Avira sparito e lentezza sospetta!! [Archivio]

mtguido

09-11-2013, 00:16

Ho fatto una scansione con malwarebytes e una con hitman pro.

Questi sono i log, credo che fossi molto infetto.

Che ne dite ora?

MALWAREBYTES

Malwarebytes Anti-Malware (Prova) 1.75.0.1300
www.malwarebytes.org

Versione database: v2013.11.08.05

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Guido :: GUIDO-PC [amministratore]

Protezione: Disattivata

08/11/2013 14:55:12
mbam-log-2013-11-08 (14-55-12).txt

Tipo di scansione: Scansione completa (C:\|E:\|)
Opzioni di scansione attive: Memoria | Esecuzione automatica | Registro | File di sistema | Euristica/Extra | Euristica/Shuriken | PUP | PUM
Opzioni di scansione disattivate: P2P
Elementi esaminati: 1016794
Tempo impiegato: 4 ore, 10 minuti, 50 secondi

Processi rilevati in memoria: 4
C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe (PUP.Optional.SweetIM) -> 1996 -> Verrà eliminato al riavvio.
C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe (PUP.Optional.SweetIM) -> 2132 -> Verrà eliminato al riavvio.
C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe (PUP.Optional.Mediasoft) -> 3384 -> Verrà eliminato al riavvio.
C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe (PUP.Optional.Mediasoft) -> 3472 -> Verrà eliminato al riavvio.

Moduli di memoria rilevati: 14
C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.dll (Trojan.BProtector) -> Verrà eliminato al riavvio.
C:\Program Files (x86)\SweetIM\Messenger\mgAdaptersProxy.dll (PUP.Optional.SweetIM) -> Verrà eliminato al riavvio.
C:\Program Files (x86)\SweetIM\Messenger\mgUpdateSupport.dll (PUP.Optional.SweetIM) -> Verrà eliminato al riavvio.
C:\Program Files (x86)\SweetIM\Messenger\mgsimcommon.dll (PUP.Optional.SweetIM) -> Verrà eliminato al riavvio.
C:\Program Files (x86)\SweetIM\Messenger\mgcommon.dll (PUP.Optional.SweetIM) -> Verrà eliminato al riavvio.
C:\Program Files (x86)\SweetIM\Messenger\mgcommunication.dll (PUP.Optional.SweetIM) -> Verrà eliminato al riavvio.
C:\Program Files (x86)\SweetIM\Messenger\mghooking.dll (PUP.Optional.SweetIM) -> Verrà eliminato al riavvio.
C:\Program Files (x86)\SweetIM\Messenger\mgxml_wrapper.dll (PUP.Optional.SweetIM) -> Verrà eliminato al riavvio.
C:\Program Files (x86)\SweetIM\Messenger\mgconfig.dll (PUP.Optional.SweetIM) -> Verrà eliminato al riavvio.
C:\Program Files (x86)\SweetIM\Communicator\mgcommon.dll (PUP.Optional.SweetIM) -> Verrà eliminato al riavvio.
C:\Program Files (x86)\SweetIM\Communicator\mgxml_wrapper.dll (PUP.Optional.SweetIM) -> Verrà eliminato al riavvio.
C:\Program Files (x86)\SweetIM\Communicator\mgcommunication.dll (PUP.Optional.SweetIM) -> Verrà eliminato al riavvio.
C:\Program Files (x86)\SweetIM\Communicator\mgsimcommon.dll (PUP.Optional.SweetIM) -> Verrà eliminato al riavvio.
C:\Windows\SysWOW64\jmdp\lmrn.dll (PUP.Optional.Sweetpacks) -> Verrà eliminato al riavvio.

Chiavi di registro rilevate: 100
HKLM\SYSTEM\CurrentControlSet\Services\BitGuard (PUP.Optional.Mediasoft) -> Spostato in quarantena ed eliminato con successo.
HKCR\CLSID\{4FCB4630-2A1C-4AA1-B422-345E8DC8A6DE} (PUP.Optional.Delta) -> Spostato in quarantena ed eliminato con successo.
HKCR\escort.escortIEPane.1 (PUP.Optional.Delta) -> Spostato in quarantena ed eliminato con successo.
HKCR\escort.escortIEPane (PUP.Optional.Delta) -> Spostato in quarantena ed eliminato con successo.
HKCR\CLSID\{C1AF5FA5-852C-4C90-812E-A7F75E011D87} (PUP.Optional.Delta) -> Spostato in quarantena ed eliminato con successo.
HKCR\delta.deltaHlpr.1 (PUP.Optional.Delta) -> Spostato in quarantena ed eliminato con successo.
HKCR\delta.deltaHlpr (PUP.Optional.Delta) -> Spostato in quarantena ed eliminato con successo.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1AF5FA5-852C-4C90-812E-A7F75E011D87} (PUP.Optional.Delta) -> Spostato in quarantena ed eliminato con successo.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87} (PUP.Optional.Delta) -> Verrà eliminato al riavvio.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1AF5FA5-852C-4C90-812E-A7F75E011D87} (PUP.Optional.Delta) -> Spostato in quarantena ed eliminato con successo.
HKCR\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) -> Spostato in quarantena ed eliminato con successo.
HKCR\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) -> Spostato in quarantena ed eliminato con successo.
HKCR\Interface\{EEE6C358-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) -> Spostato in quarantena ed eliminato con successo.
HKCR\SWEETIE.IEToolbar.1 (PUP.Optional.SweetPacks) -> Spostato in quarantena ed eliminato con successo.
HKCR\SWEETIE.IEToolbar (PUP.Optional.SweetPacks) -> Spostato in quarantena ed eliminato con successo.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) -> Verrà eliminato al riavvio.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) -> Spostato in quarantena ed eliminato con successo.
HKCR\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) -> Spostato in quarantena ed eliminato con successo.
HKCR\Toolbar3.SWEETIE.1 (PUP.Optional.SweetPacks) -> Spostato in quarantena ed eliminato con successo.
HKCR\Toolbar3.SWEETIE (PUP.Optional.SweetPacks) -> Spostato in quarantena ed eliminato con successo.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) -> Spostato in quarantena ed eliminato con successo.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) -> Verrà eliminato al riavvio.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) -> Spostato in quarantena ed eliminato con successo.
HKCR\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1} (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
HKCR\TypeLib\{35C1605E-438B-4D64-AAB1-8885F097A9B1} (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
HKCR\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3} (PUP.Optional.Delta.A) -> Spostato in quarantena ed eliminato con successo.
HKCR\CLSID\{261DD098-8A3E-43D4-87AA-63324FA897D8} (PUP.Optional.Delta) -> Spostato in quarantena ed eliminato con successo.
HKCR\TypeLib\{39CB8175-E224-4446-8746-00566302DF8D} (PUP.Optional.Delta) -> Spostato in quarantena ed eliminato con successo.
HKCR\esrv.deltaESrvc.1 (PUP.Optional.Delta) -> Spostato in quarantena ed eliminato con successo.
HKCR\esrv.deltaESrvc (PUP.Optional.Delta) -> Spostato in quarantena ed eliminato con successo.
HKCR\CLSID\{291BCCC1-6890-484a-89D3-318C928DAC1*** (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
HKCR\esrv.BabylonESrvc.1 (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
HKCR\esrv.BabylonESrvc (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
HKCR\CLSID\{82E1477C-B154-48D3-9891-33D83C26BCD3} (PUP.Optional.Delta.A) -> Spostato in quarantena ed eliminato con successo.
HKCR\CLSID\{5018CFD2-804D-4C99-9F81-25EAEA2769DE} (PUP.Optional.Delta.A) -> Spostato in quarantena ed eliminato con successo.
HKCR\Softonic.dskBnd.1 (PUP.Optional.Delta.A) -> Spostato in quarantena ed eliminato con successo.
HKCR\Softonic.dskBnd (PUP.Optional.Delta.A) -> Spostato in quarantena ed eliminato con successo.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{5018CFD2-804D-4C99-9F81-25EAEA2769DE} (PUP.Optional.Delta.A) -> Spostato in quarantena ed eliminato con successo.
HKCR\delta.deltadskBnd.1 (PUP.Optional.Delta.A) -> Spostato in quarantena ed eliminato con successo.
HKCR\delta.deltadskBnd (PUP.Optional.Delta.A) -> Spostato in quarantena ed eliminato con successo.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3} (PUP.Optional.Delta.A) -> Verrà eliminato al riavvio.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3} (PUP.Optional.Delta.A) -> Spostato in quarantena ed eliminato con successo.
HKCR\CLSID\{B8276A94-891D-453C-9FF3-715C042A2575} (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
HKCR\b (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
HKCR\Typelib\{4599D05A-D545-4069-BB42-5895B4EAE05*** (PUP.Optional.Delta.A) -> Spostato in quarantena ed eliminato con successo.
HKCR\Interface\{1231839B-064E-4788-B865-465A1B5266FD} (PUP.Optional.Delta.A) -> Spostato in quarantena ed eliminato con successo.
HKCR\Typelib\{6E8BF012-2C85-4834-B10A-1B31AF173D70} (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
HKCR\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A} (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{348C2DF3-1191-4C3E-92A6-B3A89A9D9C85} (PUP.Optional.Delta.A) -> Spostato in quarantena ed eliminato con successo.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8375D9C8-634F-4ECB-8CF5-C7416BA5D542} (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
HKCR\CLSID\{FFB9ADCB-8C79-4C29-81D3-74D46A93D370} (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
HKCR\CLSID\{44B50C01-4993-48E2-ADEE-D812BAE2E9A2} (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
HKCR\SoftonicApp.appCore.1 (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
HKCR\SoftonicApp.appCore (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
HKCR\bbylnApp.appCore.1 (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
HKCR\bbylnApp.appCore (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
HKCR\CLSID\{98889811-442D-49dd-99D7-DC866BE87DBC} (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
HKCR\Babylon.dskBnd.1 (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
HKCR\Babylon.dskBnd (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC} (PUP.Optional.BabylonToolBar.A) -> Verrà eliminato al riavvio.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC} (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
HKCR\CLSID\{E97A663B-81A6-49C5-A6D3-BCB05BA1DE26} (PUP.Optional.Delta) -> Spostato in quarantena ed eliminato con successo.
HKCR\delta.deltaappCore.1 (PUP.Optional.Delta) -> Spostato in quarantena ed eliminato con successo.
HKCR\delta.deltaappCore (PUP.Optional.Delta) -> Spostato in quarantena ed eliminato con successo.
HKCR\CLSID\{86838207-681D-469D-9511-D0DCC6F19F9*** (PUP.Optional.Delta) -> Spostato in quarantena ed eliminato con successo.
HKCR\d (PUP.Optional.Delta) -> Spostato in quarantena ed eliminato con successo.
HKCR\CLSID\{82AC53B4-164C-4B07-A016-437A8388B81A} (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
HKCR\TypeLib\{4D3B167E-5FD8-4276-8FD7-9DF19C1E4D19} (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
HKCR\Interface\{A439801C-961D-452C-AB42-7848E9CBD289} (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
HKCR\MgMediaPlayer.GifAnimator.1 (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
HKCR\MgMediaPlayer.GifAnimator (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
HKCR\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
HKCR\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
HKCR\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
HKCR\SweetIM_URLSearchHook.ToolbarURLSearchHook.1 (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
HKCR\SweetIM_URLSearchHook.ToolbarURLSearchHook (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693} (PUP.Optional.Mediasoft) -> Spostato in quarantena ed eliminato con successo.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller (PUP.Optional.Somoto.A) -> Spostato in quarantena ed eliminato con successo.
HKCU\SOFTWARE\BabylonToolbar (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
HKCU\SOFTWARE\DataMngr_Toolbar (PUP.Optional.DataMngr.A) -> Spostato in quarantena ed eliminato con successo.
HKCU\SOFTWARE\DELTA\DELTA (PUP.Optional.Delta.A) -> Spostato in quarantena ed eliminato con successo.
HKCU\SOFTWARE\WNLT (PUP.Optional.InstallBrain.A) -> Spostato in quarantena ed eliminato con successo.
HKCU\Software\DataMngr (PUP.Optional.DataMngr.A) -> Spostato in quarantena ed eliminato con successo.
HKCU\Software\BabSolution\Updater (PUP.Optional.Babylon.A) -> Spostato in quarantena ed eliminato con successo.
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings (PUP.Optional.BProtector.A) -> Verrà eliminato al riavvio.
HKCU\SOFTWARE\SWEETIM (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
HKLM\SOFTWARE\BabylonToolbar (PUP.Optional.Babylon.A) -> Spostato in quarantena ed eliminato con successo.
HKLM\SOFTWARE\Delta\delta\Instl (PUP.Optional.Delta.A) -> Spostato in quarantena ed eliminato con successo.
HKLM\SOFTWARE\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde (PUP.Optional.Delta.A) -> Spostato in quarantena ed eliminato con successo.
HKLM\SYSTEM\CurrentControlSet\Services\IBUpdaterService (Adware.InstallBrain) -> Spostato in quarantena ed eliminato con successo.
HKLM\SOFTWARE\SWEETIM (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\delta (PUP.Optional.Delta.A) -> Spostato in quarantena ed eliminato con successo.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
HKCR\CLSID\{2EECD738-5844-4a99-B4B6-146BF802613*** (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
HKCR\bbylntlbr.bbylntlbrHlpr.1 (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
HKCR\bbylntlbr.bbylntlbrHlpr (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4A99-B4B6-146BF802613*** (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613*** (PUP.Optional.BabylonToolBar.A) -> Verrà eliminato al riavvio.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613*** (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WNLT (PUP.Optional.InstallBrain.A) -> Spostato in quarantena ed eliminato con successo.

Valori di registro rilevati: 15
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|SweetIM (PUP.Optional.SweetIM) -> Dati: C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe -> Spostato in quarantena ed eliminato con successo.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|Sweetpacks Communicator (PUP.Optional.SweetIM) -> Dati: C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe -> Spostato in quarantena ed eliminato con successo.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar|{EEE6C35B-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) -> Dati: -> Spostato in quarantena ed eliminato con successo.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar|{5018CFD2-804D-4C99-9F81-25EAEA2769DE} (PUP.Optional.Delta.A) -> Dati: Softonic Toolbar -> Spostato in quarantena ed eliminato con successo.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar|{82E1477C-B154-48D3-9891-33D83C26BCD3} (PUP.Optional.Delta.A) -> Dati: Delta Toolbar -> Spostato in quarantena ed eliminato con successo.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{82E1477C-B154-48D3-9891-33D83C26BCD3} (PUP.Optional.Delta.A) -> Dati: -> Spostato in quarantena ed eliminato con successo.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar|{98889811-442D-49DD-99D7-DC866BE87DBC} (PUP.Optional.BabylonToolBar.A) -> Dati: Babylon Toolbar -> Verrà eliminato al riavvio.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs|C:\PROGRAM FILES (X86)\SWEETIM\TOOLBARS\INTERNET EXPLORER\MGHELPERAPP.EXE (PUP.Optional.SweetIM) -> Dati: 1 -> Spostato in quarantena ed eliminato con successo.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs|C:\PROGRAM FILES (X86)\SWEETIM\TOOLBARS\INTERNET EXPLORER\MGTOOLBARPROXY.DLL (PUP.Optional.SweetIM) -> Dati: 1 -> Spostato in quarantena ed eliminato con successo.
HKCU\SOFTWARE\Delta\Delta|tlbrSrchUrl (PUP.Optional.Delta.A) -> Dati: -> Spostato in quarantena ed eliminato con successo.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main|bProtector Start Page (PUP.BProtector) -> Dati: http://www.delta-search.com/?affID=119816&babsrc=HP_ss&mntrId=324efc6d0000000000001c6f6580ac1d -> Spostato in quarantena ed eliminato con successo.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes|bProtectorDefaultScope (PUP.BProtector) -> Dati: {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} -> Verrà eliminato al riavvio.
HKCU\SOFTWARE\WNLT|URL (PUP.Optional.InstallBrain.A) -> Dati: SWEETPACKS_SEARCH -> Spostato in quarantena ed eliminato con successo.
HKCU\Software\SweetIM|simapp_id (PUP.Optional.SweetIM.A) -> Dati: {C051A007-5A59-11E2-B9F2-1C6F6580AC1D} -> Spostato in quarantena ed eliminato con successo.
HKLM\Software\SweetIM|simapp_id (PUP.Optional.SweetIM.A) -> Dati: {C051A007-5A59-11E2-B9F2-1C6F6580AC1D} -> Spostato in quarantena ed eliminato con successo.

Voci rilevate nei dati di registro: 1
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows|AppInit_DLLs (Trojan.BProtector) -> Cattivo: (c:\progra~3\bitguard\271769~1.27\{c16c1~1\bitguard.dll) Buono: () -> Verrà eliminato al riavvio.

Cartelle rilevate: 23
C:\Users\Guido\AppData\Roaming\Babylon (PUP.Optional.Babylon.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Roaming\Delta (PUP.Optional.Delta.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\Delta\delta\1.8.10.0 (PUP.Optional.Delta.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\Delta\delta\1.8.10.0\bh (PUP.Optional.Delta.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Roaming\OpenCandy (PUP.Optional.OpenCandy) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Roaming\OpenCandy\B1A688447A7842CABEC593673DA5C2B8 (PUP.Optional.OpenCandy) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Roaming\File Scout (PUP.Optional.FileScout.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.35.10 (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.35.10\bh (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\ct2612669 (PUP.Optional.Conduit.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\ct2612669\plugins (PUP.Optional.Conduit.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\ct2801948 (PUP.Optional.Conduit.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\ct2801948\xpi (PUP.Optional.Conduit.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\conf (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\Microsoft.VC90.CRT (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\blue (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\green (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\orange (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Windows\System32\WNLT\Installation (PUP.Optional.InstallBrain.A) -> Spostato in quarantena ed eliminato con successo.
C:\Windows\SysWOW64\WNLT\Installation (PUP.Optional.InstallBrain.A) -> Spostato in quarantena ed eliminato con successo.

File rilevati: 248
C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.dll (Trojan.BProtector) -> Verrà eliminato al riavvio.
C:\Program Files (x86)\SweetIM\Messenger\mgAdaptersProxy.dll (PUP.Optional.SweetIM) -> Verrà eliminato al riavvio.
C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe (PUP.Optional.SweetIM) -> Verrà eliminato al riavvio.
C:\Program Files (x86)\SweetIM\Messenger\mgUpdateSupport.dll (PUP.Optional.SweetIM) -> Verrà eliminato al riavvio.
C:\Program Files (x86)\SweetIM\Messenger\mgsimcommon.dll (PUP.Optional.SweetIM) -> Verrà eliminato al riavvio.
C:\Program Files (x86)\SweetIM\Messenger\mgcommon.dll (PUP.Optional.SweetIM) -> Verrà eliminato al riavvio.
C:\Program Files (x86)\SweetIM\Messenger\mgcommunication.dll (PUP.Optional.SweetIM) -> Verrà eliminato al riavvio.
C:\Program Files (x86)\SweetIM\Messenger\mghooking.dll (PUP.Optional.SweetIM) -> Verrà eliminato al riavvio.
C:\Program Files (x86)\SweetIM\Messenger\mgxml_wrapper.dll (PUP.Optional.SweetIM) -> Verrà eliminato al riavvio.
C:\Program Files (x86)\SweetIM\Messenger\mgconfig.dll (PUP.Optional.SweetIM) -> Verrà eliminato al riavvio.
C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe (PUP.Optional.SweetIM) -> Verrà eliminato al riavvio.
C:\Program Files (x86)\SweetIM\Communicator\mgcommon.dll (PUP.Optional.SweetIM) -> Verrà eliminato al riavvio.
C:\Program Files (x86)\SweetIM\Communicator\mgxml_wrapper.dll (PUP.Optional.SweetIM) -> Verrà eliminato al riavvio.
C:\Program Files (x86)\SweetIM\Communicator\mgcommunication.dll (PUP.Optional.SweetIM) -> Verrà eliminato al riavvio.
C:\Program Files (x86)\SweetIM\Communicator\mgsimcommon.dll (PUP.Optional.SweetIM) -> Verrà eliminato al riavvio.
C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe (PUP.Optional.Mediasoft) -> Verrà eliminato al riavvio.
C:\Windows\SysWOW64\jmdp\lmrn.dll (PUP.Optional.Sweetpacks) -> Verrà eliminato al riavvio.
C:\Program Files (x86)\Delta\delta\1.8.10.0\bh\delta.dll (PUP.Optional.Delta) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (PUP.Optional.SweetPacks) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.35.10\BabylonToolbarsrv.exe (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\Delta\delta\1.8.10.0\deltasrv.exe (PUP.Optional.Delta) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\Delta\delta\1.8.10.0\deltaTlbr.dll (PUP.Optional.Delta.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\SoftonicTlbr.dll (PUP.Optional.Delta.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.35.10\BabylonToolbarEng.dll (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
C:\$Recycle.Bin\S-1-5-21-1614310069-550744753-3242965073-1000\$RF0V701.tmp (PUP.Optional.Bandoo) -> Spostato in quarantena ed eliminato con successo.
C:\$Recycle.Bin\S-1-5-21-1614310069-550744753-3242965073-1000\$RGUUPKT.tmp (PUP.Optional.Bandoo) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.35.10\BabylonToolbarApp.dll (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\SoftonicApp.dll (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.35.10\BabylonToolbarTlbr.dll (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\Delta\delta\1.8.10.0\deltaApp.dll (PUP.Optional.Delta) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\Delta\delta\1.8.10.0\deltaEng.dll (PUP.Optional.Delta) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\Pegasys Inc\TMPGEnc Authoring Works 4\keygen.exe (Malware.Gen) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Communicator\resources\sqlite\mgSqlite3.dll (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Messenger\ContentPackagesActivationHandler.exe (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Messenger\mgArchive.dll (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Messenger\mgFlashPlayer.dll (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Messenger\mgICQAuto.dll (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Messenger\mgICQMessengerAdapter.dll (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Messenger\mglogger.dll (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Messenger\mgMediaPlayer.dll (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Messenger\mgMsnAuto.dll (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Messenger\mgMsnMessengerAdapter.dll (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Messenger\mgSweetIM.dll (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Messenger\mgYahooAuto.dll (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Messenger\mgYahooMessengerAdapter.dll (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Messenger\resources\sqlite\mgSqlite3.dll (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\ClearHist.exe (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgcommon.dll (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgconfig.dll (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgHelperApp.exe (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mghooking.dll (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mglogger.dll (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgsimcommon.dll (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarProxy.dll (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgxml_wrapper.dll (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\loader.dll (Rogue.InternetSecurityEssentials) -> Verrà eliminato al riavvio.
C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\uninstall.exe (PUP.Optional.Mediasoft) -> Verrà eliminato al riavvio.
C:\ProgramData\SweetIM\Messenger\update\sweetimsetup.exe (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Z96P2EAF\pack[1].7z (PUP.Optional.Mediasoft) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\64FE.tmp (PUP.Optional.Babylon.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\6846.tmp (PUP.Optional.FileScout.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\92B.tmp (PUP.Optional.PerformerSoft.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\cheD903.tmp (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\D642.tmp (PUP.Optional.Conduit.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\D9DB.tmp (PUP.Optional.PerformerSoft.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\DeltaTB.exe (PUP.Optional.Delta.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\E35C.tmp (PUP.Optional.PerformerSoft.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\mgsqlite3.dll (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\mism.exe (PUP.Optional.Conduit.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\nsxA1B0.tmp (PUP.Optional.Conduit.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\Shortcut_sweetim.exe (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\2827278562\chromeupdaterfull.exe (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\ct2612669\chLogic.exe (PUP.Optional.Conduit.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\ct2612669\ctbe.exe (PUP.Optional.Conduit.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\ct2612669\ism.exe (PUP.Optional.Conduit.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\ct2612669\statisticsStub.exe (PUP.Optional.Conduit.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\ct2612669\stub.exe (PUP.Optional.Conduit.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Roaming\File Scout\filescout.exe (PUP.Optional.FileScout.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\Desktop\OFFICE CHIAVETTA AUSTRALIA\mini-KMS_Activator_v1.072_EN.exe (PUP.Hacktool) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\Downloads\Unlocker1.9.1.exe (PUP.Optional.Babylon.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\Local Settings\Application Data\Bundled software uninstaller\bi_client.exe (PUP.Optional.Somoto.A) -> Spostato in quarantena ed eliminato con successo.
C:\Windows\AutoKMS.exe (Riskware.Keygen) -> Spostato in quarantena ed eliminato con successo.
C:\Windows\KMSEmulator.exe (RiskWare.Tool.CK) -> Spostato in quarantena ed eliminato con successo.
C:\Windows\Installer\3190c0.msi (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
C:\Windows\Installer\3190c6.msi (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
C:\Windows\Installer\3190cc.msi (PUP.Optional.SweetIM) -> Spostato in quarantena ed eliminato con successo.
C:\Windows\System32\ARFC\wrtc.exe (PUP.Optional.InstallBrain.A) -> Spostato in quarantena ed eliminato con successo.
C:\Windows\System32\dfrg\btc-miner.exe (Backdoor.TorBot) -> Spostato in quarantena ed eliminato con successo.
C:\Windows\System32\jmdp\lmrn.dll (PUP.Optional.Sweetpacks) -> Verrà eliminato al riavvio.
C:\Windows\System32\WNLT\Installation\NTSetup.exe (PUP.Optional.InstallBrain.A) -> Spostato in quarantena ed eliminato con successo.
C:\Windows\System32\WNLT\Installation\SKSetup.exe (PUP.Optional.Sweetpacks) -> Spostato in quarantena ed eliminato con successo.
C:\Windows\System32\WNLT\Installation\WSSetup.exe (PUP.Optional.InstallBrain.A) -> Spostato in quarantena ed eliminato con successo.
E:\Backup vari\backup nena 03.02.2011\programmi\cad\CURA x64(64bit) + x86(32bit)\x64Keygen.exe (RiskWare.Tool.CK) -> Spostato in quarantena ed eliminato con successo.
E:\Backup vari\backup nena 03.02.2011\programmi\cad\CURA x64(64bit) + x86(32bit)\x86Keygen.exe (RiskWare.Tool.HCK) -> Spostato in quarantena ed eliminato con successo.
E:\Backup vari\BACKUP PORTATILE 15-07-2010\Desktop\Documents\Fondamenti C++\programmi c++(vittoriano)\fibonacci.exe (Backdoor.Bot) -> Spostato in quarantena ed eliminato con successo.
E:\Backup vari\BACKUP PORTATILE 15-07-2010\Desktop\Documents\Fondamenti C++\programmi c++(vittoriano)\Piramide di numeri.exe (Backdoor.Bot) -> Spostato in quarantena ed eliminato con successo.
E:\Backup vari\Bakcup hard disk dati computer vecchio 06-11-2013\Chitarra\Guitar Pro 4.1.0 + KeyGen + 4784 Tabs.rar (Trojan.Backdoor) -> Spostato in quarantena ed eliminato con successo.
E:\Backup vari\Bakcup hard disk dati computer vecchio 06-11-2013\Chitarra\Guitar Pro 4.1.0 + KeyGen + 4784 Tabs\Guitar Pro 4.1.0 + KeyGen + 4784 Tabs.rar (Trojan.Backdoor) -> Spostato in quarantena ed eliminato con successo.
E:\Backup vari\Bakcup hard disk dati computer vecchio 06-11-2013\Chitarra\Guitar Pro 4.1.0 + KeyGen + 4784 Tabs\keygen.exe (Trojan.Backdoor) -> Spostato in quarantena ed eliminato con successo.
E:\Backup vari\Bakcup hard disk dati computer vecchio 06-11-2013\Dati mio telefono\BACKUP 6260\6260\6600\My programs\HandySafe.rar (PUP.Keygen.Intro) -> Spostato in quarantena ed eliminato con successo.
E:\Backup vari\Bakcup hard disk dati computer vecchio 06-11-2013\Dati mio telefono\BACKUP 6260\6260\6600\Prog. Cesare\Nokia 7650.3650.6600 Symbian - Cracks -.rar (Trojan.Agent.CK) -> Spostato in quarantena ed eliminato con successo.
E:\Backup vari\Bakcup hard disk dati computer vecchio 06-11-2013\Dati mio telefono\PROGRAMMI\Sygic\Sygic.Drive.v7.0.XScale.WM2003.WM5.Cracked-COREPDA\Sygic.Drive.v7.0.XScale.WM2003.WM5.Cracked-COREPDA\cr-sygdr.zip (PUP.Keygen.Intro) -> Spostato in quarantena ed eliminato con successo.
E:\Backup vari\Bakcup hard disk dati computer vecchio 06-11-2013\Dati mio telefono\PROGRAMMI\Sygic\Sygic.Drive.v7.0.XScale.WM2003.WM5.Cracked-COREPDA\Sygic.Drive.v7.0.XScale.WM2003.WM5.Cracked-COREPDA\cr-sygdr\CORE10k.EXE (PUP.Keygen.Intro) -> Spostato in quarantena ed eliminato con successo.
E:\Backup vari\Bakcup hard disk dati computer vecchio 06-11-2013\File ricevuti msn\Wpe Pro 0_9a.zip (HackTool.Sniffer.WpePro) -> Spostato in quarantena ed eliminato con successo.
E:\Backup vari\Bakcup hard disk dati computer vecchio 06-11-2013\Utilità\brutusaet2_install.zip (HackTool.Brutus) -> Spostato in quarantena ed eliminato con successo.
E:\Backup vari\Bakcup hard disk dati computer vecchio 06-11-2013\Utilità\daemon408-x86.rar (Adware.WhenU) -> Spostato in quarantena ed eliminato con successo.
E:\Backup vari\Bakcup hard disk dati computer vecchio 06-11-2013\Utilità\EVEREST.Ultimate.Edition.2006.3.50.761.rar (Trojan.Downloader) -> Spostato in quarantena ed eliminato con successo.
E:\Backup vari\Bakcup hard disk dati computer vecchio 06-11-2013\Utilità\Hack Wow.zip (HackTool.Sniffer.WpePro) -> Spostato in quarantena ed eliminato con successo.
E:\Backup vari\Bakcup hard disk dati computer vecchio 06-11-2013\Utilità\JackSMS 3.0 Install.rar (Trojan.Agent) -> Spostato in quarantena ed eliminato con successo.
E:\Backup vari\Bakcup hard disk dati computer vecchio 06-11-2013\Utilità\MemoriesOnTV.MPEG2-v2.1.8-BSoft.ru.rar (Malware.Packer.Gen) -> Spostato in quarantena ed eliminato con successo.
E:\Backup vari\Bakcup hard disk dati computer vecchio 06-11-2013\Utilità\netbus.rar (Trojan.Netbus) -> Spostato in quarantena ed eliminato con successo.
E:\Backup vari\Bakcup hard disk dati computer vecchio 06-11-2013\Utilità\NOD32 v2.50.32 ITA FiX v1.8 & 1.9.rar (PUP.RiskWareTool.CK) -> Spostato in quarantena ed eliminato con successo.
E:\Backup vari\Bakcup hard disk dati computer vecchio 06-11-2013\Utilità\NOD32.2.70.32.ITA.FIX.NT_2000_XP_2003_Vista_x64.zip (PUP.RiskWareTool.CK) -> Spostato in quarantena ed eliminato con successo.
E:\Backup vari\Bakcup hard disk dati computer vecchio 06-11-2013\Utilità\NOD32_3.0_Antivirus_for_Win_XP2000Vista_32-bit_3.0.560.0 + FIX.rar (Trojan.Agent) -> Spostato in quarantena ed eliminato con successo.
E:\Backup vari\Bakcup hard disk dati computer vecchio 06-11-2013\Utilità\NOD32_Antivirus_3.0.563_32-bit+fix.rar (PUP.RiskWareTool.CK) -> Spostato in quarantena ed eliminato con successo.
E:\Backup vari\Bakcup hard disk dati computer vecchio 06-11-2013\Utilità\PDF.Password.Cracker.Pro.v2.0.WinAll.Cracked-CRD.rar (Hacktool.Agent) -> Spostato in quarantena ed eliminato con successo.
E:\Backup vari\Bakcup hard disk dati computer vecchio 06-11-2013\Utilità\Slysoft.AIO.AnyDVD.6.1.0.2.CloneDVD.2.9.0.3.CloneDVD.Mobile.1.1.4.0.CloneCD.5.3.0.1Virtual.CloneDrive.5.1.4.5.SnD.patch.v1.43.+.working.keys.rar (RiskWare.Tool.CK) -> Spostato in quarantena ed eliminato con successo.
E:\Backup vari\Bakcup hard disk dati computer vecchio 06-11-2013\Utilità\Telepro149.rar (Hacktool.Gen) -> Spostato in quarantena ed eliminato con successo.
E:\Backup vari\Bakcup hard disk dati computer vecchio 06-11-2013\Utilità\UltraISO.v.7.6.2.1180.Incl.VIETATO-ZWT.rar (Riskware.Tool.CK) -> Spostato in quarantena ed eliminato con successo.
E:\Backup vari\Bakcup hard disk dati computer vecchio 06-11-2013\Utilità\VSO.ConvertXToDVD.2.1.4.Build.162.+.Patch.rar (PUP.Hacktool.Patcher) -> Spostato in quarantena ed eliminato con successo.
E:\Backup vari\Bakcup hard disk dati computer vecchio 06-11-2013\Utilità\wpe_13.zip (PasswordStealer.Watcher) -> Spostato in quarantena ed eliminato con successo.
E:\Backup vari\Bakcup hard disk dati computer vecchio 06-11-2013\Utilità\Xilisoft 3Gp Video Converter v2.1.15.1201 Winall Incl Keymaker-Core.zip (PUP.Keygen.Intro) -> Spostato in quarantena ed eliminato con successo.
E:\Backup vari\Bakcup hard disk dati computer vecchio 06-11-2013\Utilità\Xilisoft_3GP_Video_Converter.+.keygen.rar (Trojan.Agent.CK) -> Spostato in quarantena ed eliminato con successo.
E:\Backup vari\Bakcup hard disk dati computer vecchio 06-11-2013\Utilità\Zone Alarm pro 6.5.725.rar (Riskware.Tool.CK) -> Spostato in quarantena ed eliminato con successo.
E:\Backup vari\Bakcup hard disk dati computer vecchio 06-11-2013\Utilità\Hack\brutusaet2_install\BrutusA2.exe (HackTool.Brutus) -> Spostato in quarantena ed eliminato con successo.
E:\Backup vari\Bakcup hard disk dati computer vecchio 06-11-2013\Utilità\Hack\Hack wow\Wpe Pro 0_9a.zip (HackTool.Sniffer.WpePro) -> Spostato in quarantena ed eliminato con successo.
E:\Download\uTorrent\Incoming\CDRoller 9.40.50.1\Crack\Patch.exe (PUP.Riskware.Patcher) -> Spostato in quarantena ed eliminato con successo.
E:\Utilità\VSO.Convert.X.to.DVD.4.1.19.365.Multilang.rar (RiskWare.Tool.CK) -> Spostato in quarantena ed eliminato con successo.
E:\Utilità\WinAVI_Video_Converter_v11.1.0.4105.by.Eraser_LH.rar (PUP.Hacktool.Patcher) -> Spostato in quarantena ed eliminato con successo.
E:\Utilità\Attivazioni xp\Activation Crack 2.0.1 Win XP SP3 (include Media Center).rar (Hacktool) -> Spostato in quarantena ed eliminato con successo.
E:\Utilità\Attivazioni xp\WGA Patcher Permanent Kit-1-1-2007.rar (Application.FindKey) -> Spostato in quarantena ed eliminato con successo.
E:\Utilità\Attivazioni xp\Wpa-Kill Sp3(Attivazione Xp Service Pack 3).rar (Hacktool) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Roaming\Babylon\log_file.txt (PUP.Optional.Babylon.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Roaming\Delta\sqlite3.dll (PUP.Optional.Delta.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Roaming\Delta\delta.crx (PUP.Optional.Delta.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\bprotector web data (PUP.Optional.BProtector.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences (PUP.Optional.BProtector.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\Delta\delta\1.8.10.0\escortShld.dll (PUP.Optional.Delta.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\Delta\delta\1.8.10.0\GUninstaller.exe (PUP.Optional.Delta.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\Delta\delta\1.8.10.0\uninstall.exe (PUP.Optional.Delta.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Roaming\OpenCandy\B1A688447A7842CABEC593673DA5C2B8\Setupsft_chr_p1v7.exe (PUP.Optional.OpenCandy) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Roaming\File Scout\uninst.exe (PUP.Optional.FileScout.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.35.10\uninstall.exe (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.35.10\bh\BabylonToolbar.dll (PUP.Optional.BabylonToolBar.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\ct2612669\chromeid.txt (PUP.Optional.Conduit.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\ct2612669\CT2612669.txt (PUP.Optional.Conduit.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\ct2612669\initData.json (PUP.Optional.Conduit.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\ct2612669\manifest.json (PUP.Optional.Conduit.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\ct2612669\setup.ini.txt (PUP.Optional.Conduit.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\ct2612669\plugins\TBVerifier.dll (PUP.Optional.Conduit.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\ct2801948\chLogic.exe (PUP.Optional.Conduit.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\ct2801948\CT2801948.txt (PUP.Optional.Conduit.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\ct2801948\CT2801948.xpi (PUP.Optional.Conduit.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\ct2801948\ffLogic.exe (PUP.Optional.Conduit.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\ct2801948\ieLogic.exe (PUP.Optional.Conduit.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\ct2801948\initData.json (PUP.Optional.Conduit.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\ct2801948\manifest.json (PUP.Optional.Conduit.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\ct2801948\statisticsStub.exe (PUP.Optional.Conduit.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\ct2801948\version.txt (PUP.Optional.Conduit.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\Guido\AppData\Local\Temp\ct2801948\xpi\install.rdf (PUP.Optional.Conduit.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\default.xml (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\conf\logger.xml (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\Microsoft.VC90.CRT\Microsoft.VC90.CRT.manifest (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\Microsoft.VC90.CRT\msvcm90.dll (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\Microsoft.VC90.CRT\msvcp90.dll (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\Microsoft.VC90.CRT\msvcr90.dll (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\about.html (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\affid.dat (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\basis.xml (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\bing.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\clear-history.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\content-notifier-anim-over.gif (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\content-notifier-anim.gif (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\content-notifier.js (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\dating.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\dictionary.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\eye_icon.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\eye_icon_over.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\e_cards.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\find.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\free_stuff.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\games.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\glitter.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\google.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\help.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\highlight.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\locales.xml (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\logo_16x16.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\logo_21x18.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\logo_32x32.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\logo_about.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\MenuExt.html (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\more-search-providers.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\music.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\news.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\options.html (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\photos.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\search-current-site.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\shopping.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\SmileySmile.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\SmileyWink.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\sweetim_text.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\toolbar.xml (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\video.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\web-search.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\web-toolbar.js (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\yahoo.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_bing.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_current.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_dictionary.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_google.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_hover.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_left.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_photo.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_video.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_web.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_yahoo.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\green\search_button.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_bing.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_current.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_dictionary.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_google.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_hover.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_left.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_photo.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_video.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_web.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_yahoo.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_bing.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_current.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_dictionary.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_google.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_hover.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_left.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_photo.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_video.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_web.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_yahoo.png (PUP.Optional.SweetIM.A) -> Spostato in quarantena ed eliminato con successo.
C:\Windows\System32\WNLT\Installation\Config.bin (PUP.Optional.InstallBrain.A) -> Spostato in quarantena ed eliminato con successo.
C:\Windows\System32\WNLT\Installation\uninstaller.exe (PUP.Optional.InstallBrain.A) -> Spostato in quarantena ed eliminato con successo.
C:\Windows\SysWOW64\WNLT\Installation\Config.bin (PUP.Optional.InstallBrain.A) -> Spostato in quarantena ed eliminato con successo.
C:\Windows\SysWOW64\WNLT\Installation\NTSetup.exe (PUP.Optional.InstallBrain.A) -> Spostato in quarantena ed eliminato con successo.
C:\Windows\SysWOW64\WNLT\Installation\SKSetup.exe (PUP.Optional.InstallBrain.A) -> Spostato in quarantena ed eliminato con successo.
C:\Windows\SysWOW64\WNLT\Installation\uninstaller.exe (PUP.Optional.InstallBrain.A) -> Spostato in quarantena ed eliminato con successo.
C:\Windows\SysWOW64\WNLT\Installation\WSSetup.exe (PUP.Optional.InstallBrain.A) -> Spostato in quarantena ed eliminato con successo.

(fine)

HITMAN PRO

HitmanPro 3.7.8.208
www.hitmanpro.com

Computer name . . . . : GUIDO-PC
Windows . . . . . . . : 6.1.1.7601.X64/6
User name . . . . . . : Guido-PC\Guido
UAC . . . . . . . . . : Enabled
License . . . . . . . : Free

Scan date . . . . . . : 2013-11-09 01:03:29
Scan mode . . . . . . : Normal
Scan duration . . . . : 8m 50s
Disk access mode . . : Direct disk access (SRB)
Cloud . . . . . . . . : Internet
Reboot . . . . . . . : No

Threats . . . . . . . : 0
Traces . . . . . . . : 500

Objects scanned . . . : 3.146.600
Files scanned . . . . : 252.377
Remnants scanned . . : 1.497.424 files / 1.396.799 keys

Potential Unwanted Programs _________________________________________________

C:\Program Files (x86)\Babylon\ (Babylon)
C:\Program Files (x86)\BabylonToolbar\ (Babylon)
C:\Program Files (x86)\Conduit\ (Conduit)
C:\Program Files (x86)\Conduit\Community Alerts\ (Conduit)
C:\Program Files (x86)\Conduit\Community Alerts\Alert.dll (Conduit)
Size . . . . . . . : 638.560 bytes
Age . . . . . . . : 499.5 days (2012-06-27 13:52:41)
Entropy . . . . . : 6.4
SHA-256 . . . . . : F22E58CDFE94D4A5FBBF2795A743B167ED9923E289E14654631E0077DD306C1D
Product . . . . . : Alert
Publisher . . . . : Conduit Ltd.
Description . . . : Alert
Version . . . . . : 1.1.4.1
Copyright . . . . : Copyright © Conduit Ltd. 2011.
RSA Key Size . . . : 1024
Authenticode . . . : Valid
Fuzzy . . . . . . : -15.0

C:\Program Files (x86)\Conduit\CT2612669\plugins\ (Conduit)
C:\Program Files (x86)\Conduit\CT2612669\plugins\TBVerifier.dll (Conduit)
Size . . . . . . . : 287.008 bytes
Age . . . . . . . : 64.3 days (2013-09-05 18:08:34)
Entropy . . . . . : 6.5
SHA-256 . . . . . : C3B39F220B2249039613D2D5396E0BB8D61867CE5CEA402C60C74F78AFF08876
Product . . . . . : Conduit Toolbar Verifier
Publisher . . . . : Conduit Ltd.
Description . . . : Conduit Toolbar Verifier
Version . . . . . : 1.0.4.0
Copyright . . . . : Copyright © 2013 All Rights Reserved
RSA Key Size . . . : 2048
Authenticode . . . : Valid
Fuzzy . . . . . . : -15.0

C:\Program Files (x86)\Delta\ (SpeedUpMyPC)
C:\Program Files (x86)\Delta\delta\ (Delta Search)
C:\Program Files (x86)\Mozilla Firefox\searchplugins\babylon.xml (Babylon)
C:\Program Files (x86)\Softonic\ (Softonic)
C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\ (Softonic)
C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\bh\ (Softonic)
C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\bh\Softonic.dll (Softonic)
Size . . . . . . . : 301.464 bytes
Age . . . . . . . : 1.5 days (2013-11-07 14:00:14)
Entropy . . . . . : 6.4
SHA-256 . . . . . : EF347FB1A770E6467BA4B3CB3478E35A721E81F60B88C9222DED4C1DBE79BF13
Product . . . . . : Softonic Toolbar
Publisher . . . . : Softonic.com
Description
Version . . . . . : 1.8.20.0
Copyright . . . . : (c) Softonic.com. All rights reserved.
RSA Key Size . . . : 2048
Authenticode . . . : Valid
Fuzzy . . . . . . : -11.0
Startup
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E87806B5-E908-45FD-AF5E-957D83E58E68}\
References
HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E87806B5-E908-45FD-AF5E-957D83E58E68}\
HKLM\SOFTWARE\Wow6432Node\Classes\Softonic.SoftonicHlpr.1\
HKLM\SOFTWARE\Wow6432Node\Classes\Softonic.SoftonicHlpr\
HKLM\SOFTWARE\Wow6432Node\Classes\TypeLib\{09C554C3-109B-483C-A06B-F14172F1A947}\
HKU\S-1-5-21-1614310069-550744753-3242965073-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{E87806B5-E908-45FD-AF5E-957D83E58E68}\
Forensic Cluster
-0.5s C:\Users\Guido\AppData\Local\Temp\mt_ffx\
-0.4s C:\Users\Guido\AppData\Local\Temp\mt_ffx\Softonic\Softonic\
-0.4s C:\Users\Guido\AppData\Local\Temp\mt_ffx\Softonic\
-0.4s C:\Users\Guido\AppData\Local\Temp\mt_ffx\Softonic\Softonic\1.8.21.14\
-0.4s C:\Users\Guido\AppData\Local\Temp\mt_ffx\Softonic\Softonic\1.8.21.14\softonic.xpi
-0.2s C:\Program Files (x86)\Softonic\
-0.2s C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\
-0.2s C:\Program Files (x86)\Softonic\Softonic\
-0.0s C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\SoftonicEng.dll
0.0s C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\bh\
0.0s C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\bh\Softonic.dll
0.0s C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\bh\Softonic.dll
1.8s C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\Softonicsrv.exe

C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\softonic.crx (Softonic)
C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\SoftonicEng.dll (Softonic)
Size . . . . . . . : 593.816 bytes
Age . . . . . . . : 1.5 days (2013-11-07 14:00:14)
Entropy . . . . . : 6.4
SHA-256 . . . . . : 78B184433CC0E7FF55725A825C9EB1F2B6907326F8FA5F1353927344FC0F95E1
Product . . . . . : Softonic Toolbar
Publisher . . . . : Softonic.com
Description
Version . . . . . : 1.8.20.0
Copyright . . . . : (c) Softonic.com. All rights reserved.
RSA Key Size . . . : 2048
Authenticode . . . : Valid
Fuzzy . . . . . . : -13.0
Forensic Cluster
-0.5s C:\Users\Guido\AppData\Local\Temp\mt_ffx\
-0.3s C:\Users\Guido\AppData\Local\Temp\mt_ffx\Softonic\Softonic\
-0.3s C:\Users\Guido\AppData\Local\Temp\mt_ffx\Softonic\
-0.3s C:\Users\Guido\AppData\Local\Temp\mt_ffx\Softonic\Softonic\1.8.21.14\
-0.3s C:\Users\Guido\AppData\Local\Temp\mt_ffx\Softonic\Softonic\1.8.21.14\softonic.xpi
-0.2s C:\Program Files (x86)\Softonic\
-0.2s C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\
-0.2s C:\Program Files (x86)\Softonic\Softonic\
0.0s C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\SoftonicEng.dll
0.0s C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\bh\
0.0s C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\bh\Softonic.dll
0.0s C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\bh\Softonic.dll
1.8s C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\Softonicsrv.exe

C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\Softonicsrv.exe (Softonic)
Size . . . . . . . : 380.824 bytes
Age . . . . . . . : 1.5 days (2013-11-07 14:00:16)
Entropy . . . . . : 6.3
SHA-256 . . . . . : 8432D9FC7F640EAA8A5063D35AE5B8F8D8E1F3315180B87DE2B486FB27B0E07D
Product . . . . . : Softonic Toolbar
Publisher . . . . : Softonic.com
Description
Version . . . . . : 1.8.20.0
Copyright . . . . : (c) Softonic.com. All rights reserved.
RSA Key Size . . . : 2048
Authenticode . . . : Valid
Fuzzy . . . . . . : -13.0
Forensic Cluster
-2.2s C:\Users\Guido\AppData\Local\Temp\mt_ffx\
-2.1s C:\Users\Guido\AppData\Local\Temp\mt_ffx\Softonic\Softonic\
-2.1s C:\Users\Guido\AppData\Local\Temp\mt_ffx\Softonic\
-2.1s C:\Users\Guido\AppData\Local\Temp\mt_ffx\Softonic\Softonic\1.8.21.14\
-2.1s C:\Users\Guido\AppData\Local\Temp\mt_ffx\Softonic\Softonic\1.8.21.14\softonic.xpi
-1.9s C:\Program Files (x86)\Softonic\
-1.9s C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\
-1.9s C:\Program Files (x86)\Softonic\Softonic\
-1.8s C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\SoftonicEng.dll
-1.8s C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\bh\
-1.8s C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\bh\Softonic.dll
-1.8s C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\bh\Softonic.dll
0.0s C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\Softonicsrv.exe

C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\uninstall.exe (Softonic)
Size . . . . . . . : 199.676 bytes
Age . . . . . . . : 1.5 days (2013-11-07 14:00:34)
Entropy . . . . . : 7.9
SHA-256 . . . . . : FF4AA1B6863DEBA3BEF6936FAE3B731320468946906D011A7B4ECF5A4A59E4D6
Product . . . . . : ${PRDCT_DSP}
Publisher . . . . : Softonic
Version . . . . . : 1.8.21.14
Fuzzy . . . . . . : 2.0
Forensic Cluster
-0.4s C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\softonic.crx
-0.4s C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Extensions\elchiiiejkobdbblfejjkbphbddgmljf\
0.0s C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\uninstall.exe
0.3s C:\Users\Guido\AppData\Local\Temp\cheBC7B.tmp

C:\Program Files\Babylon\ (Babylon)
C:\ProgramData\Babylon\ (Babylon)
C:\ProgramData\BitGuard\ (SpeedUpMyPC)
C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\ (SpeedUpMyPC)
C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.settings (SpeedUpMyPC)
C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\bl (SpeedUpMyPC)
C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\dm (SpeedUpMyPC)
C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\ (SpeedUpMyPC)
C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\00 (SpeedUpMyPC)
C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\01 (SpeedUpMyPC)
C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\02 (SpeedUpMyPC)
C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\03 (SpeedUpMyPC)
C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\10 (SpeedUpMyPC)
C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\11 (SpeedUpMyPC)
C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\12 (SpeedUpMyPC)
C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\13 (SpeedUpMyPC)
C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\20 (SpeedUpMyPC)
C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\21 (SpeedUpMyPC)
C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\22 (SpeedUpMyPC)
C:\ProgramData\BitGuard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\23 (SpeedUpMyPC)
C:\Users\Guido\AppData\Local\Conduit\ (Rocketfuel)
C:\Users\Guido\AppData\Local\Conduit\CT2801948\ (Rocketfuel)
C:\Users\Guido\AppData\Local\Conduit\CT2801948\NCH_ENAutoUpdateHelper.exe (Rocketfuel)
Size . . . . . . . : 1.829.776 bytes
Age . . . . . . . : 499.5 days (2012-06-27 13:52:40)
Entropy . . . . . : 8.0
SHA-256 . . . . . : 26F4138AF51C66B7F3AE58637F9A29656CD43A031D06CAF3C9A2D1C31FDF9680
RSA Key Size . . . : 1024
Authenticode . . . : Valid
Fuzzy . . . . . . : 7.0

C:\Users\Guido\AppData\LocalLow\BabylonToolbar\ (Babylon)
C:\Users\Guido\AppData\LocalLow\Conduit\ (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\ (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\CT2612669.129170380618247104.search.selectedEngineId.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\CT2612669.129170380618247104.search.settings.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\CT2612669.appOptions.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\CT2612669.installUsage.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\CT2612669.installUsageEarly.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\CT2612669.NOTIFICATION_ID.notifications-repository.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\CT2612669.NOTIFICATION_ID.notifications-service_1005466.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\CT2612669.NOTIFICATION_ID.notifications-servicemap.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\CT2612669.NotificationSettings.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\CT2612669_10.19.2.505.serviceLayer_services_appsMetadata.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\CT2612669_10.19.2.505.serviceLayer_services_appTrackingFirstTime.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\CT2612669_10.19.2.505.serviceLayer_services_Configuration.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\CT2612669_10.19.2.505.serviceLayer_services_gottenAppsContextMenu.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\CT2612669_10.19.2.505.serviceLayer_services_login.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\CT2612669_10.19.2.505.serviceLayer_services_otherAppsContextMenu.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\CT2612669_10.19.2.505.serviceLayer_services_searchAPI.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\CT2612669_10.19.2.505.serviceLayer_services_serviceMap.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\CT2612669_10.19.2.505.serviceLayer_services_toolbarContextMenu.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\CT2612669_10.19.2.505.serviceLayer_services_toolbarSettings.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\CT2612669_10.19.2.505.serviceLayer_services_translation.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\CT2612669_RAW.serviceLayer_services_appsMetadata.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\CT2612669_RAW.serviceLayer_services_appTrackingFirstTime.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\CT2612669_RAW.serviceLayer_services_Configuration.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\CT2612669_RAW.serviceLayer_services_gottenAppsContextMenu.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\CT2612669_RAW.serviceLayer_services_login.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\CT2612669_RAW.serviceLayer_services_otherAppsContextMenu.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\CT2612669_RAW.serviceLayer_services_searchAPI.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\CT2612669_RAW.serviceLayer_services_serviceMap.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\CT2612669_RAW.serviceLayer_services_toolbarContextMenu.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\CT2612669_RAW.serviceLayer_services_toolbarSettings.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\CT2612669_RAW.serviceLayer_services_translation.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\toolbar_initializing_logger.txt.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\ToolbarFullUserID.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\ToolbarUserID.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\uninstallData.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\ChromeExtData\bcfjehbfanfhgoehogmbiebedkidedjb\Repository\uninstallUrl.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\ (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\ (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\AppNotification.js (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\ (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\close.png (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\dark\ (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\dark\close.png (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\dark\Next.png (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\dark\Next_hover.png (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\dark\powered-by.png (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\dark\Prev.png (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\dark\Prev_hover.png (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\dark\settings.png (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\light\ (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\light\close.png (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\light\Next.png (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\light\Next_hover.png (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\light\powered-by.png (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\light\Prev.png (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\light\Prev_hover.png (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\light\settings.png (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\light\Thumbs.db (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\like.png (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\Next.png (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\Next_hover.png (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\powered-by.png (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\Prev.png (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\Prev_hover.png (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\settings.png (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\Images\Thumbs.db (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\initialNotification.html (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\main.html (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\NotificationDialogStyle.css (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\AppNotificationDialog\sampleNotification.html (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\DialogsAPI.js (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\PIE.htc (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\settings.js (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Dialogs\version.txt (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Feeds\ (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\Feeds\http___alerts_conduit-services_com_root_1194029_1189706_IT.xml (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\LanguagePacks\ (Rocketfuel)
C:\Users\Guido\AppData\LocalLow\Conduit\Community Alerts\LanguagePacks\en.xml (Rocketfuel)
C:\Users\Guido\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard\ (SpeedUpMyPC)
C:\Users\Guido\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard\Uninstall BitGuard.lnk (SpeedUpMyPC)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\bprotector_extensions.sqlite (Claro)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\bprotector_prefs.js (Claro)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\ (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\chrome.manifest (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\components\ (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\components\FFDisp.dll (Delta Search)
Size . . . . . . . : 28.160 bytes
Age . . . . . . . : 257.9 days (2013-02-24 03:24:25)
Entropy . . . . . : 6.0
SHA-256 . . . . . : 9D8416507D39ADCDB53AA51A3EF80BF98E29FC457750882A662A4F1201CE8E5F
Product . . . . . : TODO: <Product name>
Publisher . . . . : TODO: <Company name>
Description . . . : TODO: <File description>
Version . . . . . : 1.0.0.1
Copyright . . . . : TODO: (c) <Company name>. All rights reserved.
Fuzzy . . . . . . : 3.0

C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\ (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\delta.css (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\delta.xul (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\dpk.htm (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\hlprs.js (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\ (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\arwDwn.gif (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\closeo.png (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\flgs\ (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\flgs\ae.png (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\flgs\bg.png (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\flgs\ch.png (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\flgs\cn.png (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\flgs\cz.png (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\flgs\de.png (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\flgs\eg.png (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\flgs\en.png (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\flgs\es.png (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\flgs\fr.png (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\flgs\gr.png (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\flgs\he.png (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\flgs\il.png (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\flgs\it.png (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\flgs\ja.png (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\flgs\jp.png (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\flgs\nl.png (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\flgs\no.png (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\flgs\pl.png (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\flgs\pt.png (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\flgs\ro.png (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\flgs\ru.png (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\flgs\sa.png (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\flgs\se.png (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\flgs\sv.png (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\flgs\tr.png (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\flgs\ua.png (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\flgs\us.png (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\help_16.gif (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\home.gif (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\icon_seperator.png (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\logo.PNG (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\privecy_16_hot.gif (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\sign.jpg (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\specialoffer.gif (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\tellafriend.gif (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\imgs\uninstall.gif (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\loader.xul (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\mtstart.js (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\serp.js (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\content\tmplt.js (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\install.rdf (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\META-INF\ (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\META-INF\manifest.mf (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\META-INF\zigbert.rsa (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\extensions\ffxtlbr@delta.com\META-INF\zigbert.sf (Delta Search)
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\searchplugins\softonic.xml (Softonic)
C:\Users\Guido\AppData\Roaming\Softonic\ (Softonic)
C:\Users\Guido\AppData\Roaming\Softonic\sqlite3.dll (Softonic)
Size . . . . . . . : 271.360 bytes
Age . . . . . . . : 1.5 days (2013-11-07 13:59:54)
Entropy . . . . . : 7.8
SHA-256 . . . . . : 970AB5826883E15BD9AE33310DCFB00968A938EEBBE7E8E1BA5C8B0C12CC5D12
Product . . . . . : sqlite3
Publisher . . . . : Edmunt Pienkowsky
Description . . . : LiteX Automation
Version . . . . . : 1.0.3.1
Copyright . . . . : Copyright (C) Edmunt Pienkowsky 2004-2008.
Fuzzy . . . . . . : 10.0
Forensic Cluster
-0.0s C:\Users\Guido\AppData\Roaming\Softonic\
0.0s C:\Users\Guido\AppData\Roaming\Softonic\sqlite3.dll
3.0s C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\searchplugins\softonic.xml

HKLM\SOFTWARE\Classes\AppID\escort.DLL\ (Funmoods)
HKLM\SOFTWARE\Classes\AppID\escortApp.DLL\ (Funmoods)
HKLM\SOFTWARE\Classes\AppID\escortEng.DLL\ (Funmoods)
HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL\ (Funmoods)
HKLM\SOFTWARE\Classes\AppID\esrv.EXE\ (Funmoods)
HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}\ (Funmoods)
HKLM\SOFTWARE\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}\ (Delta Search)
HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}\ (Funmoods)
HKLM\SOFTWARE\Classes\AppID\{7ABBFE1C-E485-44AA-8F36-353751B4124D}\ (Softonic)
HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}\ (Funmoods)
HKLM\SOFTWARE\Classes\AppID\{B15F118E-AF21-45E8-A809-29FDD7362565}\ (Softonic)
HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4eaf-B541-F8DE92DD98D***\ (Babylon)
HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}\ (Funmoods)
HKLM\SOFTWARE\Classes\Interface\{087CDC12-0A11-4D1D-8DCF-44185D7C3496}\ (Softonic)
HKLM\SOFTWARE\Classes\Interface\{088BF3A9-6AE8-47B9-A3FB-26262F236C79}\ (Softonic)
HKLM\SOFTWARE\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}\ (Delta Search)
HKLM\SOFTWARE\Classes\Interface\{2AC7B9EB-3881-4EB9-8DEE-0A731A309FDE}\ (Softonic)
HKLM\SOFTWARE\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}\ (Delta Search)
HKLM\SOFTWARE\Classes\Interface\{349C0469-ACDD-49DF-9B3E-0D82E7C7DC4D}\ (Softonic)
HKLM\SOFTWARE\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}\ (Delta Search)
HKLM\SOFTWARE\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}\ (Delta Search)
HKLM\SOFTWARE\Classes\Interface\{41226591-6F7A-4082-B63A-67FE4A0CF7A6}\ (Softonic)
HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}\ (Babylon)
HKLM\SOFTWARE\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33E***\ (Delta Search)
HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}\ (Babylon)
HKLM\SOFTWARE\Classes\Interface\{55D69CD1-6715-4C40-BF05-9519AC4DC6E6}\ (Softonic)
HKLM\SOFTWARE\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}\ (Delta Search)
HKLM\SOFTWARE\Classes\Interface\{66C8FD57-54C4-4D4F-BC95-DCCC763B410A}\ (Softonic)
HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}\ (Babylon)
HKLM\SOFTWARE\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}\ (Delta Search)
HKLM\SOFTWARE\Classes\Interface\{717BAE33-7061-4279-8AE5-6C13BC8AF3F9}\ (Softonic)
HKLM\SOFTWARE\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}\ (Delta Search)
HKLM\SOFTWARE\Classes\Interface\{84F06F7A-F811-48D7-8B34-3F4145183D8F}\ (Softonic)
HKLM\SOFTWARE\Classes\Interface\{88F6D55F-AA3F-4003-BE69-4AC1998D6492}\ (Softonic)
HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}\ (Babylon)
HKLM\SOFTWARE\Classes\Interface\{8DBCDED5-08AD-41A2-9BBC-235D84F4FE06}\ (Softonic)
HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}\ (Babylon)
HKLM\SOFTWARE\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}\ (Delta Search)
HKLM\SOFTWARE\Classes\Interface\{A0F66203-1A86-4812-9603-A57E09A4D7A3}\ (Softonic)
HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}\ (Babylon)
HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}\ (Babylon)
HKLM\SOFTWARE\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}\ (Delta Search)
HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}\ (Babylon)
HKLM\SOFTWARE\Classes\Interface\{BC39D1B3-4471-41C1-AACA-E097FAF4B7AA}\ (Softonic)
HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}\ (Babylon)
HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}\ (Babylon)
HKLM\SOFTWARE\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}\ (Delta Search)
HKLM\SOFTWARE\Classes\Interface\{DEB85542-1311-4EC6-8A32-5372EB27FC94}\ (Softonic)
HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}\ (Babylon)
HKLM\SOFTWARE\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}\ (Delta Search)
HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}\ (Babylon)
HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}\ (Babylon)
HKLM\SOFTWARE\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}\ (Delta Search)
HKLM\SOFTWARE\Classes\Prod.cap\ (Claro)
HKLM\SOFTWARE\Classes\S\ (Softonic)
HKLM\SOFTWARE\Classes\Softonic.SoftonicHlpr.1\ (Softonic)
HKLM\SOFTWARE\Classes\Softonic.SoftonicHlpr\ (Softonic)
HKLM\SOFTWARE\Classes\srv.SoftonicSrvc.1\ (Softonic)
HKLM\SOFTWARE\Classes\srv.SoftonicSrvc\ (Softonic)
HKLM\SOFTWARE\Classes\TypeLib\{11D9E165-B8C1-4734-A56C-BC4FCACA966***\ (Softonic)
HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}\ (Funmoods)
HKLM\SOFTWARE\Classes\TypeLib\{B15F118E-AF21-45E8-A809-29FDD7362565}\ (Softonic)
HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}\ (Funmoods)
HKLM\SOFTWARE\Classes\Wow6432Node\AppID\escort.DLL\ (Funmoods)
HKLM\SOFTWARE\Classes\Wow6432Node\AppID\escortApp.DLL\ (Funmoods)
HKLM\SOFTWARE\Classes\Wow6432Node\AppID\escortEng.DLL\ (Funmoods)
HKLM\SOFTWARE\Classes\Wow6432Node\AppID\escorTlbr.DLL\ (Funmoods)
HKLM\SOFTWARE\Classes\Wow6432Node\AppID\esrv.EXE\ (Funmoods)
HKLM\SOFTWARE\Classes\Wow6432Node\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}\ (Funmoods)
HKLM\SOFTWARE\Classes\Wow6432Node\AppID\{39CB8175-E224-4446-8746-00566302DF8D}\ (Delta Search)
HKLM\SOFTWARE\Classes\Wow6432Node\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}\ (Funmoods)
HKLM\SOFTWARE\Classes\Wow6432Node\AppID\{7ABBFE1C-E485-44AA-8F36-353751B4124D}\ (Softonic)
HKLM\SOFTWARE\Classes\Wow6432Node\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}\ (Funmoods)
HKLM\SOFTWARE\Classes\Wow6432Node\AppID\{B15F118E-AF21-45E8-A809-29FDD7362565}\ (Softonic)
HKLM\SOFTWARE\Classes\Wow6432Node\AppID\{BDB69379-802F-4eaf-B541-F8DE92DD98D***\ (Babylon)
HKLM\SOFTWARE\Classes\Wow6432Node\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}\ (Funmoods)
HKLM\SOFTWARE\Classes\Wow6432Node\CLSID\{3c471948-f874-49f5-b338-4f214a2ee0b1}\ (Rocketfuel)
HKLM\SOFTWARE\Classes\Wow6432Node\CLSID\{97F2FF5B-260C-4ccf-834A-2DDA4E29E39E}\ (Babylon)
HKLM\SOFTWARE\Classes\Wow6432Node\CLSID\{A3E2F089-DDBB-4CBF-B06C-5D44DA316ED3}\ (Softonic)
HKLM\SOFTWARE\Classes\Wow6432Node\CLSID\{A5679AB0-C59E-49E7-83C4-5289F844A6E0}\ (Softonic)
HKLM\SOFTWARE\Classes\Wow6432Node\CLSID\{CA0167C2-6295-41B8-9BDA-704B2F5E4CD9}\ (Softonic)
HKLM\SOFTWARE\Classes\Wow6432Node\CLSID\{E87806B5-E908-45FD-AF5E-957D83E58E68}\ (Softonic)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{087CDC12-0A11-4D1D-8DCF-44185D7C3496}\ (Softonic)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{088BF3A9-6AE8-47B9-A3FB-26262F236C79}\ (Softonic)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{2AC7B9EB-3881-4EB9-8DEE-0A731A309FDE}\ (Softonic)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}\ (Delta Search)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{349C0469-ACDD-49DF-9B3E-0D82E7C7DC4D}\ (Softonic)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}\ (Delta Search)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}\ (Delta Search)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{41226591-6F7A-4082-B63A-67FE4A0CF7A6}\ (Softonic)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33E***\ (Delta Search)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}\ (Babylon)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{55D69CD1-6715-4C40-BF05-9519AC4DC6E6}\ (Softonic)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{57C91446-8D81-4156-A70E-624551442DE9}\ (Delta Search)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{66C8FD57-54C4-4D4F-BC95-DCCC763B410A}\ (Softonic)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}\ (Babylon)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}\ (Delta Search)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{717BAE33-7061-4279-8AE5-6C13BC8AF3F9}\ (Softonic)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}\ (Delta Search)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{84F06F7A-F811-48D7-8B34-3F4145183D8F}\ (Softonic)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{88F6D55F-AA3F-4003-BE69-4AC1998D6492}\ (Softonic)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}\ (Babylon)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{8DBCDED5-08AD-41A2-9BBC-235D84F4FE06}\ (Softonic)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}\ (Babylon)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}\ (Delta Search)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{A0F66203-1A86-4812-9603-A57E09A4D7A3}\ (Softonic)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}\ (Babylon)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}\ (Babylon)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}\ (Delta Search)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}\ (Babylon)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{BC39D1B3-4471-41C1-AACA-E097FAF4B7AA}\ (Softonic)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}\ (Babylon)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}\ (Babylon)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}\ (Delta Search)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{DEB85542-1311-4EC6-8A32-5372EB27FC94}\ (Softonic)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}\ (Babylon)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}\ (Delta Search)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}\ (Babylon)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}\ (Babylon)
HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}\ (Delta Search)
HKLM\SOFTWARE\Classes\Wow6432Node\TypeLib\{11D9E165-B8C1-4734-A56C-BC4FCACA966***\ (Softonic)
HKLM\SOFTWARE\Classes\Wow6432Node\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}\ (Funmoods)
HKLM\SOFTWARE\Classes\Wow6432Node\TypeLib\{B15F118E-AF21-45E8-A809-29FDD7362565}\ (Softonic)
HKLM\SOFTWARE\Classes\Wow6432Node\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}\ (Funmoods)
HKLM\SOFTWARE\Wow6432Node\Babylon\ (Babylon)
HKLM\SOFTWARE\Wow6432Node\Conduit\ (Rocketfuel)
HKLM\SOFTWARE\Wow6432Node\DataMngr\ (SearchQU)
HKLM\SOFTWARE\Wow6432Node\Delta\ (SpeedUpMyPC)
HKLM\SOFTWARE\Wow6432Node\Delta\delta\ (Delta Search)
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\ (Babylon)
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9CF034EA-7B46-48D3-8895-8A14B32AE445}\ (Softonic)
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{E87806B5-E908-45FD-AF5E-957D83E58E68}\ (Softonic)
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Softonic\ (Softonic)
HKLM\SOFTWARE\Wow6432Node\Softonic\ (Softonic)
HKU\.DEFAULT\Software\BabSolution\ (SpeedUpMyPC)
HKU\S-1-5-18\Software\BabSolution\ (SpeedUpMyPC)
HKU\S-1-5-21-1614310069-550744753-3242965073-1000\Software\AppDataLow\Software\Smartbar\ (Conduit)
HKU\S-1-5-21-1614310069-550744753-3242965073-1000\Software\BabSolution\ (SpeedUpMyPC)
HKU\S-1-5-21-1614310069-550744753-3242965073-1000\Software\Conduit\ (Conduit)
HKU\S-1-5-21-1614310069-550744753-3242965073-1000\Software\Delta\ (SpeedUpMyPC)
HKU\S-1-5-21-1614310069-550744753-3242965073-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}\ (Babylon)
HKU\S-1-5-21-1614310069-550744753-3242965073-1000\Software\Softonic\ (Softonic)

Cookies _____________________________________________________________________

C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:112.2o7.net
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:247realmedia.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:2o7.net
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad-emea.doubleclick.net
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.360yield.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.ad-srv.net
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.adc-serv.net
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.auditude.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.dotandad.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.payclick.it
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.spreamedia.it
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.yieldmanager.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.zanox.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:adinterax.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:adopteunmec.solution.weborama.fr
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.befan.it
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.bol.it
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.guide-online.it
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.inmondadori.it
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.p161.net
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.pubmatic.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.rcs.it
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:adserver.bigboxnet.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:adserver.hwupgrade.it
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:adserver.ispazio.net
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:adserver.macchinefotografiche.me
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:adserver.wondir.it
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:adtech.de
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:advertising.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:aimfar.solution.weborama.fr
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:at.atwola.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:atdmt.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:atwola.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:barilla.solution.weborama.fr
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:barilliance.solution.weborama.fr
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:bs.serving-sys.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:burgerkingit.solution.weborama.fr
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:burstnet.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:c.atdmt.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:c1.atdmt.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:casalemedia.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:clickpointit.solution.weborama.fr
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:coop.solution.weborama.fr
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:datvantagevolumes.solution.weborama.fr
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:doubleclick.net
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:eas8.emediate.eu
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:enifamiglia.solution.weborama.fr
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:facileit.solution.weborama.fr
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:fastclick.net
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:ferrero2.solution.weborama.fr
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:fl01.ct2.comclick.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:fr.sitestat.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:googleads.g.doubleclick.net
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:h.atdmt.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:in.getclicky.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:interclick.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:invitemedia.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:media6degrees.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:mediaplex.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:microsoftsto.112.2o7.net
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:msnportal.112.2o7.net
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:nissan2.solution.weborama.fr
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:peugeot2.solution.weborama.fr
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:pg2.solution.weborama.fr
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:playstationit.solution.weborama.fr
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:pool-eu-ie.creative-serving.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:questionmarket.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:realmedia.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:revsci.net
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:ru4.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:samsung3.solution.weborama.fr
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:serving-sys.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:smartadserver.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:specificclick.net
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:statcounter.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:stats.paypal.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:statse.webtrendslive.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:survey.g.doubleclick.net
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:tacoda.at.atwola.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:track.adform.net
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:track.zalando.it
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:tradedoubler.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:tribalfusion.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:vodafoneit.solution.weborama.fr
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:vodafoneitsimple.solution.weborama.fr
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:weborama.fr
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:weboramaitdata.solution.weborama.fr
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:weboramaitdatas2.solution.weborama.fr
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:weboramaitdatas3.solution.weborama.fr
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:ww251.smartadserver.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:www.googleadservices.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:xiti.com
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:yadro.ru
C:\Users\Guido\AppData\Local\Google\Chrome\User Data\Default\Cookies:zedo.com
C:\Users\Guido\AppData\Roaming\Microsoft\Windows\Cookies\08GZIEA4.txt
C:\Users\Guido\AppData\Roaming\Microsoft\Windows\Cookies\10PCNMKK.txt
C:\Users\Guido\AppData\Roaming\Microsoft\Windows\Cookies\1LM0GXZJ.txt
C:\Users\Guido\AppData\Roaming\Microsoft\Windows\Cookies\3EGPW4G0.txt
C:\Users\Guido\AppData\Roaming\Microsoft\Windows\Cookies\48KRT89D.txt
C:\Users\Guido\AppData\Roaming\Microsoft\Windows\Cookies\7HSRQDKN.txt
C:\Users\Guido\AppData\Roaming\Microsoft\Windows\Cookies\8S2RYLFI.txt
C:\Users\Guido\AppData\Roaming\Microsoft\Windows\Cookies\DD7LO6T6.txt
C:\Users\Guido\AppData\Roaming\Microsoft\Windows\Cookies\DOVE89RR.txt
C:\Users\Guido\AppData\Roaming\Microsoft\Windows\Cookies\ERBXJMPG.txt
C:\Users\Guido\AppData\Roaming\Microsoft\Windows\Cookies\I9V2GPTG.txt
C:\Users\Guido\AppData\Roaming\Microsoft\Windows\Cookies\LRL3P5ZQ.txt
C:\Users\Guido\AppData\Roaming\Microsoft\Windows\Cookies\MZT2O8L7.txt
C:\Users\Guido\AppData\Roaming\Microsoft\Windows\Cookies\NIAX4KN5.txt
C:\Users\Guido\AppData\Roaming\Microsoft\Windows\Cookies\S3Q4DWFB.txt
C:\Users\Guido\AppData\Roaming\Microsoft\Windows\Cookies\TY1EEZAO.txt
C:\Users\Guido\AppData\Roaming\Microsoft\Windows\Cookies\UR4GPVFN.txt
C:\Users\Guido\AppData\Roaming\Microsoft\Windows\Cookies\WVDLAPK2.txt
C:\Users\Guido\AppData\Roaming\Microsoft\Windows\Cookies\YHPERFB7.txt
C:\Users\Guido\AppData\Roaming\Microsoft\Windows\Cookies\YIS32626.txt
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:247realmedia.com
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:2o7.net
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:ad.360yield.com
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:ad.payclick.it
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:ad.yieldmanager.com
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:ad.zanox.com
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:adbrite.com
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:adinterax.com
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:ads.ad4game.com
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:ads.rcs.it
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:ads.traffichaus.com
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:adtech.de
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:advertising.com
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:apmebf.com
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:at.atwola.com
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:atdmt.com
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:austrianairlines.122.2o7.net
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:bs.serving-sys.com
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:c.atdmt.com
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:casalemedia.com
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:doubleclick.net
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:eas8.emediate.eu
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:engine.streamate.doublepimp.com
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:fastclick.net
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:findomesticit.solution.weborama.fr
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:h.atdmt.com
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:idifarmaceutici.solution.weborama.fr
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:impit.tradedoubler.com
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:interclick.com
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:invitemedia.com
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:media6degrees.com
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:mediaplex.com
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:msnportal.112.2o7.net
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:novartis4.solution.weborama.fr
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:pg2.solution.weborama.fr
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:questionmarket.com
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:revsci.net
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:ru4.com
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:serving-sys.com
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:sexad.net
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:smartadserver.com
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:specificclick.net
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:statcounter.com
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:stats.runashop.com
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:statse.webtrendslive.com
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:streamate.doublepimp.com
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:track.adform.net
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:tradedoubler.com
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:tribalfusion.com
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:uk.at.atwola.com
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:vodafoneit.solution.weborama.fr
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:weborama.fr
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:ww251.smartadserver.com
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:www.googleadservices.com
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:yadro.ru
C:\Users\Guido\AppData\Roaming\Mozilla\Firefox\Profiles\lrbpg5sm.default\cookies.sqlite:youjizz.tuttoporno.mobi