetResponse(IAsyncResult asyncResult)
at System.Net.WebClient.GetWebResponse(WebRequest request, IAsyncResult result)
at System.Net.WebClient.DownloadBitsResponseCallback(IAsyncResult result)
Inner Exception type: System.Security.Authentication.AuthenticationException
Message: The remote certificate is invalid according to the validation procedure.
Source: System
StackTrace:
at System.Net.TlsStream.EndWrite(IAsyncResult asyncResult)
at System.Net.ConnectStream.WriteHeadersCallback(IAsyncResult ar)
Error: (04/01/2018 04:19:07 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Il programma Explorer.EXE versione 6.1.7601.17567 non interagisce più con Windows ed è stato chiuso. Per vedere se sono disponibili ulteriori informazioni sul problema, verificare la cronologia del problema in Centro operativo nel Pannello di controllo.
ID processo: 1390
Ora di avvio: 01d3c95ef8043115
Ora di chiusura: 60000
Percorso applicazione: C:\Windows\Explorer.EXE
ID segnalazione: d4f02294-3552-11e8-af03-00ac31a303cd
Error: (04/01/2018 03:54:23 AM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: Impossibile inizializzare l'indice.
Dettagli:
Il catalogo dell'indice del contenuto è danneggiato. (HRESULT : 0xc0041801) (0xc0041801)
Error: (04/01/2018 03:54:23 AM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Impossibile inizializzare l'applicazione.
Contesto: applicazione Windows
Dettagli:
Il catalogo dell'indice del contenuto è danneggiato. (HRESULT : 0xc0041801) (0xc0041801)
Error: (04/01/2018 03:54:23 AM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Impossibile inizializzare l'oggetto Gatherer.
Contesto: applicazione Windows, catalogo SystemIndex
Dettagli:
Il catalogo dell'indice del contenuto è danneggiato. (HRESULT : 0xc0041801) (0xc0041801)
System errors:
=============
Error: (04/01/2018 08:39:17 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Le impostazioni delle autorizzazioni predefinite del computer non concedono l'autorizzazione di Attivazione Locale per l'applicazione server COM con CLSID
{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}
e APPID
{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}
all'utente NT AUTHORITY\SID SERVIZIO LOCALE (S-1-5-19) dall'indirizzo LocalHost (tramite LRPC). Per modificare tale autorizzazione di sicurezza, è possibile utilizzare lo strumento amministrativo Servizi componenti.
Error: (04/01/2018 08:38:44 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: All'avvio non è stato possibile caricare i seguenti driver:
VBoxNetAdp
Error: (04/01/2018 08:38:33 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Il servizio Origin Web Helper Service non è stato avviato per il seguente errore:
Il servizio non ha risposto alla richiesta di avvio o controllo nel tempo previsto.
Error: (04/01/2018 08:38:33 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Timeout (30000 millisecondi) durante l'attesa della connessione del servizio Origin Web Helper Service.
Error: (04/01/2018 08:38:01 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Il servizio Mobizen plugin non è stato avviato per il seguente errore:
Impossibile trovare il file specificato.
Error: (04/01/2018 08:37:59 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Servizio Intel(R) Host Controller Interface (non-volatile memory) terminato con l'errore:
Impossibile trovare il modulo specificato.
Error: (04/01/2018 08:37:41 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Il servizio Windows Firewall dipende dal servizio BFE (Base Filtering Engine) che non è stato avviato per il seguente errore:
Impossibile avviare il servizio. Il servizio è disabilitato oppure non è associato ad alcun dispositivo attivo.
Error: (04/01/2018 08:29:11 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Il servizio aswbIDSAgent non è stato avviato per il seguente errore:
Il servizio non ha risposto alla richiesta di avvio o controllo nel tempo previsto.
Windows Defender:
===================================
Date: 2015-04-16 02:37:00.595
Description:
Windows Defender: rilevato spyware o altro software potenzialmente indesiderato.
Ulteriori informazioni sono riportate di seguito:
http://go.microsoft.com/fwlink/?linkid=37020&name=BrowserModifier:Win32/IeEnablerCby&threatid=207189
Nome:BrowserModifier:Win32/IeEnablerCby
ID:207189
Gravità:Alto
Categoria:Modificatore di browser
Percorso trovato:file:C:\Program Files (x86)\I - Cinema\3a2eaa25-d3de-4ad1-a29f-9e0869efb2ec-2.exe;file:C:\Program Files (x86)\TotalPlusHD-3.1V30.11\12a137b8-f9ad-4e08-85fd-7f50e18b898f-2.exe;file:C:\Windows\System32\Tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-2;file:C:\Windows\System32\Tasks\3a2eaa25-d3de-4ad1-a29f-9e0869efb2ec-2;file:C:\Windows\Tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-2.job;file:C:\Windows\Tasks\3a2eaa25-d3de-4ad1-a29f-9e0869efb2ec-2.job;process:pid:4212;process:pid:6432;process:pid:7536;taskscheduler:C:\Windows\System32\Tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-2;taskscheduler:C:\Windows\System32\Tasks\3a2eaa25-d3de-4ad1-a29f-9e0869efb2ec-2;taskscheduler:C:\Windows\Tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-2.job;taskscheduler:C:\Windows\Tasks\3a2eaa25-d3de-4ad1-a29f-9e0869efb2ec-2.job
Tipo rilevamento:Concreta
Origine rilevamento:Sistema
Stato:Sconosciuto
Utente:NT AUTHORITY\SYSTEM
Nome processo:
Date: 2015-04-15 20:39:00.772
Description:
Windows Defender: rilevato spyware o altro software potenzialmente indesiderato.
Ulteriori informazioni sono riportate di seguito:
http://go.microsoft.com/fwlink/?linkid=37020&name=BrowserModifier:Win32/IeEnablerCby&threatid=207189
Nome:BrowserModifier:Win32/IeEnablerCby
ID:207189
Gravità:Alto
Categoria:Modificatore di browser
Percorso trovato:file:C:\Program Files (x86)\I - Cinema\3a2eaa25-d3de-4ad1-a29f-9e0869efb2ec-2.exe;file:C:\Program Files (x86)\TotalPlusHD-3.1V30.11\12a137b8-f9ad-4e08-85fd-7f50e18b898f-2.exe;file:C:\Windows\System32\Tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-2;file:C:\Windows\System32\Tasks\3a2eaa25-d3de-4ad1-a29f-9e0869efb2ec-2;file:C:\Windows\Tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-2.job;file:C:\Windows\Tasks\3a2eaa25-d3de-4ad1-a29f-9e0869efb2ec-2.job;process:pid:6432;process:pid:7536;taskscheduler:C:\Windows\System32\Tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-2;taskscheduler:C:\Windows\System32\Tasks\3a2eaa25-d3de-4ad1-a29f-9e0869efb2ec-2;taskscheduler:C:\Windows\Tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-2.job;taskscheduler:C:\Windows\Tasks\3a2eaa25-d3de-4ad1-a29f-9e0869efb2ec-2.job
Tipo rilevamento:Concreta
Origine rilevamento:Sistema
Stato:Sconosciuto
Utente:NT AUTHORITY\SYSTEM
Nome processo:
Date: 2015-04-15 20:37:00.653
Description:
Windows Defender: rilevato spyware o altro software potenzialmente indesiderato.
Ulteriori informazioni sono riportate di seguito:
http://go.microsoft.com/fwlink/?linkid=37020&name=BrowserModifier:Win32/IeEnablerCby&threatid=207189
Nome:BrowserModifier:Win32/IeEnablerCby
ID:207189
Gravità:Alto
Categoria:Modificatore di browser
Percorso trovato:file:C:\Program Files (x86)\I - Cinema\3a2eaa25-d3de-4ad1-a29f-9e0869efb2ec-2.exe;file:C:\Program Files (x86)\TotalPlusHD-3.1V30.11\12a137b8-f9ad-4e08-85fd-7f50e18b898f-2.exe;file:C:\Windows\System32\Tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-2;file:C:\Windows\System32\Tasks\3a2eaa25-d3de-4ad1-a29f-9e0869efb2ec-2;file:C:\Windows\Tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-2.job;file:C:\Windows\Tasks\3a2eaa25-d3de-4ad1-a29f-9e0869efb2ec-2.job;process:pid:7536;taskscheduler:C:\Windows\System32\Tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-2;taskscheduler:C:\Windows\System32\Tasks\3a2eaa25-d3de-4ad1-a29f-9e0869efb2ec-2;taskscheduler:C:\Windows\Tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-2.job;taskscheduler:C:\Windows\Tasks\3a2eaa25-d3de-4ad1-a29f-9e0869efb2ec-2.job
Tipo rilevamento:Concreta
Origine rilevamento:Sistema
Stato:Sconosciuto
Utente:NT AUTHORITY\SYSTEM
Nome processo:
Date: 2015-04-15 11:17:40.482
Description:
Windows Defender: rilevato spyware o altro software potenzialmente indesiderato.
Ulteriori informazioni sono riportate di seguito:
http://go.microsoft.com/fwlink/?linkid=37020&name=BrowserModifier:Win32/IeEnablerCby&threatid=207189
Nome:BrowserModifier:Win32/IeEnablerCby
ID:207189
Gravità:Alto
Categoria:Modificatore di browser
Percorso trovato:file:C:\Program Files (x86)\I - Cinema\3a2eaa25-d3de-4ad1-a29f-9e0869efb2ec-2.exe;file:C:\Program Files (x86)\TotalPlusHD-3.1V30.11\12a137b8-f9ad-4e08-85fd-7f50e18b898f-2.exe;file:C:\Windows\System32\Tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-2;file:C:\Windows\System32\Tasks\3a2eaa25-d3de-4ad1-a29f-9e0869efb2ec-2;file:C:\Windows\Tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-2.job;file:C:\Windows\Tasks\3a2eaa25-d3de-4ad1-a29f-9e0869efb2ec-2.job;taskscheduler:C:\Windows\System32\Tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-2;taskscheduler:C:\Windows\System32\Tasks\3a2eaa25-d3de-4ad1-a29f-9e0869efb2ec-2;taskscheduler:C:\Windows\Tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-2.job;taskscheduler:C:\Windows\Tasks\3a2eaa25-d3de-4ad1-a29f-9e0869efb2ec-2.job
Tipo rilevamento:Concreta
Origine rilevamento:Sistema
Stato:Sconosciuto
Utente:NT AUTHORITY\SYSTEM
Nome processo:
Date: 2015-04-15 02:39:01.254
Description:
Windows Defender: rilevato spyware o altro software potenzialmente indesiderato.
Ulteriori informazioni sono riportate di seguito:
http://go.microsoft.com/fwlink/?linkid=37020&name=BrowserModifier:Win32/IeEnablerCby&threatid=207189
Nome:BrowserModifier:Win32/IeEnablerCby
ID:207189
Gravità:Alto
Categoria:Modificatore di browser
Percorso trovato:file:C:\Program Files (x86)\I - Cinema\3a2eaa25-d3de-4ad1-a29f-9e0869efb2ec-2.exe;file:C:\Program Files (x86)\TotalPlusHD-3.1V30.11\12a137b8-f9ad-4e08-85fd-7f50e18b898f-2.exe;file:C:\Windows\System32\Tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-2;file:C:\Windows\System32\Tasks\3a2eaa25-d3de-4ad1-a29f-9e0869efb2ec-2;file:C:\Windows\Tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-2.job;file:C:\Windows\Tasks\3a2eaa25-d3de-4ad1-a29f-9e0869efb2ec-2.job;process:pid:4424;process:pid:7588;taskscheduler:C:\Windows\System32\Tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-2;taskscheduler:C:\Windows\System32\Tasks\3a2eaa25-d3de-4ad1-a29f-9e0869efb2ec-2;taskscheduler:C:\Windows\Tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-2.job;taskscheduler:C:\Windows\Tasks\3a2eaa25-d3de-4ad1-a29f-9e0869efb2ec-2.job
Tipo rilevamento:Concreta
Origine rilevamento:Sistema
Stato:Sconosciuto
Utente:NT AUTHORITY\SYSTEM
Nome processo:
CodeIntegrity:
===================================
Date: 2018-04-01 18:37:09.290
Description:
Impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\Users\Peppe\AppData\Local\Temp\EverestDriver.sys. Impossibile trovare l'hash del file nel sistema. Causa possibile: installazione di un file danneggiato o con firma non corretta in seguito a una modifica hardware o software o malware di origine sconosciuta.
Date: 2018-04-01 18:37:09.249
Description:
Impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\Users\Peppe\AppData\Local\Temp\EverestDriver.sys. Impossibile trovare l'hash del file nel sistema. Causa possibile: installazione di un file danneggiato o con firma non corretta in seguito a una modifica hardware o software o malware di origine sconosciuta.
Date: 2018-04-01 18:37:09.094
Description:
Impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64. Impossibile trovare l'hash del file nel sistema. Causa possibile: installazione di un file danneggiato o con firma non corretta in seguito a una modifica hardware o software o malware di origine sconosciuta.
Date: 2018-04-01 18:37:09.056
Description:
Impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64. Impossibile trovare l'hash del file nel sistema. Causa possibile: installazione di un file danneggiato o con firma non corretta in seguito a una modifica hardware o software o malware di origine sconosciuta.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-4590 CPU @ 3.30GHz
Percentage of memory in use: 34%
Total physical RAM: 8130.15 MB
Available physical RAM: 5295.71 MB
Total Virtual: 16258.5 MB
Available Virtual: 12316.51 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:931.41 GB) (Free:209.73 GB) NTFS
\\?\Volume{ef14e60e-4896-11e4-992e-806e6f6e6963}\ (Riservato per il sistema) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 6BB9EC00)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================