ho allegato i log otl.txt e extras.txt con copia incolla senza passare da Wikisend perchè mi da sempre un avviso
di errore
non so se ho fatto bene o serve a qualcosa, io ci ho provato
per il firewall cosa mi consigli?
ciao
OTL logfile created on: 29/08/2013 21.28.39 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = F:\Documents and Settings\Franco\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000410 | Country: Italia | Language: ITA | Date Format: dd/MM/yyyy
2,00 Gb Total Physical Memory | 1,18 Gb Available Physical Memory | 58,85% Memory free
3,35 Gb Paging File | 2,62 Gb Available in Paging File | 78,22% Paging File free
Paging file location(s): f:\pagefile.sys 1536 3072 [binary data]
%SystemDrive% = F: | %SystemRoot% = F:\WINDOWS | %ProgramFiles% = F:\Programmi
Drive C: | 152,66 Gb Total Space | 126,55 Gb Free Space | 82,90% Space Free | Partition Type: NTFS
Drive F: | 74,52 Gb Total Space | 41,80 Gb Free Space | 56,09% Space Free | Partition Type: NTFS
Drive H: | 931,51 Gb Total Space | 605,93 Gb Free Space | 65,05% Space Free | Partition Type: NTFS
Computer Name: FRANCO-9A863AFC | User Name: Franco | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days
========== Processes (SafeList) ========== PRC - F:\Documents and Settings\Franco\desktop\OTL.exe (OldTimer Tools)
PRC - F:\Programmi\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)
PRC - F:\Programmi\Avira\AntiVir Desktop\avwebgrd.exe (Avira Operations GmbH & Co. KG)
PRC - F:\Programmi\Avira\AntiVir Desktop\avshadow.exe (Avira Operations GmbH & Co. KG)
PRC - F:\Programmi\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)
PRC - F:\Programmi\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
PRC - F:\Programmi\Howard\Howard.exe (CompSoft)
PRC - F:\Programmi\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - F:\Documents and Settings\All Users\Dati applicazioni\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.)
PRC - F:\Programmi\Java\jre7\bin\jqs.exe (Oracle Corporation)
PRC - F:\Programmi\File comuni\Java\Java Update\jusched.exe (Oracle Corporation)
PRC - F:\WINDOWS\vVX1000.exe (Microsoft Corporation)
PRC - F:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - F:\Programmi\File comuni\Acronis\Fomatik\TrueImageTryStartService.exe ()
PRC - F:\Programmi\File comuni\Acronis\Schedule2\schedul2.exe (Acronis)
PRC - F:\Programmi\Microsoft LifeCam\MSCamS32.exe (Microsoft Corporation)
========== Modules (No Company Name) ========== MOD - F:\Programmi\Avira\AntiVir Desktop\sqlite3.dll ()
MOD - F:\Programmi\Mozilla Firefox\mozjs.dll ()
MOD - F:\Programmi\Howard\LogitechLcd.dll ()
MOD - F:\WINDOWS\system32\LcProxy.ax ()
MOD - F:\WINDOWS\system32\msdmo.dll ()
MOD - F:\Programmi\File comuni\Acronis\Fomatik\TrueImageTryStartService.exe ()
MOD - F:\WINDOWS\system32\CNQL3203.DLL ()
========== Services (SafeList) ========== SRV - (AntiVirSchedulerService) -- F:\Programmi\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)
SRV - (AntiVirWebService) -- F:\Programmi\Avira\AntiVir Desktop\avwebgrd.exe (Avira Operations GmbH & Co. KG)
SRV - (AntiVirService) -- F:\Programmi\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)
SRV - (AdobeFlashPlayerUpdateSvc) -- F:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (MozillaMaintenance) -- F:\Programmi\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (Skype C2C Service) -- F:\Documents and Settings\All Users\Dati applicazioni\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.)
SRV - (JavaQuickStarterService) -- F:\Programmi\Java\jre7\bin\jqs.exe (Oracle Corporation)
SRV - (SkypeUpdate) -- F:\Programmi\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (MsMpSvc) -- F:\Programmi\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
SRV - (ServiceLayer) -- F:\Programmi\PC Connectivity Solution\ServiceLayer.exe (Nokia)
SRV - (nvUpdatusService) -- F:\Programmi\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
SRV - (odserv) -- F:\Programmi\File comuni\Microsoft Shared\OFFICE12\ODSERV.EXE (Microsoft Corporation)
SRV - (TryAndDecideService) -- F:\Programmi\File comuni\Acronis\Fomatik\TrueImageTryStartService.exe ()
SRV - (AcrSch2Svc) -- F:\Programmi\File comuni\Acronis\Schedule2\schedul2.exe (Acronis)
SRV - (MSCamSvc) -- F:\Programmi\Microsoft LifeCam\MSCamS32.exe (Microsoft Corporation)
SRV - (ose) -- F:\Programmi\File comuni\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
SRV - (IDriverT) -- F:\Programmi\File comuni\InstallShield\Driver\1050\Intel 32\IDriverT.exe (Macrovision Corporation)
========== Driver Services (SafeList) ========== DRV - (WDICA) -- File not found
DRV - (Scutum50) -- System32\Drivers\Scutum50.sys File not found
DRV - (rt2870) -- system32\DRIVERS\rt2870.sys File not found
DRV - (PDRFRAME) -- File not found
DRV - (PDRELI) -- File not found
DRV - (PDFRAME) -- File not found
DRV - (PDCOMP) -- File not found
DRV - (PCIDump) -- File not found
DRV - (dwshd) -- F:\WINDOWS\System32\drivers\dwshd.sys File not found
DRV - (654B0816) -- f:\documents and settings\franco\impostazioni locali\temp\654B0816.sys File not found
DRV - (avipbb) -- F:\WINDOWS\system32\drivers\avipbb.sys (Avira Operations GmbH & Co. KG)
DRV - (avgntflt) -- F:\WINDOWS\system32\drivers\avgntflt.sys (Avira Operations GmbH & Co. KG)
DRV - (avkmgr) -- F:\WINDOWS\system32\drivers\avkmgr.sys (Avira Operations GmbH & Co. KG)
DRV - (ssmdrv) -- F:\WINDOWS\system32\drivers\ssmdrv.sys (Avira GmbH)
DRV - (UsbserFilt) -- F:\WINDOWS\system32\drivers\usbser_lowerfltj.sys (Nokia)
DRV - (upperdev) -- F:\WINDOWS\system32\drivers\usbser_lowerflt.sys (Nokia)
DRV - (nmwcdc) -- F:\WINDOWS\system32\drivers\ccdcmbo.sys (Nokia)
DRV - (nmwcd) -- F:\WINDOWS\system32\drivers\ccdcmb.sys (Nokia)
DRV - (timounter) -- F:\WINDOWS\system32\drivers\timntr.sys (Acronis)
DRV - (tifsfilter) -- F:\WINDOWS\system32\drivers\tifsfilt.sys (Acronis)
DRV - (snapman) -- F:\WINDOWS\system32\drivers\snapman.sys (Acronis)
DRV - (tdrpman) -- F:\WINDOWS\system32\drivers\tdrpman.sys (Acronis)
DRV - (pccsmcfd) -- F:\WINDOWS\system32\drivers\pccsmcfd.sys (Nokia)
DRV - (npf) -- F:\WINDOWS\system32\drivers\npf.sys (CACE Technologies, Inc.)
DRV - (UnlockerDriver5) -- F:\Programmi\Unlocker\UnlockerDriver5.sys ()
DRV - (VX1000) -- F:\WINDOWS\system32\drivers\VX1000.sys (Microsoft Corporation)
DRV - (FsUsbExDisk) -- F:\WINDOWS\system32\FsUsbExDisk.Sys ()
DRV - (pfc) -- F:\WINDOWS\system32\drivers\pfc.sys (Padus, Inc.)
DRV - (ANVOSDNT) -- F:\WINDOWS\system32\drivers\anvosdnt.sys (ASUS)
DRV - (BTKRNL) -- F:\WINDOWS\system32\drivers\btkrnl.sys (Broadcom Corporation.)
DRV - (btaudio) -- F:\WINDOWS\system32\drivers\btaudio.sys (Broadcom Corporation.)
DRV - (gameenum) -- F:\WINDOWS\system32\drivers\gameenum.sys (Microsoft Corporation)
DRV - (Changer) -- F:\WINDOWS\System32\drivers\changer.sys (Microsoft Corporation)
DRV - (lbrtfdc) -- F:\WINDOWS\System32\drivers\lbrtfdc.sys (Toshiba Corp.)
DRV - (BTWUSB) -- F:\WINDOWS\system32\drivers\btwusb.sys (Broadcom Corporation.)
DRV - (btwhid) -- F:\WINDOWS\system32\drivers\btwhid.sys (Broadcom Corporation.)
DRV - (BTDriver) -- F:\WINDOWS\system32\drivers\btport.sys (Broadcom Corporation.)
DRV - (btwmodem) -- F:\WINDOWS\system32\drivers\btwmodem.sys (Broadcom Corporation.)
DRV - (BTWDNDIS) -- F:\WINDOWS\system32\drivers\btwdndis.sys (Broadcom Corporation.)
DRV - (SCDEmu) -- F:\WINDOWS\System32\drivers\scdemu.sys (PowerISO Computing, Inc.)
DRV - (Afc) -- F:\WINDOWS\system32\drivers\afc.sys (Arcsoft, Inc.)
DRV - (SISNICXP) -- F:\WINDOWS\system32\drivers\sisnicxp.sys (SiS Corporation)
DRV - (Tosrfusb) -- F:\WINDOWS\system32\drivers\tosrfusb.sys (TOSHIBA CORPORATION)
DRV - (Tosrfbd) -- F:\WINDOWS\system32\drivers\TosRfbd.sys (TOSHIBA CORPORATION)
DRV - (Tosrfhid) -- F:\WINDOWS\system32\drivers\TosRfhid.sys (TOSHIBA Corporation.)
DRV - (TosRfSnd) -- F:\WINDOWS\system32\drivers\TosRfSnd.sys (TOSHIBA Corporation)
DRV - (tosporte) -- F:\WINDOWS\system32\drivers\Tosporte.sys (TOSHIBA Corporation)
DRV - (tosrfnds) -- F:\WINDOWS\system32\drivers\tosrfnds.sys (TOSHIBA Corporation.)
DRV - (Tosrfcom) -- F:\WINDOWS\system32\drivers\tosrfcom.sys (TOSHIBA Corporation)
DRV - (SISNIC) -- F:\WINDOWS\system32\drivers\sisnic.sys (SiS Corporation)
DRV - (Tosrfbnp) -- F:\WINDOWS\system32\drivers\tosrfbnp.sys (TOSHIBA Corporation)
DRV - (sisagp) -- F:\WINDOWS\system32\drivers\SISAGPX.SYS (Silicon Integrated Systems Corporation)
DRV - (toshidpt) -- F:\WINDOWS\system32\drivers\Toshidpt.sys (TOSHIBA Corporation.)
DRV - (ANVIOCTL) -- F:\WINDOWS\system32\drivers\anvioctl.sys (ASUSTeK)
DRV - (DFE528TX) -- F:\WINDOWS\system32\drivers\DLKRTL.SYS (D-Link Corporation )
DRV - (ms_mpu401) -- F:\WINDOWS\system32\drivers\msmpu401.sys (Microsoft Corporation)
DRV - (irsir) -- F:\WINDOWS\system32\drivers\irsir.sys (Microsoft Corporation)
DRV - (VIAudio) -- F:\WINDOWS\system32\drivers\vinyl97.sys (VIA Technologies, Inc.)
DRV - (sisidex) -- F:\WINDOWS\system32\drivers\sisidex.sys (Windows (R) 2000 DDK provider)
DRV - (dc3d) -- F:\WINDOWS\system32\drivers\dc3d.sys (Microsoft Corporation)
DRV - (sisperf) -- F:\WINDOWS\system32\drivers\sisperf.sys (Silicon Integrated Systems Corp.)
DRV - (SiSide) -- F:\WINDOWS\system32\drivers\siside.sys (Silicon Integrated Systems Corp.)
========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://www.google.comIE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://www.google.comIE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{2e51ec4e-2fa9-40fa-9007-2411de34e7ca}: "URL" =
http://search.mywebsearch.com/mywebsearch/GGmain.jhtml?id=YWxdm009YYit&ptb=A5B06B34-4E10-482F-BA8E-AD49E7EBF43B&ind=2011091717&ptnrS=YWxdm009YYit&si=maps4pc&n=77ded305&psa=&st=sb&searchfor={searchTerms}
IE - HKLM\..\SearchScopes\{c1d89ae7-449d-4929-b24b-fded04adbe06}: "URL" =
http://isearch.glarysoft.com/?q={searchTerms}&src=iesearch
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-73586283-1606980848-1060284298-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://www.google.comIE - HKU\S-1-5-21-73586283-1606980848-1060284298-1003\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKU\S-1-5-21-73586283-1606980848-1060284298-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://www.google.it/IE - HKU\S-1-5-21-73586283-1606980848-1060284298-1003\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-73586283-1606980848-1060284298-1003\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-73586283-1606980848-1060284298-1003\..\SearchScopes\{2e51ec4e-2fa9-40fa-9007-2411de34e7ca}: "URL" =
http://search.mywebsearch.com/mywebsearch/GGmain.jhtml?id=YWxdm009YYit&ptb=A5B06B34-4E10-482F-BA8E-AD49E7EBF43B&ind=2011091717&ptnrS=YWxdm009YYit&si=maps4pc&n=77ded305&psa=&st=sb&searchfor={searchTerms}
IE - HKU\S-1-5-21-73586283-1606980848-1060284298-1003\..\SearchScopes\{c1d89ae7-449d-4929-b24b-fded04adbe06}: "URL" =
http://isearch.glarysoft.com/?q={searchTerms}&src=iesearch
IE - HKU\S-1-5-21-73586283-1606980848-1060284298-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ========== FF - prefs.js..browser.startup.homepage: "http://www.google.it/"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:23.0.1
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: F:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: File not found
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: File not found
FF - HKLM\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: F:\Programmi\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF - HKLM\Software\MozillaPlugins\@ei.Maps4PC_0c.com/Plugin: File not found
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: F:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: F:\Programmi\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Maps4PC_0c.com/Plugin: File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: F:\Programmi\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: F:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nokia.com/EnablerPlugin: F:\Programmi\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF - HKLM\Software\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: F:\Programmi\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.7: F:\Programmi\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@zylom.com/ZylomGamesPlayer: F:\Documents and Settings\All Users\Dati applicazioni\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll (Zylom)
FF - HKCU\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: F:\Programmi\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{203FB6B2-2E1E-4474-863B-4C483ECCE78E}: F:\Documents and Settings\All Users\Dati applicazioni\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2.0.0.16\coFFNST\
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Plugins: F:\Programmi\Mozilla Firefox\plugins [2013/08/11 00.53.11 | 000,000,000 | ---D | M]
[2011/09/18 21.36.07 | 000,000,000 | ---D | M] (No name found) -- F:\Documents and Settings\Franco\Dati applicazioni\Mozilla\Extensions
[2013/08/28 15.53.54 | 000,000,000 | ---D | M] (No name found) -- F:\Documents and Settings\Franco\Dati applicazioni\Mozilla\Firefox\Profiles\boiae7zi.default-1377697626920\extensions
[2013/08/28 15.53.54 | 000,824,302 | ---- | M] () (No name found) -- F:\Documents and Settings\Franco\Dati applicazioni\Mozilla\Firefox\Profiles\boiae7zi.default-1377697626920\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2013/08/11 00.52.34 | 000,000,000 | ---D | M] (No name found) -- F:\Programmi\Mozilla Firefox\extensions
[2013/08/18 18.23.54 | 000,000,000 | ---D | M] (Skype Click to Call) -- F:\Programmi\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013/08/11 00.52.33 | 000,000,000 | ---D | M] (No name found) -- F:\Programmi\Mozilla Firefox\browser\extensions
[2013/08/18 18.23.54 | 000,000,000 | ---D | M] (Skype Click to Call) -- F:\Programmi\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013/08/18 20.59.43 | 000,000,000 | ---D | M] (Default) -- F:\Programmi\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2000/01/01 03.00.00 | 000,170,064 | ---- | M] (Tracker Software Products Ltd.) -- F:\Programmi\mozilla firefox\plugins\npPDFXCviewNPPlugin.dll
O1 HOSTS File: ([2013/08/26 16.08.43 | 000,450,598 | ---- | M]) - F:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 15468 more lines...
O2 - BHO: (Avira SearchFree Toolbar plus Web Protection) - {41564952-412D-5637-00A7-7A786E7484D7} - "F:\Programmi\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll" File not found
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - F:\Programmi\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (EWPBrowseObject Class) - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - F:\Programmi\Canon\Easy-WebPrint\EWPBrowseLoader.dll ()
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - F:\Programmi\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Guida per l'accesso a Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - F:\Programmi\File comuni\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - F:\Programmi\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (no name) - {30CEEEA2-3742-40e4-85DD-812BF1CBB83D} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Avira SearchFree Toolbar plus Web Protection) - {41564952-412D-5637-00A7-7A786E7484D7} - "F:\Programmi\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll" File not found
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (Avira SearchFree Toolbar plus Web Protection) - {41564952-412D-5637-00A7-7A786E7484D7} - "F:\Programmi\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll" File not found
O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (Avira SearchFree Toolbar plus Web Protection) - {41564952-412D-5637-00A7-7A786E7484D7} - "F:\Programmi\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll" File not found
O3 - HKU\S-1-5-21-73586283-1606980848-1060284298-1003\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\S-1-5-21-73586283-1606980848-1060284298-1003\..\Toolbar\WebBrowser: (no name) - {30CEEEA2-3742-40E4-85DD-812BF1CBB83D} - No CLSID value found.
O3 - HKU\S-1-5-21-73586283-1606980848-1060284298-1003\..\Toolbar\WebBrowser: (Avira SearchFree Toolbar plus Web Protection) - {41564952-412D-5637-00A7-7A786E7484D7} - "F:\Programmi\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll" File not found
O4 - HKLM..\Run: [avgnt] F:\Programmi\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [NvCplDaemon] F:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [SunJavaUpdateSched] F:\Programmi\File comuni\Java\Java Update\jusched.exe (Oracle Corporation)
O4 - HKLM..\Run: [VX1000] F:\WINDOWS\vVX1000.exe (Microsoft Corporation)
O4 - HKU\.DEFAULT..\RunOnce: [tscuninstall] F:\WINDOWS\system32\tscupgrd.exe (Microsoft Corporation)
O4 - HKU\S-1-5-18..\RunOnce: [tscuninstall] F:\WINDOWS\system32\tscupgrd.exe (Microsoft Corporation)
O4 - Startup: F:\Documents and Settings\Franco\Menu Avvio\Programmi\Esecuzione automatica\Howard.lnk = F:\Programmi\Howard\Howard.exe (CompSoft)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-73586283-1606980848-1060284298-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-73586283-1606980848-1060284298-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-73586283-1606980848-1060284298-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108862
O7 - HKU\S-1-5-21-73586283-1606980848-1060284298-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-73586283-1606980848-1060284298-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0
O8 - Extra context menu item: Invia a Bluetooth - F:\Programmi\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O8 - Extra context menu item: Invia a periferica &Bluetooth... - F:\Programmi\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - F:\Programmi\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - F:\Programmi\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - F:\Programmi\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - F:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - F:\Programmi\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - F:\Programmi\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000034 - F:\Programmi\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3}
http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1340800070625 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}
http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 10.25.2)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 10.25.2)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000}
http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7}
http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 62.101.93.101 83.103.25.250
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{AE5D044A-795D-43F8-AFFA-003642D98CC4}: DhcpNameServer = 62.101.93.101 83.103.25.250
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{CDDF055C-4586-4E8F-BFC2-16DBB02F71D1}: DhcpNameServer = 62.101.93.101 83.103.25.250
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E0258B1C-68B1-4B0A-B1D9-B7628432A250}: DhcpNameServer = 62.101.93.101 83.103.25.250
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - F:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\livecall - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - F:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - F:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - F:\Programmi\File comuni\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - F:\Programmi\File comuni\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - F:\Programmi\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - F:\Programmi\File comuni\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - F:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (F:\WINDOWS\system32\userinit.exe) - F:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Pagina iniziale corrente) - About:Home
O24 - Desktop WallPaper: F:\Documents and Settings\Franco\Impostazioni locali\Dati applicazioni\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: F:\Documents and Settings\Franco\Impostazioni locali\Dati applicazioni\Microsoft\Wallpaper1.bmp
O30 - LSA: Authentication Packages - (relog_ap) - F:\WINDOWS\System32\relog_ap.dll (Acronis)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/05/24 21.37.34 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2011/08/27 09.04.56 | 000,000,000 | RH-D | M] - H:\autorun -- [ NTFS ]
O32 - Unable to obtain root file information for disk H:\
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
========== Files/Folders - Created Within 60 Days ========== [2013/08/29 21.25.05 | 000,602,112 | ---- | C] (OldTimer Tools) -- F:\Documents and Settings\Franco\Desktop\OTL.exe
[2013/08/29 20.50.03 | 000,000,000 | ---D | C] -- F:\AdwCleaner
[2013/08/29 20.39.34 | 000,000,000 | RH-D | C] -- F:\Documents and Settings\Franco\Recent
[2013/08/28 15.29.04 | 000,000,000 | ---D | C] -- F:\Programmi\Spybot - Search & Destroy
[2013/08/28 15.03.13 | 000,000,000 | ---D | C] -- F:\Documents and Settings\Franco\Menu Avvio\Programmi\HiJackThis
[2013/08/28 14.52.16 | 000,000,000 | ---D | C] -- F:\Programmi\Trend Micro
[2013/08/27 17.35.32 | 000,000,000 | ---D | C] -- F:\Documents and Settings\LocalService\Dati applicazioni\Adobe
[2013/08/27 17.15.08 | 000,000,000 | ---D | C] -- F:\WINDOWS\System32\NtmsData
[2013/08/27 00.30.34 | 000,000,000 | R--D | C] -- F:\Documents and Settings\All Users\Menu Avvio\Programmi\Avira
[2013/08/27 00.30.13 | 000,028,520 | ---- | C] (Avira GmbH) -- F:\WINDOWS\System32\drivers\ssmdrv.sys
[2013/08/27 00.30.09 | 000,135,136 | ---- | C] (Avira Operations GmbH & Co. KG) -- F:\WINDOWS\System32\drivers\avipbb.sys
[2013/08/27 00.30.09 | 000,084,744 | ---- | C] (Avira Operations GmbH & Co. KG) -- F:\WINDOWS\System32\drivers\avgntflt.sys
[2013/08/27 00.30.09 | 000,037,352 | ---- | C] (Avira Operations GmbH & Co. KG) -- F:\WINDOWS\System32\drivers\avkmgr.sys
[2013/08/27 00.30.02 | 000,000,000 | ---D | C] -- F:\Programmi\Avira
[2013/08/27 00.30.02 | 000,000,000 | ---D | C] -- F:\Documents and Settings\All Users\Dati applicazioni\Avira
[2013/08/27 00.24.02 | 000,000,000 | ---D | C] -- F:\Documents and Settings\Franco\Dati applicazioni\Avira
[2013/08/26 22.25.38 | 000,000,000 | R--D | C] -- F:\Documents and Settings\All Users\Menu Avvio\Programmi\VideoLAN
[2013/08/26 18.45.48 | 000,000,000 | ---D | C] -- F:\WINDOWS\System32\MRT
[2013/08/19 16.17.23 | 000,000,000 | ---D | C] -- F:\WINDOWS\ERUNT
[2013/08/19 15.59.56 | 000,000,000 | ---D | C] -- F:\JRT
[2013/08/11 00.52.31 | 000,000,000 | ---D | C] -- F:\Programmi\Mozilla Firefox
[2013/07/26 14.33.48 | 001,510,400 | ---- | C] (The Shchuka's Place) -- F:\Documents and Settings\Franco\Desktop\unire file MP3.exe
[2013/07/26 13.06.24 | 000,000,000 | ---D | C] -- F:\Documents and Settings\All Users\Menu Avvio\Programmi\aTube Catcher
[2013/07/23 13.13.02 | 000,000,000 | ---D | C] -- F:\Documents and Settings\Franco\Dati applicazioni\Canon
[2013/07/23 13.03.29 | 000,069,632 | ---- | C] (CANON INC.) -- F:\WINDOWS\System32\CNQU86.DLL
[2013/07/23 13.03.29 | 000,069,632 | ---- | C] (Canon Inc.) -- F:\WINDOWS\System32\CNQA3203.DLL
[2013/07/23 13.03.29 | 000,000,000 | -H-D | C] -- F:\CanoScan
[2013/07/09 17.51.36 | 004,745,728 | ---- | C] (AVAST Software) -- F:\Documents and Settings\Franco\Desktop\aswMBR.exe
[2013/07/03 16.46.27 | 000,000,000 | -HSD | C] -- F:\Documents and Settings\All Users\Dati applicazioni\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
[2013/07/03 16.46.27 | 000,000,000 | -H-D | C] -- F:\Documents and Settings\All Users\Dati applicazioni\Common Files
[2 F:\WINDOWS\System32\*.tmp files -> F:\WINDOWS\System32\*.tmp -> ]
[2 F:\Documents and Settings\Franco\Desktop\*.tmp files -> F:\Documents and Settings\Franco\Desktop\*.tmp -> ]
========== Files - Modified Within 60 Days ========== [2013/08/29 21.27.00 | 000,000,978 | ---- | M] () -- F:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2013/08/29 21.25.15 | 000,602,112 | ---- | M] (OldTimer Tools) -- F:\Documents and Settings\Franco\Desktop\OTL.exe
[2013/08/29 20.55.06 | 000,002,262 | ---- | M] () -- F:\WINDOWS\System32\wpa.dbl
[2013/08/29 20.54.13 | 000,002,048 | --S- | M] () -- F:\WINDOWS\bootstat.dat
[2013/08/29 20.48.24 | 000,000,416 | -H-- | M] () -- F:\WINDOWS\tasks\User_Feed_Synchronization-{E9463A99-1661-4C8F-88CF-ABC83AE94A29}.job
[2013/08/29 20.32.01 | 000,994,642 | ---- | M] () -- F:\Documents and Settings\Franco\Desktop\adwcleaner.exe
[2013/08/29 01.01.29 | 000,002,427 | ---- | M] () -- F:\Documents and Settings\Franco\Desktop\HiJackThis.lnk
[2013/08/28 15.29.13 | 000,000,918 | ---- | M] () -- F:\Documents and Settings\Franco\Desktop\Spybot - Search & Destroy.lnk
[2013/08/27 00.21.47 | 000,135,136 | ---- | M] (Avira Operations GmbH & Co. KG) -- F:\WINDOWS\System32\drivers\avipbb.sys
[2013/08/27 00.21.47 | 000,084,744 | ---- | M] (Avira Operations GmbH & Co. KG) -- F:\WINDOWS\System32\drivers\avgntflt.sys
[2013/08/27 00.21.47 | 000,037,352 | ---- | M] (Avira Operations GmbH & Co. KG) -- F:\WINDOWS\System32\drivers\avkmgr.sys
[2013/08/27 00.21.47 | 000,028,520 | ---- | M] (Avira GmbH) -- F:\WINDOWS\System32\drivers\ssmdrv.sys
[2013/08/26 23.40.38 | 000,001,912 | ---- | M] () -- F:\WINDOWS\epplauncher.mif
[2013/08/26 23.37.00 | 000,000,398 | -H-- | M] () -- F:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job
[2013/08/26 23.26.00 | 000,303,624 | ---- | M] () -- F:\WINDOWS\System32\FNTCACHE.DAT
[2013/08/26 23.23.51 | 000,807,260 | ---- | M] () -- F:\WINDOWS\System32\perfh010.dat
[2013/08/26 23.23.51 | 000,710,614 | ---- | M] () -- F:\WINDOWS\System32\perfh009.dat
[2013/08/26 23.23.51 | 000,206,170 | ---- | M] () -- F:\WINDOWS\System32\perfc010.dat
[2013/08/26 23.23.51 | 000,162,484 | ---- | M] () -- F:\WINDOWS\System32\perfc009.dat
[2013/08/26 17.01.44 | 000,002,480 | ---- | M] () -- F:\WINDOWS\wininit.ini
[2013/08/26 16.08.43 | 000,450,598 | R--- | M] () -- F:\WINDOWS\System32\drivers\etc\hosts.20130828-153318.backup
[2013/08/26 16.08.43 | 000,450,598 | ---- | M] () -- F:\WINDOWS\System32\drivers\etc\hosts
[2013/08/25 23.57.54 | 128,953,512 | ---- | M] () -- F:\Documents and Settings\Franco\Desktop\ald988xu.exe
[2013/08/25 17.32.43 | 000,692,104 | ---- | M] (Adobe Systems Incorporated) -- F:\WINDOWS\System32\FlashPlayerApp.exe
[2013/08/25 17.32.40 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- F:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2013/07/31 10.20.31 | 000,000,237 | ---- | M] () -- F:\Documents and Settings\Franco\.swfinfo
[2013/07/26 04.47.14 | 000,920,064 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\dllcache\wininet.dll
[2013/07/26 04.47.13 | 000,759,296 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\dllcache\vgx.dll
[2013/07/26 04.47.12 | 001,215,488 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\dllcache\urlmon.dll
[2013/07/26 04.47.12 | 000,105,984 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\url.dll
[2013/07/26 04.47.12 | 000,105,984 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\dllcache\url.dll
[2013/07/26 04.47.11 | 000,611,840 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\mstime.dll
[2013/07/26 04.47.11 | 000,611,840 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\dllcache\mstime.dll
[2013/07/26 04.47.11 | 000,206,848 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\dllcache\occache.dll
[2013/07/26 04.47.10 | 006,017,536 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\dllcache\mshtml.dll
[2013/07/26 04.47.10 | 000,067,072 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\dllcache\mshtmled.dll
[2013/07/26 04.47.04 | 000,630,272 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\msfeeds.dll
[2013/07/26 04.47.04 | 000,630,272 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\dllcache\msfeeds.dll
[2013/07/26 04.47.04 | 000,055,296 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\msfeedsbs.dll
[2013/07/26 04.47.04 | 000,055,296 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2013/07/26 04.47.03 | 000,522,240 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\dllcache\jsdbgui.dll
[2013/07/26 04.47.03 | 000,043,520 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\licmgr10.dll
[2013/07/26 04.47.03 | 000,043,520 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\dllcache\licmgr10.dll
[2013/07/26 04.47.03 | 000,025,600 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\jsproxy.dll
[2013/07/26 04.47.03 | 000,025,600 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\dllcache\jsproxy.dll
[2013/07/26 04.47.02 | 002,005,504 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\dllcache\iertutil.dll
[2013/07/26 04.47.02 | 001,469,440 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\inetcpl.cpl
[2013/07/26 04.47.02 | 001,469,440 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\dllcache\inetcpl.cpl
[2013/07/26 04.47.00 | 000,184,320 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\iepeers.dll
[2013/07/26 04.47.00 | 000,184,320 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\dllcache\iepeers.dll
[2013/07/26 04.46.59 | 011,113,472 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\dllcache\ieframe.dll
[2013/07/26 04.46.57 | 000,743,424 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\dllcache\iedvtool.dll
[2013/07/26 04.46.56 | 000,387,584 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\iedkcs32.dll
[2013/07/26 04.46.56 | 000,387,584 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\dllcache\iedkcs32.dll
[2013/07/25 21.24.56 | 000,174,592 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\ie4uinit.exe
[2013/07/25 21.24.56 | 000,174,592 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\dllcache\ie4uinit.exe
[2013/07/25 17.54.52 | 000,385,024 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\html.iec
[2013/07/23 13.52.33 | 000,001,629 | ---- | M] () -- F:\Documents and Settings\All Users\Desktop\Canon My Printer.lnk
[2013/07/10 12.37.53 | 000,406,016 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\dllcache\usp10.dll
[2013/07/09 17.52.21 | 004,745,728 | ---- | M] (AVAST Software) -- F:\Documents and Settings\Franco\Desktop\aswMBR.exe
[2013/07/09 10.33.33 | 000,000,000 | ---- | M] () -- F:\cookies.sqlite
[2013/07/04 09.34.03 | 002,197,248 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\ntoskrnl.exe
[2013/07/04 09.34.03 | 002,197,248 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\dllcache\ntoskrnl.exe
[2013/07/04 09.34.03 | 002,073,856 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\ntkrnlpa.exe
[2013/07/04 09.34.03 | 002,073,856 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\dllcache\ntkrnlpa.exe
[2013/07/04 09.34.01 | 002,153,472 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2013/07/04 09.34.00 | 002,032,128 | ---- | M] (Microsoft Corporation) -- F:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2 F:\WINDOWS\System32\*.tmp files -> F:\WINDOWS\System32\*.tmp -> ]
[2 F:\Documents and Settings\Franco\Desktop\*.tmp files -> F:\Documents and Settings\Franco\Desktop\*.tmp -> ]
========== Files Created - No Company Name ========== [2013/08/29 20.31.56 | 000,994,642 | ---- | C] () -- F:\Documents and Settings\Franco\Desktop\adwcleaner.exe
[2013/08/28 15.29.12 | 000,000,918 | ---- | C] () -- F:\Documents and Settings\Franco\Desktop\Spybot - Search & Destroy.lnk
[2013/08/28 15.03.13 | 000,002,427 | ---- | C] () -- F:\Documents and Settings\Franco\Desktop\HiJackThis.lnk
[2013/08/25 23.18.23 | 128,953,512 | ---- | C] () -- F:\Documents and Settings\Franco\Desktop\ald988xu.exe
[2013/07/25 08.54.15 | 000,000,611 | ---- | C] () -- F:\Documents and Settings\Franco\Menu Avvio\Programmi\Esecuzione automatica\Howard.lnk
[2013/07/23 13.52.33 | 000,001,629 | ---- | C] () -- F:\Documents and Settings\All Users\Desktop\Canon My Printer.lnk
[2013/07/23 13.03.29 | 000,434,176 | ---- | C] () -- F:\WINDOWS\System32\CNQL3203.DLL
[2013/07/23 13.03.29 | 000,393,225 | ---- | C] () -- F:\WINDOWS\System32\C3203TA.PLG
[2013/07/23 13.03.29 | 000,393,225 | ---- | C] () -- F:\WINDOWS\System32\C3203.PLG
[2013/07/09 16.54.53 | 000,000,398 | -H-- | C] () -- F:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job
[2013/07/09 10.33.33 | 000,000,000 | ---- | C] () -- F:\cookies.sqlite
[2013/05/13 10.57.03 | 000,000,086 | ---- | C] () -- F:\Documents and Settings\Franco\Dati applicazioni\mbam.context.scan
[2012/12/20 02.22.57 | 000,329,002 | ---- | C] () -- F:\Documents and Settings\LocalService\Impostazioni locali\Dati applicazioni\WPFFontCache_v0400-System.dat
[2012/11/23 10.08.01 | 000,000,237 | ---- | C] () -- F:\Documents and Settings\Franco\.swfinfo
[2012/10/13 20.45.27 | 000,002,440 | ---- | C] () -- F:\WINDOWS\System32\ASOROSet.bin
[2012/09/04 11.33.33 | 003,248,128 | ---- | C] () -- F:\WINDOWS\System32\DVAPfg.exe
[2012/09/04 11.33.08 | 000,085,504 | ---- | C] () -- F:\WINDOWS\System32\ff_vfw.dll
[2012/02/29 17.08.20 | 000,002,480 | ---- | C] () -- F:\WINDOWS\wininit.ini
[2012/02/15 13.38.59 | 000,003,072 | ---- | C] () -- F:\WINDOWS\System32\iacenc.dll
[2011/10/19 18.17.40 | 000,139,264 | ---- | C] () -- F:\WINDOWS\System32\IDEproperty.dll
[2011/10/19 17.41.39 | 000,045,056 | ---- | C] () -- F:\WINDOWS\System32\vusetup.dll
[2011/10/19 17.31.53 | 000,000,033 | ---- | C] () -- F:\WINDOWS\System32\VGAunistlog.ini
[2011/06/26 22.20.29 | 000,000,370 | RHS- | C] () -- F:\Documents and Settings\All Users\ntuser.pol
[2011/06/17 00.53.55 | 000,000,000 | ---- | C] () -- F:\Documents and Settings\Franco\Impostazioni locali\Dati applicazioni\{FED954B1-0653-4A2B-A961-374CB5F1AAA8}
[2011/06/17 00.53.55 | 000,000,000 | ---- | C] () -- F:\Documents and Settings\Franco\Impostazioni locali\Dati applicazioni\{9FBC2EF8-BAF8-4D1B-ADAE-2845BAD2C6E4}
[2011/02/02 22.28.29 | 000,002,528 | ---- | C] () -- F:\Documents and Settings\Franco\Dati applicazioni\$_hpcst$.hpc
[2009/01/28 14.11.55 | 000,000,135 | ---- | C] () -- F:\Documents and Settings\Franco\Impostazioni locali\Dati applicazioni\fusioncache.dat
[2008/07/07 10.39.46 | 000,001,755 | ---- | C] () -- F:\Documents and Settings\All Users\Dati applicazioni\QTSBandwidthCache
[2008/05/20 23.46.06 | 000,000,040 | -HS- | C] () -- F:\Documents and Settings\All Users\Dati applicazioni\.zreglib
[2008/05/14 12.46.29 | 000,024,064 | ---- | C] () -- F:\Documents and Settings\Franco\Impostazioni locali\Dati applicazioni\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/05/13 22.39.56 | 000,000,040 | -HS- | C] () -- F:\Documents and Settings\Franco\Dati applicazioni\.zreglib
[2008/05/13 22.34.20 | 000,001,024 | ---- | C] () -- F:\Documents and Settings\Franco\.rnd
========== ZeroAccess Check ========== [2008/05/14 22.51.33 | 000,000,227 | RHS- | M] () -- F:\WINDOWS\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2008/10/16 03.00.26 | 001,499,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = F:\WINDOWS\system32\wbem\fastprox.dll -- [2009/02/09 12.51.43 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = F:\WINDOWS\system32\wbem\wbemess.dll -- [2008/04/14 04.13.56 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== LOP Check ========== [2009/05/18 20.27.03 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\ACD Systems
[2010/06/17 20.14.41 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\Acronis
[2008/05/14 23.11.51 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\Azureus
[2010/06/25 22.54.45 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\BanzaiInteractive
[2010/11/22 13.39.42 | 000,000,000 | -H-D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\CanonBJ
[2013/01/28 19.50.05 | 000,000,000 | -H-D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\CanonEPP
[2013/01/28 19.50.05 | 000,000,000 | -H-D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\CanonIJEPPEX2
[2010/09/20 11.13.26 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\clp
[2013/07/03 16.46.27 | 000,000,000 | -H-D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\Common Files
[2010/06/27 13.15.02 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\Curious Sense
[2011/03/06 00.59.35 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\Driver Whiz
[2013/06/21 15.22.05 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\EmailTray
[2010/10/09 16.59.11 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\Floodlight Games
[2012/12/20 13.15.45 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\Freemake
[2010/08/14 15.16.21 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\GiocoDigitale
[2008/05/22 15.01.31 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\Grisoft
[2010/06/28 22.43.19 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\HideAndSecret3
[2010/12/31 15.52.22 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\HitPoint Studios
[2012/09/29 12.15.40 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\Installations
[2008/05/16 14.57.38 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\JollyBear
[2008/10/01 23.14.27 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\MAGIX
[2010/06/29 21.04.11 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\Merscom
[2010/06/28 22.23.13 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\NeptunesAdve
[2010/07/23 17.09.12 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\Nitro PDF
[2012/09/29 12.47.01 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\Nokia
[2011/06/30 15.25.53 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\NokiaAccount
[2011/03/07 18.38.40 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\NokiaInstallerCache
[2011/03/07 19.14.21 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\PC Suite
[2008/07/04 09.39.46 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\Pinnacle
[2010/12/28 23.04.07 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\PlayFirst
[2010/06/26 21.26.47 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\PoBros
[2009/01/28 14.09.40 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\PowerQuest
[2011/04/01 13.05.12 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\Princess Isabella
[2010/06/26 13.12.56 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\Sandlot Games
[2009/01/08 21.14.48 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\SpinTop Games
[2013/08/29 20.39.00 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\TEMP
[2010/06/25 00.04.28 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\The Mirror Mysteries
[2008/05/28 23.50.09 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\TreeCardGames
[2013/07/08 21.32.47 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\TuneUp Software
[2010/06/25 00.03.43 | 000,000,000 | ---D | M] -- F:\Documents and Settings\All Users\Dati applicazioni\Zylom
[2013/07/03 16.58.48 | 000,000,000 | -HSD | M] -- F:\Documents and Settings\All Users\Dati applicazioni\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
[2013/07/03 16.58.48 | 000,000,000 | -HSD | M] -- F:\Documents and Settings\All Users\Dati applicazioni\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
[2011/04/11 14.25.31 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\A Gypsy's Tale - The Tower of Secrets
[2008/05/15 20.21.46 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\ACD Systems
[2009/02/24 13.48.06 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\Acronis
[2010/07/12 09.50.59 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\Artifex Mundi
[2010/12/07 15.25.01 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\Artisteer
[2009/06/02 23.57.33 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\avidemux
[2010/10/22 23.32.14 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\Awem
[2011/12/14 20.10.00 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\Azureus
[2010/10/25 20.28.37 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\Babylonia
[2010/06/25 22.54.45 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\BanzaiInteractive
[2013/08/18 21.13.07 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\Canon
[2008/05/26 22.12.31 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\CD-LabelPrint
[2008/12/10 09.44.09 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\CoSoSys
[2012/10/06 21.47.04 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\CrystalIdea Software
[2010/06/27 13.15.02 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\Curious Sense
[2010/06/29 14.39.46 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\Dekovir
[2011/06/22 19.27.11 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\Downloaded Installations
[2010/06/28 22.34.09 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\ElementalsTheMagicKey
[2012/12/22 15.46.38 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\ElevatedDiagnostics
[2009/04/17 13.31.13 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\eMule
[2010/09/23 22.12.45 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\Fighters
[2010/10/09 16.59.11 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\Floodlight Games
[2011/04/11 13.59.55 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\FlyWheelGames
[2011/06/06 12.17.34 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\Foxit
[2012/01/15 21.07.10 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\Free PDF to Word Converter
[2012/01/15 21.08.02 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\Free PDF to Word Converter.INI
[2013/07/26 14.45.48 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\FreeVideoConverter
[2010/06/26 20.51.19 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\Friday's games
[2008/06/03 23.43.58 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\GARMIN
[2013/03/24 17.16.40 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\GetRightToGo
[2012/10/01 18.57.23 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\GlarySoft
[2010/11/11 17.39.01 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\GrabPro
[2010/12/31 15.52.22 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\HitPoint Studios
[2010/06/25 19.12.04 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\IronCode
[2009/01/28 14.12.58 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\IsolatedStorage
[2008/09/01 22.32.36 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\Lingoes
[2011/01/08 02.10.46 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\LockHunter
[2008/10/02 21.08.05 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\LuckyTender
[2010/09/08 09.07.00 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\Magic3
[2008/10/01 23.15.48 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\MAGIX
[2010/06/27 11.52.31 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\MastersOfMystery2
[2010/06/29 21.04.11 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\Merscom
[2011/04/01 00.15.04 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\Mystery of Mortlake Mansion
[2011/06/21 15.51.15 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\Nitro PDF
[2013/04/04 22.18.14 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\Nokia
[2013/04/04 22.18.32 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\Nokia Suite
[2012/01/18 12.13.56 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\OpenOffice.org
[2013/02/15 15.02.27 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\Orbit
[2011/03/07 19.17.44 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\PC Suite
[2013/08/29 20.45.09 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\PCToolsFirewallPlus
[2010/10/25 20.35.14 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\PeaceCraft2
[2010/12/28 23.04.07 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\PlayFirst
[2010/06/26 21.26.47 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\PoBros
[2010/11/11 17.39.18 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\ProgSense
[2011/02/03 17.13.50 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\Samsung
[2011/06/26 22.27.28 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\ScanSoft
[2011/09/14 19.10.13 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\searchqutoolbar(2)
[2010/07/12 10.43.58 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\Settlement. Colossus
[2008/05/13 22.41.06 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\SlySoft
[2011/01/29 16.21.18 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\Smart PDF Creator Pro
[2011/01/29 16.28.42 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\SmartSoftOCRHelper
[2009/02/24 14.09.19 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\SolSuite
[2012/04/04 18.01.47 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\Spesoft Audio Converter
[2010/06/25 11.25.21 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\SpinTop
[2009/02/13 19.21.36 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\Sports Interactive
[2009/06/03 11.43.49 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\Toshiba
[2013/07/04 16.20.27 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\TuneUp Software
[2013/08/02 12.48.59 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\uTorrent
[2010/09/22 17.10.34 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\VampireSaga
[2011/01/08 22.39.24 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\VendelGAMES
[2013/07/31 10.42.49 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\vso
[2009/05/18 20.41.17 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\XnView
[2013/05/18 22.06.31 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\xVideoServiceThief
[2012/03/19 15.21.11 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\YCanPDF
[2011/06/26 22.30.01 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\Zeon
[2011/01/08 22.39.16 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\Zylom
[2010/06/25 11.10.36 | 000,000,000 | ---D | M] -- F:\Documents and Settings\Franco\Dati applicazioni\Zylomv1001
[2009/03/04 14.13.13 | 000,000,000 | ---D | M] -- F:\Documents and Settings\LocalService\Dati applicazioni\Acronis
[2011/11/12 02.09.01 | 000,000,000 | ---D | M] -- F:\Documents and Settings\UpdatusUser\Dati applicazioni\Acronis
[2011/11/14 15.54.36 | 000,000,000 | ---D | M] -- F:\Documents and Settings\UpdatusUser.FRANCO-9A863AFC\Dati applicazioni\Acronis
[2012/02/22 11.48.15 | 000,000,000 | ---D | M] -- F:\Documents and Settings\UpdatusUser.FRANCO-9A863AFC.000\Dati applicazioni\Acronis
========== Purity Check ========== ========== Alternate Data Streams ========== @Alternate Data Stream - 151 bytes -> F:\Documents and Settings\All Users\Dati applicazioni\TEMP:C31F31E6
@Alternate Data Stream - 144 bytes -> F:\Documents and Settings\All Users\Dati applicazioni\TEMP:40DB6D00
@Alternate Data Stream - 143 bytes -> F:\Documents and Settings\All Users\Dati applicazioni\TEMP:63238B95
@Alternate Data Stream - 100 bytes -> F:\Documents and Settings\All Users\Dati applicazioni\TEMP:3D36932D
< End of report >
OTL Extras logfile created on: 29/08/2013 21.28.39 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = F:\Documents and Settings\Franco\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000410 | Country: Italia | Language: ITA | Date Format: dd/MM/yyyy
2,00 Gb Total Physical Memory | 1,18 Gb Available Physical Memory | 58,85% Memory free
3,35 Gb Paging File | 2,62 Gb Available in Paging File | 78,22% Paging File free
Paging file location(s): f:\pagefile.sys 1536 3072 [binary data]
%SystemDrive% = F: | %SystemRoot% = F:\WINDOWS | %ProgramFiles% = F:\Programmi
Drive C: | 152,66 Gb Total Space | 126,55 Gb Free Space | 82,90% Space Free | Partition Type: NTFS
Drive F: | 74,52 Gb Total Space | 41,80 Gb Free Space | 56,09% Space Free | Partition Type: NTFS
Drive H: | 931,51 Gb Total Space | 605,93 Gb Free Space | 65,05% Space Free | Partition Type: NTFS
Computer Name: FRANCO-9A863AFC | User Name: Franco | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days
========== Extra Registry (SafeList) ========== ========== File Associations ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
[HKEY_USERS\S-1-5-21-73586283-1606980848-1060284298-1003\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- F:\Programmi\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [ACDBrowse] -- "F:\Programmi\ACD Systems\ACDSee\6.0\ACDSee6.exe" "%1" (ACD Systems Ltd.)
Directory [AddToPlaylistVLC] -- "F:\Programmi\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "F:\Programmi\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 1
"FirewallOverride" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"3389:TCP" = 3389:TCP:*:Enabled:@xpsp2res.dll,-22009
"4662:TCP" = 4662:TCP:*:Enabled:emule adunanza
"4672:UDP" = 4672:UDP:*:Enabled:emule adunanza
"5985:TCP" = 5985:TCP:*:Disabled:Gestione remota Windows
"80:TCP" = 80:TCP:*:Disabled:Gestione remota Windows - Modalità compatibilità (HTTP-In)
========== Authorized Applications List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"F:\Programmi\Windows Live\Messenger\wlcsdk.exe" = F:\Programmi\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call
"F:\Programmi\Windows Live\Messenger\msnmsgr.exe" = F:\Programmi\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"F:\Programmi\Microsoft Office\Office12\OUTLOOK.EXE" = F:\Programmi\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook -- (Microsoft Corporation)
"F:\Programmi\Microsoft Office\Office12\GROOVE.EXE" = F:\Programmi\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove -- (Microsoft Corporation)
"F:\Programmi\Microsoft Office\Office12\ONENOTE.EXE" = F:\Programmi\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote -- (Microsoft Corporation)
"F:\Programmi\Microsoft LifeCam\LifeExp.exe" = F:\Programmi\Microsoft LifeCam\LifeExp.exe:*:Enabled:LifeExp.exe -- (Microsoft Corporation)
"F:\Programmi\Microsoft LifeCam\LifeCam.exe" = F:\Programmi\Microsoft LifeCam\LifeCam.exe:*:Enabled:LifeCam.exe -- (Microsoft Corporation)
"F:\Programmi\Mozilla Firefox\firefox.exe" = F:\Programmi\Mozilla Firefox\firefox.exe:*:Enabled:firefox -- (Mozilla Corporation)
"F:\Programmi\VideoLAN\VLC\vlc.exe" = F:\Programmi\VideoLAN\VLC\vlc.exe:*:Enabled:VLC media player -- (VideoLAN)
"F:\Programmi\eMule AdunanzA\eMule_AdnzA.exe" = F:\Programmi\eMule AdunanzA\eMule_AdnzA.exe:*:Enabled:eMule -- (http://www.emule-project.net)
"F:\Programmi\uTorrent\uTorrent.exe" = F:\Programmi\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent Inc.)
"F:\Programmi\VSO\VSO Downloader\2\VsoDownloader.exe" = F:\Programmi\VSO\VSO Downloader\2\VsoDownloader.exe:*:Enabled:VSO Downloader -- (VSO Software)
"F:\Programmi\Skype\Phone\Skype.exe" = F:\Programmi\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)
========== HKEY_LOCAL_MACHINE Uninstall List ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{088A077A-8028-408C-AE7B-4512AE2A65A0}" = Canon CanoScan Toolbox 4.6
"{08F32589-5E39-42B8-8BC5-6A8126ED2A70}" = Microsoft Visual C++ 2008 Redistributable Package
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4300" = Canon iP4300
"{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
"{1ED55890-CF8C-47FA-BDFC-772C819C7253}" = ACDSee for Pentax 2.0
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Strumento di caricamento di Windows Live
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{26A24AE4-039D-4CA4-87B4-2F83216010FF}" = Java(TM) 6 Update 22
"{26A24AE4-039D-4CA4-87B4-2F83217025FF}" = Java 7 Update 25
"{2FD94FBC-07AE-475C-B522-BFE899B9048E}" = Garmin WebUpdater
"{30D1B542-44E0-44F0-8A31-2A101CB626B5}" = DVAPTray
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{32714140-CBC5-3FAF-BFC2-3A7376C3EECF}" = Microsoft .NET Framework 4 Client Profile ITA Language Pack
"{350C9410-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
"{39AE27EE-A148-48A3-B98D-35498C4D9719}" = Windows Live Messenger
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{41564952-412D-5637-00A7-A758B70C0202}" = Avira SearchFree Toolbar plus Web Protection
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{4908C75E-E5E2-43F7-B1DF-023CBA831040}" = Nero 7 Ultra Edition
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.6
"{50779A29-834E-4E36-BBEB-B7CABC67A825}" = Microsoft Security Client IT-IT Language Pack
"{529125EF-E3AC-4B74-97E6-F688A7C0F1BF}" = Paint.NET v3.5.10
"{55CA4086-0D2C-30E3-A7B5-C76BA737CECE}" = Microsoft .NET Framework 3.5 Language Pack SP1 - ita
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{633A06C3-B709-479A-AAB3-5EE94AD9EE4B}" = Acronis True Image Home
"{6B722793-E77B-41F5-BAB3-6C9832274E75}" = PC Connectivity Solution
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{6F695BCF-9BDC-48AB-8D46-D57CFAD7A248}" = Assistente per l'accesso a Windows Live
"{6FE12C01-2FBC-42E2-AEB9-4CA2238C462F}" = Nokia Connectivity Cable Driver
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7130468A-F53F-4698-8C09-A339EA3B05E6}" = Nokia Software Updater
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7462E859-C453-4E08-BE0D-7D5E13E4CD1F}" = Microsoft Antimalware Service IT-IT Language Pack
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7D25A304-C82D-41C3-85A8-3BEF84E04887}" = Garmin WebUpdater
"{80A2A967-C1B7-412D-B2B2-C4A33209C205}" = Garmin POI Loader
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{842F9881-E181-30B3-A152-008D61433274}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - ITA
"{84814E6B-2581-46EC-926A-823BD1C670F6}" = WIDCOMM Bluetooth Software
"{86BA3130-5938-3192-BBCF-6B0A2D86FA58}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - ITA
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8E5233E1-7495-44FB-8DEB-4BE906D59619}" = Junk Mail filter update
"{90120000-0010-0410-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Italian) 12
"{90120000-0015-0410-0000-0000000FF1CE}" = Microsoft Office Access MUI (Italian) 2007
"{90120000-0015-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0016-0410-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Italian) 2007
"{90120000-0016-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0410-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Italian) 2007
"{90120000-0018-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0019-0410-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Italian) 2007
"{90120000-0019-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001A-0410-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Italian) 2007
"{90120000-001A-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0410-0000-0000000FF1CE}" = Microsoft Office Word MUI (Italian) 2007
"{90120000-001B-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007
"{90120000-001F-0410-0000-0000000FF1CE}_ENTERPRISE_{A23BFC95-4A73-410F-9248-4C2B48E38C49}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-002C-0410-0000-0000000FF1CE}" = Microsoft Office Proofing (Italian) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0044-0410-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Italian) 2007
"{90120000-0044-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-006E-0410-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Italian) 2007
"{90120000-006E-0410-0000-0000000FF1CE}_ENTERPRISE_{C0C7E58F-D0A1-4102-855B-0B7AA2E8F1C1}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0410-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Italian) 2007
"{90120000-00A1-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00BA-0410-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Italian) 2007
"{90120000-00BA-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00D1-0409-0000-0000000FF1CE}" = Microsoft Office Access database engine 2007 (English)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{942E5031-2BD6-4C1B-918C-C8A1CBAE7B8C}" = Microsoft IntelliPoint 8.2
"{9443D8A5-0CC2-43E2-9C30-76D17BCD7FAB}" = ROUTE 66 Route Europa 2005
"{94824ADD-8F26-43D2-84DB-22E11F377E5E}" = Microsoft English TTS Engine
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{96172E04-BB14-45F6-A77B-8EE7A421B903}" = SAPI Wrapper
"{97D0C0A1-7E64-4B05-A2EE-61D2CE23F154}" = TTS Wrapper
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A875B56-A35C-46BA-A3AA-DF8D03EE9F2F}" = Nero ControlCenter
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9CEB017E-CC16-4C89-B9E4-AAB5A1DD12F9}" = Windows Live Essentials
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1" = PDF-Viewer
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{AAF80000-22B9-4CE9-98D6-2CCF359BAC07}" = ABBYY FineReader 8.0 Professional Edition
"{AEB9948B-4FF2-47C9-990E-47014492A0FE}" = MSXML 6.0 Parser
"{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
"{B194272D-1F92-46DF-99EB-8D5CE91CB4EC}" = Adobe AIR
"{B2544A03-10D0-4E5E-BA69-0362FFC20D18}" = OGA Notifier 2.0.0048.0
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Pannello di controllo NVIDIA 295.73
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Driver grafico 295.73
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView" = NVIDIA nView 136.18
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{B9C54C44-BB5A-4B03-8907-C01A9790195A}" = Manual CanoScan 4200F
"{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
"{C0508079-0000-4F68-A4DF-29C7ED7182C6}" = SlimDrivers
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C3C640B8-95B6-40AE-A058-BE4896CD3010}" = Windows Live Call
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}" = Microsoft Primary Interoperability Assemblies 2005
"{D642E38E-0D24-486C-9A2D-E316DD696F4B}" = Microsoft XML Parser
"{D87ED458-C738-42E9-9A6F-961CD715388B}" = Microsoft LifeCam
"{DB70FB55-1515-4C75-95C8-FFBD5FE041F8}_is1" = VSO Downloader 2.9.12.1
"{DC226AC9-0314-496C-BE6A-B6A132628466}" = SiSAGP driver
"{E31A24A7-CF73-42B7-8FA1-26644296C9E3}" = Windows Live Mail
"{E3A0C45A-7EDB-48EB-AB86-2445E74FBFBB}" = Nokia Suite
"{E3B64CC5-C011-40C0-92BC-7316CD5E5688}" = Microsoft_VC100_CRT_SP1_x86
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F2D2B58B-B2FD-46D1-8319-DCE564079934}" = Microsoft .NET Framework 1.1 Italian Language Pack
"17D063A0A9F5D5A225B76B1D9BCB5ADBE85C8382" = Pacchetto driver Windows - Nokia pccsmcfd “LegacyDriver” (05/31/2012 7.1.2.0)
"AC3Filter" = AC3Filter (remove only)
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Allok Video Joiner_is1" = Allok Video Joiner 4.4.1117
"Allok Video Splitter_is1" = Allok Video Splitter 3.1.1117
"AsusNv" = ASUS Display Drivers
"aTube Catcher" = aTube Catcher
"Avira AntiVir Desktop" = Avira Free Antivirus
"Canon Setup Utility 2.3" = Canon Setup Utility 2.3
"CanonMyPrinter" = Canon My Printer
"CCleaner" = CCleaner
"C-Media Audio Driver" = C-Media WDM Audio Driver
"Defraggler" = Defraggler
"Easy-PhotoPrint" = Canon Utilities Easy-PhotoPrint
"Easy-PrintToolBox" = Canon Utilities Easy-PrintToolBox
"Easy-WebPrint" = Easy-WebPrint
"eMule AdunanzA" = AdunanzA
"ENTERPRISE" = Microsoft Office Enterprise 2007
"FastStone Photo Resizer" = FastStone Photo Resizer 2.5
"ffdshow_is1" = ffdshow [rev 3026] [2009-07-05]
"FMCODEC" = FM Screen Capture Codec (Remove Only)
"Free Video Converter_is1" = Free Video Converter V 3.1
"GOM Player" = GOM Player
"Hard Disk Sentinel_is1" = Hard Disk Sentinel PRO
"Howard E-Mail Notifier_is1" = Howard E-Mail Notifier 1.13
"ie8" = Windows Internet Explorer 8
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Manager Piattaforma
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware versione 1.75.0.1300
"MediaNavigation.CDLabelPrint" = CD-LabelPrint
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile ITA Language Pack" = Microsoft .NET Framework 4 Client Profile - Language Pack (ITA)
"Microsoft IntelliPoint 8.2" = Microsoft IntelliPoint 8.2
"Mozilla Firefox 15.0.1 (x86 it)" = Mozilla Firefox 15.0.1 (x86 it)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MPEG2 Codec(libmpeg2/mad)" = MPEG2 Codec(libmpeg2/mad)
"MSMONEYV80" = Microsoft Money 2000 Professional
"Nokia Suite" = Nokia Suite
"NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager
"Optio 50L Digital Camera Driver" = Optio 50L Digital Camera Driver
"PowerISO" = PowerISO
"QuickTime" = QuickTime
"Registrazione utente Canon iP4300" = Registrazione utente Canon iP4300
"SiSLan" = SiS 900 PCI Fast Ethernet Adapter Driver
"SolSuite" = SolSuite
"SolSuite Graphics Pack Volume 1" = SolSuite Graphics Pack Volume 1
"Songr" = Songr
"Speccy" = Speccy
"Unlocker" = Unlocker 1.9.1
"uTorrent" = µTorrent
"VLC media player" = VLC media player 2.0.7
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinPcapInst" = WinPcap 4.1.2
"WinRAR archiver" = WinRAR gestione archivi
"WinZip" = WinZip
========== Last 20 Event Log Errors ========== [ Application Events ]
Error - 25/08/2013 15.40.17 | Computer Name = FRANCO-9A863AFC | Source = Application Error | ID = 1000
Description = Applicazione che ha provocato l'errore vlc.exe, versione 2.0.8.0,
modulo che ha provocato l'errore vlc.exe, versione 2.0.8.0, indirizzo errore 0x00006f07.
Error - 25/08/2013 15.40.29 | Computer Name = FRANCO-9A863AFC | Source = Application Error | ID = 1001
Description = Bucket -559275840 errato.
Error - 25/08/2013 15.40.51 | Computer Name = FRANCO-9A863AFC | Source = Application Error | ID = 1000
Description = Applicazione che ha provocato l'errore vlc.exe, versione 2.0.8.0,
modulo che ha provocato l'errore vlc.exe, versione 2.0.8.0, indirizzo errore 0x00006f07.
Error - 26/08/2013 6.35.25 | Computer Name = FRANCO-9A863AFC | Source = MPSampleSubmission | ID = 5000
Description = EventType mptelemetry, P1 80070490, P2 remediation, P3 remediationfailuretelemetry,
P4 1.1.9800.0, P5 mpengine, P6 0, P7 unspecified, P8 NIL, P9 NIL, P10 NIL.
[ OSession Events ]
Error - 07/11/2010 12.39.17 | Computer Name = FRANCO-9A863AFC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 8, Application Name: Microsoft Office Publisher, Application Version:
12.0.6535.5002, Microsoft Office Version: 12.0.6425.1000. This session lasted 1352
seconds with 360 seconds of active time. This session ended with a crash.
[ System Events ]
Error - 29/08/2013 14.46.18 | Computer Name = FRANCO-9A863AFC | Source = Service Control Manager | ID = 7000
Description = Il servizio Scutum50 NDIS Protocol Driver non è stato avviato per
il seguente errore: %%2
Error - 29/08/2013 14.46.18 | Computer Name = FRANCO-9A863AFC | Source = Service Control Manager | ID = 7038
Description = Il servizio nvUpdatusService non è stato in grado di accedere come
.\UpdatusUser con la password al momento configurata, a causa del seguente errore:
%%1326 Per accertarsi che il servizio sia configurato correttamente, utilizzare lo
snap-in Servizi di Microsoft Management Console (MMC).
Error - 29/08/2013 14.46.18 | Computer Name = FRANCO-9A863AFC | Source = Service Control Manager | ID = 7000
Description = Il servizio NVIDIA Update Service Daemon non è stato avviato per il
seguente errore: %%1069
Error - 29/08/2013 14.46.48 | Computer Name = FRANCO-9A863AFC | Source = Service Control Manager | ID = 7026
Description = All'avvio non è stato possibile caricare i seguenti driver: ANVIOCTL
Error - 29/08/2013 14.54.37 | Computer Name = FRANCO-9A863AFC | Source = Service Control Manager | ID = 7009
Description = Timeout (30000 millisecondi) durante l'attesa della connessione del
servizio Microsoft Antimalware Service.
Error - 29/08/2013 14.54.37 | Computer Name = FRANCO-9A863AFC | Source = Service Control Manager | ID = 7000
Description = Il servizio Microsoft Antimalware Service non è stato avviato per
il seguente errore: %%1053
Error - 29/08/2013 14.54.37 | Computer Name = FRANCO-9A863AFC | Source = Service Control Manager | ID = 7000
Description = Il servizio Scutum50 NDIS Protocol Driver non è stato avviato per
il seguente errore: %%2
Error - 29/08/2013 14.54.37 | Computer Name = FRANCO-9A863AFC | Source = Service Control Manager | ID = 7038
Description = Il servizio nvUpdatusService non è stato in grado di accedere come
.\UpdatusUser con la password al momento configurata, a causa del seguente errore:
%%1326 Per accertarsi che il servizio sia configurato correttamente, utilizzare lo
snap-in Servizi di Microsoft Management Console (MMC).
Error - 29/08/2013 14.54.37 | Computer Name = FRANCO-9A863AFC | Source = Service Control Manager | ID = 7000
Description = Il servizio NVIDIA Update Service Daemon non è stato avviato per il
seguente errore: %%1069
Error - 29/08/2013 14.54.56 | Computer Name = FRANCO-9A863AFC | Source = Service Control Manager | ID = 7026
Description = All'avvio non è stato possibile caricare i seguenti driver: ANVIOCTL
< End of report >