Benvenuto Ospite Cerca | Topic Attivi | Utenti | | Log In | Registra

Aiutamici Forum » FORUM - Istruzioni e Guide » Sicurezza VIRUS » Ciao...mi controllate il Log per favore ???

Ciao...mi controllate il Log per favore ??? Opzioni
Topic Precedente · Topic Sucessivo
lauraz
Inviato: Thursday, January 24, 2013 11:14:07 PM

Rank: AiutAmico

Iscritto dal : 1/5/2005
Posts: 195
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23.08.59, on 24/01/2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
c:\Programmi\Microsoft Security Client\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Programmi\Vtune\TBPanel.exe
C:\Programmi\Intel\Intel Matrix Storage Manager\Iaanotif.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\vVX1000.exe
C:\Programmi\Microsoft Security Client\msseces.exe
C:\Programmi\File comuni\Java\Java Update\jusched.exe
C:\Programmi\SlySoft\CloneCD\CloneCDTray.exe
C:\Programmi\SweetIM\Messenger\SweetIM.exe
C:\Programmi\SweetIM\Communicator\SweetPacksUpdateManager.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programmi\Samsung\Samsung New PC Studio\NPSAgent.exe
C:\Programmi\Windows Media Player\WMPNSCFG.exe
C:\Programmi\uTorrent\uTorrent.exe
C:\Programmi\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe
C:\WINDOWS\system32\ChgService.exe
C:\WINDOWS\system32\FsUsbExService.Exe
C:\WINDOWS\System32\svchost.exe
C:\Programmi\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Programmi\Java\jre6\bin\jqs.exe
C:\Programmi\File comuni\LightScribe\LSSrvc.exe
C:\Programmi\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Programmi\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Programmi\Microsoft LifeCam\MSCamS32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Programmi\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Programmi\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\Google\Chrome\Application\chrome.exe
C:\Programmi\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Programmi\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
O1 - Hosts: 65.54.239.80 dp.msnmessenger.akadns.net
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Programmi\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: PriceGong - {1631550F-191D-4826-B069-D9439253D926} - C:\Programmi\PriceGong\2.5.0\PriceGongIE.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: AddLyrics - {4145006D-47F8-42F2-8186-2225AAFECDD3} - C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\AddLyrics\AddLyrics.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programmi\Java\jre6\bin\ssv.dll
O2 - BHO: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~1\Windows Searchqu Toolbar\Datamngr\ToolBar\searchqudtx.dll
O2 - BHO: IMinent WebBooster - {A09AB6EB-31B5-454C-97EC-9B294D92EE2A} - C:\Programmi\Iminent\IMBooster4Web\Iminent.WebBooster.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programmi\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Programmi\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Programmi\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O2 - BHO: QuickNet - {EA5CA8B6-9B9C-4994-A7A1-947B6C631BE7} - (no file)
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Programmi\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O2 - BHO: PricePeep - {FD6D90C0-E6EE-4BC6-B9F7-9ED319698007} - C:\Programmi\PricePeep\pricepeep.dll
O2 - BHO: Yontoo Layers - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Programmi\Yontoo\YontooIEClient.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Programmi\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Programmi\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Programmi\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~1\Windows Searchqu Toolbar\Datamngr\ToolBar\searchqudtx.dll
O4 - HKLM\..\Run: [AdslTaskBar] rundll32.exe stmctrl.dll,TaskBar
O4 - HKLM\..\Run: [Gainward] C:\Programmi\Vtune\TBPanel.exe /A
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [IAAnotif] C:\Programmi\Intel\Intel Matrix Storage Manager\Iaanotif.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [EPSON Stylus DX4000 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIBEE.EXE /FU "C:\WINDOWS\TEMP\E_SE6.tmp" /EF "HKLM"
O4 - HKLM\..\Run: [nwiz] C:\Programmi\NVIDIA Corporation\nView\nwiz.exe /installquiet
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [VX1000] C:\WINDOWS\vVX1000.exe
O4 - HKLM\..\Run: [LifeCam] "C:\Programmi\Microsoft LifeCam\LifeExp.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Programmi\File comuni\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Programmi\File comuni\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [MSC] "c:\Programmi\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programmi\File comuni\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [PosService] C:\Documents and Settings\All Users\Documenti\AppData\PoApp\PLauncher.exe
O4 - HKLM\..\Run: [CloneCDTray] "C:\Programmi\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [SweetIM] C:\Programmi\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\Run: [Sweetpacks Communicator] C:\Programmi\SweetIM\Communicator\SweetPacksUpdateManager.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Programmi\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
O4 - HKCU\..\Run: [AutoStartNPSAgent] C:\Programmi\Samsung\Samsung New PC Studio\NPSAgent.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Programmi\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Programmi\uTorrent\uTorrent.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO DI RETE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Utilità controllo supporti di Picture Motion Browser.lnk = C:\Programmi\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: Free YouTube Download - C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\DVDVideoSoftIEHelpers\freeyoutubedownload.htm
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
O9 - Extra button: Inserisci blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programmi\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: Inserisci &blog in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programmi\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Ricerche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{063AA456-F2A7-4352-8F9C-A39D022E6D1A}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CCS\Services\Tcpip\..\{B38CC042-9883-4887-9260-8945F722EB2E}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CCS\Services\Tcpip\..\{D202FF90-361B-4704-8672-BFE5CA874743}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CCS\Services\Tcpip\..\{F9FAE593-1A0A-42BD-8203-62785BABC5A8}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CS1\Services\Tcpip\..\{063AA456-F2A7-4352-8F9C-A39D022E6D1A}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CS2\Services\Tcpip\..\{3CD2965A-1789-4F0A-B5E7-A97D9B7D1FD7}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CS3\Services\Tcpip\..\{063AA456-F2A7-4352-8F9C-A39D022E6D1A}: NameServer = 8.8.8.8,8.8.4.4
O20 - AppInit_DLLs: c:\progra~1\windows searchqu toolbar\datamngr\datamngr.dll c:\progra~1\windows searchqu toolbar\datamngr\iebho.dll
O22 - SharedTaskScheduler: Precaricatore Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Daemon di cache delle categorie di componenti - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Change Modem Device Service - Unknown owner - C:\WINDOWS\system32\ChgService.exe
O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe
O23 - Service: Servizio Google Update (gupdate) (gupdate) - Google Inc. - C:\Programmi\Google\Update\GoogleUpdate.exe
O23 - Service: Servizio Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Programmi\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Programmi\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Programmi\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programmi\File comuni\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Programmi\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Programmi\File comuni\LightScribe\LSSrvc.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Programmi\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Programmi\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: NBService - Nero AG - C:\Programmi\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Programmi\File comuni\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Pos Service (PowerOffer Service) - PowerOfferService - C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\PosService\Pos.exe
O23 - Service: ServiceLayer - Nokia. - C:\Programmi\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Serv Updater (ServUpdater) - ServiceUpd - C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\ServUpdater\ServiceUpd.exe
O23 - Service: Software Upd (SoftwareUpd) - SoftwareUpdService - C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\SoftwareUpdater\SoftwareUpdService.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Programmi\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

--
End of file - 13939 bytes
Torna in alto
 
Sponsor
Inviato: Thursday, January 24, 2013 11:14:07 PM

 
Torna in alto
 
shapiro
Inviato: Thursday, January 24, 2013 11:39:48 PM

Rank: AiutAmico

Iscritto dal : 8/24/2008
Posts: 4,164



ciao hai delle infezioni da togliere fai queste scansioni nell'ordine come te le descrivo

scarica adwcleaner usa solo l'opzione delete e allega il log


Scarica OTL e salvalo sul desktop

Metti la spunta su SCAN ALL USERS.

Sotto output, metti la spunta su minimal output

Clicca sulla freccettina di File Age e seleziona 60 Days

Metti la spunta a LOP Check e Purity Check.

Clicca su RUN SCAN

Lascia fare la scansione senza interferire.

Al termine della scansione trovi 2 log sul desktop. OTL.txt ed Extras.txt, salvali e caricali su Wikisend,
Torna in alto
 
lauraz
Inviato: Friday, January 25, 2013 8:10:43 AM

Rank: AiutAmico

Iscritto dal : 1/5/2005
Posts: 195
Wikisend ????? la tua risposta finisce qui...non so se c'è tutta....dove trovo Wikisend ???
Torna in alto
 
lauraz
Inviato: Friday, January 25, 2013 8:20:30 AM

Rank: AiutAmico

Iscritto dal : 1/5/2005
Posts: 195
Conunque i log sono questi :
OTL logfile created on: 25/01/2013 8.08.00 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Max Kia Lalla\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000410 | Country: Italia | Language: ITA | Date Format: dd/MM/yyyy

3,00 Gb Total Physical Memory | 2,05 Gb Available Physical Memory | 68,27% Memory free
4,84 Gb Paging File | 4,00 Gb Available in Paging File | 82,61% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programmi
Drive C: | 232,88 Gb Total Space | 70,54 Gb Free Space | 30,29% Space Free | Partition Type: NTFS

Computer Name: MAX-6128F3031CD | User Name: Max Kia Lalla | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days

========== Processes (SafeList) ==========

PRC - C:\Documents and Settings\Max Kia Lalla\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\Google\Chrome\Application\chrome.exe (Google Inc.)
PRC - C:\Programmi\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
PRC - C:\Programmi\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
PRC - C:\Programmi\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
PRC - C:\Programmi\SweetIM\Messenger\SweetIM.exe (SweetIM Technologies Ltd.)
PRC - C:\Programmi\File comuni\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
PRC - c:\Programmi\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
PRC - C:\Programmi\Microsoft Security Client\msseces.exe (Microsoft Corporation)
PRC - C:\Programmi\SweetIM\Communicator\SweetPacksUpdateManager.exe (SweetIM Technologies Ltd.)
PRC - C:\WINDOWS\system32\ChgService.exe ()
PRC - C:\Programmi\uTorrent\uTorrent.exe (BitTorrent, Inc.)
PRC - C:\Programmi\File comuni\LightScribe\LSSrvc.exe (Hewlett-Packard Company)
PRC - C:\Programmi\Samsung\Samsung New PC Studio\NPSAgent.exe (Samsung Electronics Co., Ltd.)
PRC - C:\WINDOWS\system32\FsUsbExService.Exe (Teruten)
PRC - C:\Programmi\SlySoft\CloneCD\CloneCDTray.exe (SlySoft, Inc.)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Programmi\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe (Sony Corporation)
PRC - C:\Programmi\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe (Rocket Division Software)
PRC - C:\Programmi\Microsoft LifeCam\MSCamS32.exe (Microsoft Corporation)
PRC - C:\WINDOWS\vVX1000.exe (Microsoft Corporation)
PRC - C:\Programmi\Vtune\TBPANEL.exe ()
PRC - C:\Programmi\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
PRC - C:\Programmi\Intel\Intel Matrix Storage Manager\IAANTmon.exe (Intel Corporation)


========== Modules (No Company Name) ==========

MOD - C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\Google\Chrome\Application\24.0.1312.56\PepperFlash\pepflashplayer.dll ()
MOD - C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\Google\Chrome\Application\24.0.1312.56\ppgooglenaclpluginchrome.dll ()
MOD - C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\Google\Chrome\Application\24.0.1312.56\pdf.dll ()
MOD - C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\Google\Chrome\Application\24.0.1312.56\libglesv2.dll ()
MOD - C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\Google\Chrome\Application\24.0.1312.56\libegl.dll ()
MOD - C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\Google\Chrome\Application\24.0.1312.56\ffmpegsumo.dll ()
MOD - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\PDFShell.ITA ()
MOD - C:\Programmi\NVIDIA Corporation\nView\nvShell.dll ()
MOD - C:\WINDOWS\system32\ChgService.exe ()
MOD - C:\Programmi\WinRAR\RarExt.dll ()
MOD - C:\WINDOWS\system32\msdmo.dll ()
MOD - C:\Programmi\Vtune\TBPANEL.exe ()
MOD - C:\Programmi\Vtune\TBPanelExt.dll ()
MOD - C:\Programmi\Vtune\TBMANAGE.DLL ()


========== Services (SafeList) ==========

SRV - (HidServ) -- %SystemRoot%\System32\hidserv.dll File not found
SRV - (AppMgmt) -- %SystemRoot%\System32\appmgmts.dll File not found
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (MBAMService) -- C:\Programmi\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (MBAMScheduler) -- C:\Programmi\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
SRV - (MsMpSvc) -- c:\Programmi\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
SRV - (SoftwareUpd) -- C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\SoftwareUpdater\SoftwareUpdService.exe (SoftwareUpdService)
SRV - (PowerOffer Service) -- C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\PosService\Pos.exe (PowerOfferService)
SRV - (ServUpdater) -- C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\ServUpdater\ServiceUpd.exe (ServiceUpd)
SRV - (Change Modem Device Service) -- C:\WINDOWS\system32\ChgService.exe ()
SRV - (LightScribeService) -- C:\Programmi\File comuni\LightScribe\LSSrvc.exe (Hewlett-Packard Company)
SRV - (FsUsbExService) -- C:\WINDOWS\system32\FsUsbExService.Exe (Teruten)
SRV - (YahooAUService) -- C:\Programmi\Yahoo!\SoftwareUpdate\YahooAUService.exe (Yahoo! Inc.)
SRV - (ServiceLayer) -- C:\Programmi\PC Connectivity Solution\ServiceLayer.exe (Nokia.)
SRV - (NMIndexingService) -- C:\Programmi\File comuni\Ahead\Lib\NMIndexingService.exe (Nero AG)
SRV - (StarWindServiceAE) -- C:\Programmi\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe (Rocket Division Software)
SRV - (MSCamSvc) -- C:\Programmi\Microsoft LifeCam\MSCamS32.exe (Microsoft Corporation)
SRV - (IAANTMON) -- C:\Programmi\Intel\Intel Matrix Storage Manager\IAANTmon.exe (Intel Corporation)
SRV - (IDriverT) -- C:\Programmi\File comuni\InstallShield\Driver\11\Intel 32\IDriverT.exe (Macrovision Corporation)
SRV - (ose) -- C:\Programmi\File comuni\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)


========== Driver Services (SafeList) ==========

DRV - (WDICA) -- File not found
DRV - (StarOpen) -- File not found
DRV - (PDRFRAME) -- File not found
DRV - (PDRELI) -- File not found
DRV - (PDFRAME) -- File not found
DRV - (PDCOMP) -- File not found
DRV - (pcouffin) -- System32\Drivers\pcouffin.sys File not found
DRV - (PCIDump) -- File not found
DRV - (lbrtfdc) -- File not found
DRV - (i2omgmt) -- File not found
DRV - (hwdatacard) -- system32\DRIVERS\ewusbmdm.sys File not found
DRV - (Changer) -- File not found
DRV - (BTCOMBUS) -- System32\Drivers\btcombus.sys File not found
DRV - (BTCOM) -- system32\DRIVERS\btcomport.sys File not found
DRV - (aqm8bcvt) -- File not found
DRV - (a0xpkucg) -- File not found
DRV - (MBAMProtector) -- C:\WINDOWS\system32\drivers\mbam.sys (Malwarebytes Corporation)
DRV - (cmnsusbser) -- C:\WINDOWS\system32\drivers\cmnsusbser.sys (Mobile Connector)
DRV - (btnetBUs) -- C:\WINDOWS\system32\drivers\btnetBus.sys ()
DRV - (IvtBtBUs) -- C:\WINDOWS\system32\drivers\IvtBtBus.sys (IVT Corporation.)
DRV - (BtHidBus) -- C:\WINDOWS\system32\drivers\BtHidBus.sys (IVT Corporation.)
DRV - (EverestDriver) -- C:\Programmi\Lavalys\EVEREST Ultimate Edition\kerneld.wnt ()
DRV - (atksgt) -- C:\WINDOWS\system32\drivers\atksgt.sys ()
DRV - (lirsgt) -- C:\WINDOWS\system32\drivers\lirsgt.sys ()
DRV - (sptd) -- C:\WINDOWS\system32\drivers\sptd.sys ()
DRV - (FsUsbExDisk) -- C:\WINDOWS\system32\FsUsbExDisk.Sys ()
DRV - (pccsmcfd) -- C:\WINDOWS\system32\drivers\pccsmcfd.sys (Nokia)
DRV - (gameenum) -- C:\WINDOWS\system32\drivers\gameenum.sys (Microsoft Corporation)
DRV - (sscdmdm) -- C:\WINDOWS\system32\drivers\sscdmdm.sys (MCCI Corporation)
DRV - (sscdmdfl) -- C:\WINDOWS\system32\drivers\sscdmdfl.sys (MCCI Corporation)
DRV - (sscdbus) -- C:\WINDOWS\system32\drivers\sscdbus.sys (MCCI Corporation)
DRV - (BlueletAudio) -- C:\WINDOWS\system32\drivers\blueletaudio.sys (IVT Corporation.)
DRV - (Btcsrusb) -- C:\WINDOWS\system32\drivers\btcusb.sys (IVT Corporation.)
DRV - (VX1000) -- C:\WINDOWS\system32\drivers\VX1000.sys (Microsoft Corporation)
DRV - (BlueletSCOAudio) -- C:\WINDOWS\system32\drivers\BlueletSCOAudio.sys (IVT Corporation.)
DRV - (BT) -- C:\WINDOWS\system32\drivers\btnetdrv.sys (IVT Corporation.)
DRV - (BTHidMgr) -- C:\WINDOWS\system32\drivers\BTHidMgr.sys (IVT Corporation.)
DRV - (BTHidEnum) -- C:\WINDOWS\system32\drivers\vbtenum.sys (IVT Corporation.)
DRV - (VcommMgr) -- C:\WINDOWS\system32\drivers\VcommMgr.sys (IVT Corporation.)
DRV - (VComm) -- C:\WINDOWS\system32\drivers\VComm.sys (IVT Corporation.)
DRV - (ElbyCDFL) -- C:\WINDOWS\system32\drivers\ElbyCDFL.sys (SlySoft, Inc.)
DRV - (BTNetFilter) -- C:\Programmi\IVT Corporation\BlueSoleil\device\Win2k\BTNetFilter.sys (IVT Corporation.)
DRV - (IntcAzAudAddService) -- C:\WINDOWS\system32\drivers\RtkHDAud.Sys (Realtek Semiconductor Corp.)
DRV - (RTL8023xp) -- C:\WINDOWS\system32\drivers\Rtenicxp.sys (Realtek Semiconductor Corporation )
DRV - (CDRPDACC) -- C:\Programmi\321Studios\Shared\CDRPDACC.SYS (Arrowkey)
DRV - (TaurusUsb) -- C:\WINDOWS\system32\drivers\torususb.sys ()
DRV - (Stmatm) -- C:\WINDOWS\system32\drivers\stmatm.sys (STMicroelectronics )
DRV - (TBPanel) -- C:\WINDOWS\System32\drivers\TBPanel.sys (Windows (R) 2000 DDK provider)
DRV - (Cardex) -- C:\WINDOWS\system32\drivers\TBPanel.sys (Windows (R) 2000 DDK provider)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://search.certified-toolbar.com?si=41460&home=true&tid=3231
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Search Bar = http://search.certified-toolbar.com?si=41460&tid=3231&bs=true&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = http://search.certified-toolbar.com?si=41460&tid=3231&bs=true&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant =
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Default_Page_URL = http://search.certified-toolbar.com?si=41460&home=true&tid=3231
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = http://search.certified-toolbar.com?si=41460&home=true&tid=3231
IE - HKLM\..\SearchScopes,DefaultScope = {EEE6C360-6118-11DC-9C72-001320C79847}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.chatzum.com/?q={searchTerms}
IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.certified-toolbar.com?si=41460&bs=true&tid=3231&q={searchTerms}
IE - HKLM\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.certified-toolbar.com?si=41460&bs=true&tid=3231&q={searchTerms}


IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.findeer.com
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.findeer.com
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.findeer.com

IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.findeer.com
IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1659004503-1965331169-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
IE - HKU\S-1-5-21-1659004503-1965331169-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com
IE - HKU\S-1-5-21-1659004503-1965331169-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-1659004503-1965331169-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://search.certified-toolbar.com?si=41460&home=true&tid=3231
IE - HKU\S-1-5-21-1659004503-1965331169-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKU\S-1-5-21-1659004503-1965331169-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/
IE - HKU\S-1-5-21-1659004503-1965331169-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Search,Search Bar = http://search.certified-toolbar.com?si=41460&tid=3231&bs=true&q=
IE - HKU\S-1-5-21-1659004503-1965331169-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = http://search.certified-toolbar.com?si=41460&tid=3231&bs=true&q=
IE - HKU\S-1-5-21-1659004503-1965331169-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Search,Start Default_Page_URL = http://search.certified-toolbar.com?si=41460&home=true&tid=3231
IE - HKU\S-1-5-21-1659004503-1965331169-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = http://search.certified-toolbar.com?si=41460&home=true&tid=3231
IE - HKU\S-1-5-21-1659004503-1965331169-839522115-1004\..\URLSearchHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Programmi\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (SweetIM Technologies Ltd.)
IE - HKU\S-1-5-21-1659004503-1965331169-839522115-1004\..\SearchScopes,DefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
IE - HKU\S-1-5-21-1659004503-1965331169-839522115-1004\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-1659004503-1965331169-839522115-1004\..\SearchScopes\{0D7562AE-8EF6-416d-A838-AB665251703A}: "URL" = http://start.facemoods.com/?a=stonicit&s={searchTerms}&f=4
IE - HKU\S-1-5-21-1659004503-1965331169-839522115-1004\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.certified-toolbar.com?si=41460&bs=true&tid=3231&q={searchTerms}
IE - HKU\S-1-5-21-1659004503-1965331169-839522115-1004\..\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}: "URL" = http://search.chatzum.com/?q={SearchTerms}
IE - HKU\S-1-5-21-1659004503-1965331169-839522115-1004\..\SearchScopes\{AB79D3B4-AEDB-428a-B504-BAC00521A1C7}: "URL" = http://www.smartwebsearch.net/index.php?from=4&q={searchTerms}
IE - HKU\S-1-5-21-1659004503-1965331169-839522115-1004\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.certified-toolbar.com?si=41460&bs=true&tid=3231&q={searchTerms}
IE - HKU\S-1-5-21-1659004503-1965331169-839522115-1004\..\SearchScopes\{C5268692-6F3E-404D-AD41-CDD0C7E41AB1}: "URL" = http://websearch.ask.com/redirect?client=ie&tb=DVS2&o=1586&src=crm&q={searchTerms}&locale=&apn_ptnrs=^AAA&apn_dtid=^YYYYYY^YY^IT&apn_uid=50FC92FE-FB88-443D-B307-A5162F5EC699&apn_sauid=48A27113-9278-4849-942F-E9D39470B67B
IE - HKU\S-1-5-21-1659004503-1965331169-839522115-1004\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/search.asp?src=6&st=5&q={searchTerms}&barid={B3786C8B-A109-11E0-9FF4-00116759693C}
IE - HKU\S-1-5-21-1659004503-1965331169-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Web Search"
FF - prefs.js..browser.search.defaulturl: ""
FF - prefs.js..browser.search.order.1: "Web Search"
FF - prefs.js..browser.search.selectedEngine: "Web Search"
FF - prefs.js..browser.startup.homepage: "http://search.certified-toolbar.com?si=41460&home=true&tid=3231"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:17.0.1
FF - prefs.js..keyword.URL: "http://search.certified-toolbar.com?si=41460&tid=3231&bs=true&q="
FF - prefs.js..network.proxy.type: 0
FF - prefs.js..browser.search.defaultenginename: "Web Search"
FF - prefs.js..sweetim.toolbar.previous.browser.search.defaulturl: ""
FF - prefs.js..browser.search.selectedEngine: "Web Search"
FF - prefs.js..browser.startup.homepage: "http://search.certified-toolbar.com?si=41460&home=true&tid=3231"
FF - prefs.js..keyword.URL: "http://search.certified-toolbar.com?si=41460&tid=3231&bs=true&q="
FF - prefs.js..browser.search.defaultengine: "Web Search"
FF - prefs.js..browser.search.useDBForOrder: false


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_146.dll ()
FF - HKLM\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Programmi\Tracker Software\npPDFXCviewNPPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@funwebproducts.com/Plugin: C:\Programmi\FunWebProducts\Installr\3.bin\NPFunWeb.dll File not found
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Programmi\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_37: C:\WINDOWS\system32\npdeployJava1.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Programmi\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Programmi\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Programmi\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.3: C:\Programmi\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416: C:\Programmi\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Programmi\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Programmi\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Programmi\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products Ltd.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Programmi\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Programmi\Tracker Software\npPDFXCviewNPPlugin.dll File not found
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_CURRENT_USER\software\mozilla\FireFox\Extensions\\addlyrics@addlyrics.net: C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\AddLyrics\FF\ [2013/01/23 09.55.24 | 000,000,000 | ---D | M]

[2011/06/02 19.52.06 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Mozilla\Extensions
[2013/01/06 21.42.15 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Mozilla\Firefox\Profiles\rqwtrq8h.default\extensions
[2010/08/28 20.06.36 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Mozilla\Firefox\Profiles\rqwtrq8h.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2012/12/11 12.50.15 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Mozilla\Firefox\Profiles\rqwtrq8h.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2012/12/11 12.50.13 | 000,000,000 | ---D | M] (PriceGong) -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Mozilla\Firefox\Profiles\rqwtrq8h.default\extensions\{8A9386B4-E958-4c4c-ADF4-8F26DB3E4829}
[2011/09/13 14.10.43 | 000,000,000 | ---D | M] (Searchqu Toolbar) -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Mozilla\Firefox\Profiles\rqwtrq8h.default\extensions\{99079a25-328f-4bd4-be04-00955acaa0a7}
[2011/09/13 14.59.50 | 000,000,000 | ---D | M] ("Free YouTube Download (Free Studio) Menu") -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Mozilla\Firefox\Profiles\rqwtrq8h.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
[2012/12/11 12.50.23 | 000,000,000 | ---D | M] (Ant Video Downloader) -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Mozilla\Firefox\Profiles\rqwtrq8h.default\extensions\anttoolbar@ant.com
[2011/10/08 20.08.04 | 000,000,000 | ---D | M] ("BeNaughty toolbar") -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Mozilla\Firefox\Profiles\rqwtrq8h.default\extensions\bntoolbar@easydategroup.com
[2011/12/19 20.27.08 | 000,000,000 | ---D | M] (Babylon) -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Mozilla\Firefox\Profiles\rqwtrq8h.default\extensions\ffxtlbr@babylon.com
[2012/12/11 12.44.29 | 000,000,000 | ---D | M] (Yontoo) -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Mozilla\Firefox\Profiles\rqwtrq8h.default\extensions\plugin@yontoo.com
[2012/10/24 20.12.42 | 000,054,396 | ---- | M] () (No name found) -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Mozilla\Firefox\Profiles\rqwtrq8h.default\extensions\pricepeep@getpricepeep.com.xpi
[2012/10/13 18.27.00 | 000,037,914 | ---- | M] () (No name found) -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Mozilla\Firefox\Profiles\rqwtrq8h.default\extensions\{5a95a9e0-59dd-4314-bd84-4d18ca83a0e2}.xpi
[2012/12/11 12.50.18 | 000,189,128 | ---- | M] () (No name found) -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Mozilla\Firefox\Profiles\rqwtrq8h.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi
[2011/07/29 21.02.18 | 000,002,333 | ---- | M] () -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Mozilla\Firefox\Profiles\rqwtrq8h.default\searchplugins\askcom.xml
[2011/09/12 14.59.42 | 000,002,126 | ---- | M] () -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Mozilla\Firefox\Profiles\rqwtrq8h.default\searchplugins\GoogleFeed.xml
[2011/09/13 14.10.31 | 000,002,503 | ---- | M] () -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Mozilla\Firefox\Profiles\rqwtrq8h.default\searchplugins\SearchResults.xml
[2012/10/20 22.32.15 | 000,003,983 | ---- | M] () -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Mozilla\Firefox\Profiles\rqwtrq8h.default\searchplugins\sweetim.xml
[2013/01/06 21.42.14 | 000,003,269 | ---- | M] () -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Mozilla\Firefox\Profiles\rqwtrq8h.default\searchplugins\Web Search.xml
[2012/12/12 00.09.10 | 000,000,000 | ---D | M] (No name found) -- C:\Programmi\Mozilla Firefox\extensions
[2011/06/20 11.37.18 | 000,000,000 | ---D | M] (No name found) -- C:\Programmi\Mozilla Firefox\extensions\{1FD91A9C-410C-4090-BBCC-55D3450EF433}
[2011/08/19 12.51.57 | 000,000,000 | ---D | M] (Iminent WebBooster) -- C:\Programmi\Mozilla Firefox\extensions\webbooster@iminent.com
[2012/03/02 18.37.16 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Programmi\mozilla firefox\plugins\npdeployJava1.dll
[2011/09/13 14.09.51 | 000,002,051 | ---- | M] () -- C:\Programmi\mozilla firefox\searchplugins\fcmdSrchstonicit.xml
[2011/09/13 14.10.31 | 000,002,503 | ---- | M] () -- C:\Programmi\mozilla firefox\searchplugins\SearchResults.xml
[2013/01/06 21.42.14 | 000,003,269 | ---- | M] () -- C:\Programmi\mozilla firefox\searchplugins\Web Search.xml

========== Chrome ==========

CHR - homepage: http://search.babylon.com/?affID=110183&tt=0113_2&babsrc=HP_ss&mntrId=f8a9a84200000000000000116759693c
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter}
CHR - homepage: http://search.babylon.com/?affID=110183&tt=0113_2&babsrc=HP_ss&mntrId=f8a9a84200000000000000116759693c
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\Google\Chrome\Application\24.0.1312.56\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\Google\Chrome\Application\24.0.1312.56\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\Google\Chrome\Application\24.0.1312.56\gcswf32.dll
CHR - plugin: Shockwave Flash (Disabled) = C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Programmi\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.310.5 (Enabled) = C:\Programmi\Mozilla Firefox\plugins\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U31 (Enabled) = C:\Programmi\Java\jre6\bin\plugin2\npjp2.dll
CHR - plugin: QuickTime Plug-in 7.5.5 (Enabled) = C:\Programmi\QuickTime\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.5.5 (Enabled) = C:\Programmi\QuickTime\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.5.5 (Enabled) = C:\Programmi\QuickTime\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.5.5 (Enabled) = C:\Programmi\QuickTime\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.5.5 (Enabled) = C:\Programmi\QuickTime\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.5.5 (Enabled) = C:\Programmi\QuickTime\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.5.5 (Enabled) = C:\Programmi\QuickTime\plugins\npqtplugin7.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Programmi\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Programmi\Windows Media Player\npwmsdrm.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Programmi\Windows Media Player\npdsplay.dll
CHR - plugin: Facebook Video Calling Plugin (Enabled) = C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\Facebook\Video\Skype\npFacebookVideoCalling.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: PDF-XChange Viewer (Enabled) = C:\Programmi\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll
CHR - plugin: Windows Live\u00AE Photo Gallery (Enabled) = C:\Programmi\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Programmi\Microsoft Silverlight\5.1.10411.0\npctrl.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - Extension: YouTube = C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\
CHR - Extension: Ricerca Google = C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\
CHR - Extension: AddLyrics = C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\kdlfddggdloaadnphbhejknhaggjaeld\1.3_0\
CHR - Extension: PricePeep = C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\licjnkifamhpbaefhdpacpmihicfbomb\2.1.355.0_0\
CHR - Extension: Yontoo = C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\niapdbllcanepiiimjjndipklodoedlc\1.0.3_0\
CHR - Extension: Gmail = C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2010/09/06 17.59.48 | 000,001,150 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 static3.cdn.ubi.com
O1 - Hosts: 127.0.0.1 ubisoft-orbit.s3.amazonaws.com
O1 - Hosts: 127.0.0.1 onlineconfigservice.ubi.com
O1 - Hosts: 127.0.0.1 orbitservice.ubi.com
O1 - Hosts: 127.0.0.1 ubisoft-orbit-savegames.s3.amazonaws.com
O1 - Hosts: 65.54.239.80 dp.msnmessenger.akadns.net
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Programmi\Yahoo!\Companion\Installs\cpn0\yt.dll (Yahoo! Inc.)
O2 - BHO: (Shopping Assistant Plugin) - {1631550F-191D-4826-B069-D9439253D926} - C:\Programmi\PriceGong\2.5.0\PriceGongIE.dll (PriceGong)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programmi\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Searchqu Toolbar) - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\Programmi\Windows Searchqu Toolbar\Datamngr\ToolBar\searchqudtx.dll ()
O2 - BHO: (IMinent WebBooster (BHO)) - {A09AB6EB-31B5-454C-97EC-9B294D92EE2A} - C:\Programmi\Iminent\IMBooster4Web\Iminent.WebBooster.dll (Iminent)
O2 - BHO: (EpsonToolBandKicker Class) - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Programmi\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O2 - BHO: (no name) - {EA5CA8B6-9B9C-4994-A7A1-947B6C631BE7} - No CLSID value found.
O2 - BHO: (SweetPacks Browser Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Programmi\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O2 - BHO: (PricePeep) - {FD6D90C0-E6EE-4BC6-B9F7-9ED319698007} - C:\Programmi\PricePeep\pricepeep.dll (PricePeep)
O2 - BHO: (Yontoo) - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Programmi\Yontoo\YontooIEClient.dll (Yontoo LLC)
O2 - BHO: (SingleInstance Class) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Programmi\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll (Yahoo! Inc)
O3 - HKLM\..\Toolbar: (Searchqu Toolbar) - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\Programmi\Windows Searchqu Toolbar\Datamngr\ToolBar\searchqudtx.dll ()
O3 - HKLM\..\Toolbar: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Programmi\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Programmi\Yahoo!\Companion\Installs\cpn0\yt.dll (Yahoo! Inc.)
O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (no name) - {6CD56C02-CB4D-41B5-A0FE-B479061CCB41} - No CLSID value found.
O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (no name) - {6CD56C02-CB4D-41B5-A0FE-B479061CCB41} - No CLSID value found.
O3 - HKU\S-1-5-21-1659004503-1965331169-839522115-1004\..\Toolbar\WebBrowser: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Programmi\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: [Adobe ARM] C:\Programmi\File comuni\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdslTaskBar] C:\WINDOWS\System32\stmctrl.dll (AccessMedia )
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [CloneCDTray] C:\Programmi\SlySoft\CloneCD\CloneCDTray.exe (SlySoft, Inc.)
O4 - HKLM..\Run: [EPSON Stylus DX4000 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIBEE.EXE (SEIKO EPSON CORPORATION)
O4 - HKLM..\Run: [Gainward] C:\Programmi\Vtune\TBPanel.exe ()
O4 - HKLM..\Run: [IAAnotif] C:\Programmi\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found
O4 - HKLM..\Run: [LifeCam] C:\Programmi\Microsoft LifeCam\LifeExp.exe (Microsoft Corporation)
O4 - HKLM..\Run: [MSC] c:\Programmi\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Programmi\File comuni\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Programmi\NVIDIA Corporation\nView\nwiz.exe ()
O4 - HKLM..\Run: [PosService] C:\Documents and Settings\All Users\Documenti\AppData\PoApp\PLauncher.exe (PLauncher)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Programmi\File comuni\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [SweetIM] C:\Programmi\SweetIM\Messenger\SweetIM.exe (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: [Sweetpacks Communicator] C:\Programmi\SweetIM\Communicator\SweetPacksUpdateManager.exe (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: [VX1000] C:\WINDOWS\vVX1000.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1659004503-1965331169-839522115-1004..\Run: [AlcoholAutomount] C:\Programmi\Alcohol Soft\Alcohol 120\axcmd.exe (Alcohol Soft Development Team)
O4 - HKU\S-1-5-21-1659004503-1965331169-839522115-1004..\Run: [AutoStartNPSAgent] C:\Programmi\Samsung\Samsung New PC Studio\NPSAgent.exe (Samsung Electronics Co., Ltd.)
O4 - HKU\S-1-5-21-1659004503-1965331169-839522115-1004..\Run: [uTorrent] C:\Programmi\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O4 - Startup: C:\Documents and Settings\Max Kia Lalla\Menu Avvio\Programmi\Esecuzione automatica\Utilità controllo supporti di Picture Motion Browser.lnk = C:\Programmi\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe (Sony Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1659004503-1965331169-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Free YouTube Download - C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\DVDVideoSoftIEHelpers\freeyoutubedownload.htm ()
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ()
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab (System Requirements Lab Class)
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab (Checkers Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab (Java Plug-in 1.6.0_37)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab (MessengerStatsClient Class)
O16 - DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab (Java Plug-in 1.6.0_37)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab (Java Plug-in 1.6.0_37)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{063AA456-F2A7-4352-8F9C-A39D022E6D1A}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B38CC042-9883-4887-9260-8945F722EB2E}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D202FF90-361B-4704-8672-BFE5CA874743}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D202FF90-361B-4704-8672-BFE5CA874743}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F9FAE593-1A0A-42BD-8203-62785BABC5A8}: NameServer = 8.8.8.8,8.8.4.4
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Programmi\File comuni\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Programmi\File comuni\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (c:\progra~1\windows searchqu toolbar\datamngr\datamngr.dll) - c:\Programmi\Windows Searchqu Toolbar\Datamngr\datamngr.dll (Discordia, LTD)
O20 - AppInit_DLLs: (c:\progra~1\windows searchqu toolbar\datamngr\iebho.dll) - c:\Programmi\Windows Searchqu Toolbar\Datamngr\IEBHO.dll (Discordia, LTD)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Pagina iniziale corrente) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/03/01 16.44.36 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 60 Days ==========

[2013/01/25 08.03.58 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Max Kia Lalla\Desktop\OTL.exe
[2013/01/23 09.55.24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\AddLyrics
[2013/01/22 00.25.31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Avvio\Programmi\Malwarebytes' Anti-Malware
[2013/01/22 00.25.23 | 000,021,104 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2013/01/22 00.05.51 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Max Kia Lalla\Recent
[2013/01/21 23.51.07 | 000,000,000 | ---D | C] -- C:\Programmi\Malwarebytes' Anti-Malware
[2013/01/18 14.53.57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Max Kia Lalla\Desktop\musica globo
[2013/01/08 13.47.43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Max Kia Lalla\Documenti\My Cheat Tables
[2013/01/08 13.47.37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Avvio\Programmi\Cheat Engine 6.1
[2013/01/08 13.47.29 | 000,000,000 | ---D | C] -- C:\Programmi\Cheat Engine 6.1
[2013/01/08 13.26.53 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2013/01/08 00.03.40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Avvio\Programmi\Picasa 3
[2013/01/06 21.42.14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\complitly
[2013/01/06 21.40.59 | 000,000,000 | ---D | C] -- C:\Programmi\SecurityXploded
[2013/01/06 21.20.05 | 000,000,000 | ---D | C] -- C:\Programmi\Protected Search
[2013/01/06 21.20.03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\SimplyTech
[2013/01/06 21.19.33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\DownTango
[2013/01/06 21.19.22 | 000,000,000 | ---D | C] -- C:\Programmi\Red Sky
[2012/12/19 20.09.52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Max Kia Lalla\Desktop\FOTO
[2012/12/18 11.09.48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Avvio\Programmi\MyPcCleaner
[2012/12/18 11.09.47 | 000,000,000 | ---D | C] -- C:\Programmi\MyPcCleaner
[2012/12/18 11.07.27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Avvio\Programmi\Lavalys
[2012/12/18 11.07.15 | 000,000,000 | ---D | C] -- C:\Programmi\Lavalys
[2012/12/18 11.04.10 | 010,255,080 | ---- | C] (Lavalys, Inc. ) -- C:\Documents and Settings\Max Kia Lalla\Desktop\everestultimate550.exe
[2012/12/17 23.41.05 | 010,669,952 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\Max Kia Lalla\Desktop\mbam-setup-1-65-1-1000-1-.exe
[2012/12/15 14.26.45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dati applicazioni\SlySoft
[2012/12/15 14.26.36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Avvio\Programmi\SlySoft
[2012/12/15 11.20.19 | 000,000,000 | ---D | C] -- C:\Programmi\SlySoft
[2012/12/13 09.53.24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Sony Corporation
[2012/12/13 09.42.47 | 000,118,520 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\PxInsI64.exe
[2012/12/13 09.42.47 | 000,115,960 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\PxCpyI64.exe
[2012/12/13 09.42.47 | 000,072,440 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxhpinst.exe
[2012/12/13 09.42.47 | 000,064,760 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\PxInsA64.exe
[2012/12/13 09.42.47 | 000,064,248 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\PxCpyA64.exe
[2012/12/13 09.42.47 | 000,039,672 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\vxblock.dll
[2012/12/13 09.42.47 | 000,002,560 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\cdralw2k.sys
[2012/12/13 09.42.47 | 000,002,432 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\cdr4_xp.sys
[2012/12/13 09.36.52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Avvio\Programmi\Sony Picture Utility
[2012/12/13 09.36.50 | 000,000,000 | ---D | C] -- C:\Programmi\Sony
[2012/12/13 09.36.05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\InstallShield
[2012/12/12 22.37.56 | 004,472,832 | ---- | C] (Google Inc.) -- C:\WINDOWS\System32\GPhotos.scr
[2012/12/12 00.10.36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Apple Computer
[2012/12/11 15.33.35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\WindowsPowerShell
[2012/12/11 15.33.34 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\winrm
[2012/12/11 15.33.27 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$968930Uinstall_KB968930$
[2012/12/11 15.26.32 | 000,022,400 | ---- | C] (IObit) -- C:\WINDOWS\System32\RegistryDefragBootTime.exe
[2012/12/11 15.17.38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Dati applicazioni\IObit
[2012/12/11 15.17.30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dati applicazioni\IObit
[2012/12/11 15.17.30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Max Kia Lalla\AppData
[2012/12/11 15.17.11 | 000,000,000 | ---D | C] -- C:\Programmi\IObit
[2012/12/11 12.49.30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dati applicazioni\Mozilla
[2012/12/11 12.44.28 | 000,000,000 | ---D | C] -- C:\Programmi\Yontoo
[2012/12/11 12.44.20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dati applicazioni\Tarma Installer
[2012/12/11 12.43.47 | 000,000,000 | ---D | C] -- C:\Programmi\PricePeep
[2012/12/08 11.51.29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Max Kia Lalla\Desktop\Neon e luci emergenza
[2012/11/26 22.07.19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Max Kia Lalla\Desktop\musica Chiara
[2010/05/08 13.00.34 | 004,879,128 | ---- | C] (LULU software) -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\FIXIO PC Cleaner.exe
[2010/05/08 12.55.54 | 001,564,712 | ---- | C] (LULU Software) -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\FIXIO_PC_Cleaner_2010_Installer.exe
[2010/04/19 22.00.19 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\pcouffin.sys
[7 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\drivers\*.tmp files -> C:\WINDOWS\System32\drivers\*.tmp -> ]

========== Files - Modified Within 60 Days ==========

[2013/01/25 08.11.48 | 000,000,558 | ---- | M] () -- C:\WINDOWS\DFC.INI
[2013/01/25 08.07.03 | 000,001,144 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2013/01/25 08.06.03 | 000,001,274 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1659004503-1965331169-839522115-1004UA.job
[2013/01/25 08.06.00 | 000,001,222 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1659004503-1965331169-839522115-1004Core.job
[2013/01/25 08.05.15 | 000,000,398 | -H-- | M] () -- C:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job
[2013/01/25 08.04.17 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Max Kia Lalla\Desktop\OTL.exe
[2013/01/25 08.03.15 | 000,000,978 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2013/01/25 07.55.13 | 000,001,140 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2013/01/25 07.55.13 | 000,000,330 | ---- | M] () -- C:\WINDOWS\tasks\Protected Search.job
[2013/01/25 07.55.11 | 000,012,598 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2013/01/25 07.55.09 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013/01/24 23.08.35 | 000,002,447 | ---- | M] () -- C:\Documents and Settings\Max Kia Lalla\Desktop\HiJackThis.lnk
[2013/01/24 21.59.01 | 000,001,292 | ---- | M] () -- C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1659004503-1965331169-839522115-1004UA.job
[2013/01/23 00.59.00 | 000,001,270 | ---- | M] () -- C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1659004503-1965331169-839522115-1004Core.job
[2013/01/22 00.25.31 | 000,000,774 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
[2013/01/18 08.44.13 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2013/01/16 20.40.29 | 000,000,064 | ---- | M] () -- C:\Documents and Settings\Max Kia Lalla\default.pls
[2013/01/10 08.19.56 | 000,481,852 | ---- | M] () -- C:\WINDOWS\System32\perfh010.dat
[2013/01/10 08.19.56 | 000,435,400 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2013/01/10 08.19.56 | 000,080,934 | ---- | M] () -- C:\WINDOWS\System32\perfc010.dat
[2013/01/10 08.19.56 | 000,068,954 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2013/01/09 17.07.37 | 000,697,864 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2013/01/09 17.07.36 | 000,074,248 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2013/01/08 13.47.37 | 000,000,742 | ---- | M] () -- C:\Documents and Settings\Max Kia Lalla\Desktop\Cheat Engine.lnk
[2013/01/08 00.04.39 | 000,000,731 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Picasa 3.lnk
[2013/01/06 21.24.58 | 000,000,014 | ---- | M] () -- C:\end
[2013/01/06 06.34.07 | 006,009,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.dll
[2012/12/22 09.27.15 | 000,270,192 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012/12/18 11.07.27 | 000,000,783 | ---- | M] () -- C:\Documents and Settings\Max Kia Lalla\Desktop\EVEREST Ultimate Edition.lnk
[2012/12/18 11.06.45 | 010,255,080 | ---- | M] (Lavalys, Inc. ) -- C:\Documents and Settings\Max Kia Lalla\Desktop\everestultimate550.exe
[2012/12/17 23.43.46 | 010,669,952 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\Max Kia Lalla\Desktop\mbam-setup-1-65-1-1000-1-.exe
[2012/12/16 13.23.59 | 000,290,560 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\dllcache\atmfd.dll
[2012/12/16 13.23.59 | 000,290,560 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\atmfd.dll
[2012/12/15 14.26.40 | 000,000,738 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\CloneCD.lnk
[2012/12/15 11.53.09 | 000,000,126 | -HS- | M] () -- C:\Documents and Settings\All Users\Dati applicazioni\.zreglib
[2012/12/14 16.49.28 | 000,021,104 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2012/12/13 09.42.29 | 000,002,007 | ---- | M] () -- C:\Documents and Settings\Max Kia Lalla\Menu Avvio\Programmi\Esecuzione automatica\Utilità controllo supporti di Picture Motion Browser.lnk
[2012/12/13 09.36.55 | 000,001,851 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Picture Motion Browser.lnk
[2012/12/13 09.36.55 | 000,001,808 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Guida di Picture Motion Browser.lnk
[2012/12/12 22.37.56 | 004,472,832 | ---- | M] (Google Inc.) -- C:\WINDOWS\System32\GPhotos.scr
[2012/12/11 13.44.02 | 020,480,000 | ---- | M] () -- C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\store-pp.jbs
[2012/12/05 21.24.54 | 000,075,776 | ---- | M] () -- C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/12/03 02.54.32 | 000,011,264 | ---- | M] () -- C:\WINDOWS\Launcher.exe
[7 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\drivers\*.tmp files -> C:\WINDOWS\System32\drivers\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/01/22 00.25.31 | 000,000,774 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
[2013/01/08 13.47.37 | 000,000,742 | ---- | C] () -- C:\Documents and Settings\Max Kia Lalla\Desktop\Cheat Engine.lnk
[2013/01/08 00.04.39 | 000,000,731 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Picasa 3.lnk
[2013/01/06 21.22.45 | 000,000,014 | ---- | C] () -- C:\end
[2013/01/06 21.20.08 | 000,000,330 | ---- | C] () -- C:\WINDOWS\tasks\Protected Search.job
[2013/01/06 21.20.07 | 000,011,264 | ---- | C] () -- C:\WINDOWS\Launcher.exe
[2012/12/18 11.07.27 | 000,000,783 | ---- | C] () -- C:\Documents and Settings\Max Kia Lalla\Desktop\EVEREST Ultimate Edition.lnk
[2012/12/15 14.26.39 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\CloneCD.lnk
[2012/12/13 09.42.29 | 000,002,007 | ---- | C] () -- C:\Documents and Settings\Max Kia Lalla\Menu Avvio\Programmi\Esecuzione automatica\Utilità controllo supporti di Picture Motion Browser.lnk
[2012/12/13 09.36.55 | 000,001,851 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Picture Motion Browser.lnk
[2012/12/13 09.36.55 | 000,001,808 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Guida di Picture Motion Browser.lnk
[2012/12/11 15.34.07 | 000,225,262 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msimain.sdb
[2012/12/11 13.44.02 | 020,480,000 | ---- | C] () -- C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\store-pp.jbs
[2012/11/06 06.40.13 | 000,715,038 | ---- | C] () -- C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\unins000.exe
[2012/11/06 06.40.13 | 000,004,916 | ---- | C] () -- C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\unins000.dat
[2012/04/03 20.23.21 | 000,000,151 | ---- | C] () -- C:\WINDOWS\PhotoSnapViewer.INI
[2012/03/13 08.56.09 | 000,003,654 | ---- | C] () -- C:\WINDOWS\System32\drivers\Sonyhcp.dll
[2012/01/28 17.14.19 | 000,000,000 | ---- | C] () -- C:\WINDOWS\PROTOCOL.INI
[2012/01/26 10.43.10 | 000,000,064 | ---- | C] () -- C:\Documents and Settings\Max Kia Lalla\default.pls
[2012/01/06 13.30.02 | 000,000,375 | ---- | C] () -- C:\WINDOWS\CoverEdCtrl.INI
[2012/01/03 08.28.06 | 002,570,286 | ---- | C] () -- C:\WINDOWS\System32\abgx360.exe
[2011/12/09 17.07.04 | 000,000,602 | ---- | C] () -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\AutoGK.ini
[2011/11/08 22.46.29 | 000,000,038 | ---- | C] () -- C:\WINDOWS\AviSplitter.INI
[2011/07/11 10.14.18 | 000,135,168 | ---- | C] () -- C:\WINDOWS\System32\ChgService.exe
[2011/07/04 13.35.15 | 000,000,033 | ---- | C] () -- C:\Documents and Settings\Max Kia Lalla\.mjsync_it_IT
[2011/06/23 19.24.42 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll
[2011/06/23 19.24.42 | 000,036,608 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys
[2011/06/23 19.24.32 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\$_hpcst$.hpc
[2011/06/02 19.52.14 | 000,000,105 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2011/05/19 12.07.21 | 000,189,248 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2011/05/19 12.07.20 | 000,075,136 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
[2011/04/06 11.26.40 | 000,041,472 | ---- | C] () -- C:\Documents and Settings\Max Kia Lalla\RegSetup.exe
[2011/04/05 14.47.36 | 000,061,184 | ---- | C] () -- C:\Documents and Settings\Max Kia Lalla\config.dat
[2011/04/05 14.18.18 | 000,041,472 | ---- | C] () -- C:\Documents and Settings\Max Kia Lalla\selfupdate.exe
[2011/03/15 10.18.44 | 000,100,352 | ---- | C] () -- C:\Documents and Settings\Max Kia Lalla\BrowserStartPage.dll
[2011/03/15 10.17.40 | 000,284,160 | ---- | C] () -- C:\Documents and Settings\Max Kia Lalla\InstallHelper.exe
[2011/02/27 12.39.36 | 000,015,498 | ---- | C] () -- C:\WINDOWS\VX1000.ini
[2010/11/24 23.05.20 | 000,002,828 | -HS- | C] () -- C:\Documents and Settings\All Users\Dati applicazioni\KGyGaAvL.sys
[2010/11/24 23.05.20 | 000,000,008 | RHS- | C] () -- C:\Documents and Settings\All Users\Dati applicazioni\50DD0B5D4A.sys
[2010/10/27 21.11.30 | 000,000,126 | -HS- | C] () -- C:\Documents and Settings\All Users\Dati applicazioni\.zreglib
[2010/10/27 20.43.18 | 000,000,160 | ---- | C] () -- C:\Documents and Settings\Max Kia Lalla\.jalbum-recent-projects.properties
[2010/10/27 20.34.34 | 000,001,074 | ---- | C] () -- C:\Documents and Settings\Max Kia Lalla\.jalbum-defaults.jap
[2010/10/17 21.57.02 | 000,000,577 | ---- | C] () -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\prefsdb.dat
[2010/09/22 20.57.42 | 000,000,655 | ---- | C] () -- C:\Documents and Settings\Max Kia Lalla\profiles.cfg
[2010/09/22 20.57.42 | 000,000,234 | ---- | C] () -- C:\Documents and Settings\Max Kia Lalla\options.cfg
[2010/09/22 20.57.41 | 000,000,350 | ---- | C] () -- C:\Documents and Settings\Max Kia Lalla\ogre.cfg
[2010/09/12 13.48.10 | 000,003,597 | ---- | C] () -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\PassportPhotoStudio
[2010/05/08 12.56.02 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\chrtmp
[2010/04/19 22.00.43 | 000,000,671 | ---- | C] () -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\vso_ts_preview.xml
[2010/04/19 22.00.19 | 000,087,608 | ---- | C] () -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\inst.exe
[2010/04/19 22.00.19 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\pcouffin.cat
[2010/04/19 22.00.19 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\pcouffin.inf
[2010/03/01 23.08.15 | 000,075,776 | ---- | C] () -- C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2002/07/01 15.13.30 | 000,000,224 | -HS- | C] () -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\brun_nbeta12.dat

========== ZeroAccess Check ==========

[2010/03/02 22.14.10 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2008/04/14 03.13.50 | 001,499,136 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009/02/09 11.51.43 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008/04/14 03.13.56 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2010/07/06 20.48.23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\3rd Eye Solutions
[2010/05/14 11.53.00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Alawar
[2010/09/24 20.39.47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Alawar Stargaze
[2010/09/19 20.50.40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\AlawarWrapper
[2010/09/13 20.49.03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Artist Colony
[2010/04/08 13.10.32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Babylon
[2010/10/13 20.36.34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Becky Brogan 2
[2010/08/10 20.34.33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Bicyclestudios
[2012/10/07 12.12.05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Big Fish Games
[2010/04/18 12.52.31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Blue Footed Games
[2012/11/01 13.28.33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Bluetooth
[2011/09/14 05.29.16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\boost_interprocess
[2010/03/02 22.18.06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Canneverbe Limited
[2012/11/14 07.02.14 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Common Files
[2010/03/02 22.30.08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\DAEMON Tools Lite
[2010/05/03 15.35.39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Deadtime Stories
[2010/11/05 12.57.59 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Dati applicazioni\DSS
[2011/04/01 12.18.36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\EA Core
[2010/11/11 22.34.44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Electronic Arts
[2010/10/15 21.54.22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Elephant Games
[2010/08/15 15.02.51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Enkord
[2010/08/11 21.43.37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Exorcist DS 7
[2010/03/01 21.35.04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\f-secure
[2010/08/07 19.55.08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\faim
[2010/04/18 10.40.49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Fenomen Games
[2010/09/26 21.07.08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Floodlight Games
[2010/05/08 13.07.44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\fssg
[2010/10/24 17.13.07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\GameHouse
[2010/10/20 20.57.40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Gamers Digital
[2010/06/27 21.43.43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Gogii
[2010/11/10 22.30.04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\IM
[2012/06/21 13.10.47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Iminent
[2010/11/10 22.29.03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\IncrediMail
[2012/10/02 00.29.21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Installations
[2012/12/11 15.18.13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\IObit
[2010/08/10 20.44.03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\JollyBear
[2010/03/19 21.48.16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Konami
[2011/12/20 09.48.10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\LightScribe
[2010/06/29 21.20.10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Merscom
[2010/09/06 11.48.52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Messenger Plus!
[2010/07/15 21.47.09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\MumboJumbo
[2011/10/23 13.47.33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\MyHeritage
[2010/06/25 12.55.23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Panda Security
[2011/06/23 19.26.52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\PC Suite
[2010/06/29 20.56.51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\PlayFirst
[2010/07/25 20.43.13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\PlayPond
[2010/10/24 17.05.29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\ScreenSeven
[2010/04/22 20.51.22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\SecTaskMan
[2010/06/11 20.02.55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\SEGA Corporation
[2010/07/20 21.56.40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Simajo The Travel Móstery Game
[2012/12/15 14.26.45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\SlySoft
[2010/10/08 20.49.53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\SolidDocuments
[2010/09/29 20.49.12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\SOS
[2013/01/08 13.27.19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\SweetIM
[2012/12/11 12.44.28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Tarma Installer
[2011/01/09 11.17.17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\TEMP
[2010/07/19 14.50.58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Top Evidence
[2012/11/14 07.03.08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\TuneUp Software
[2011/07/17 19.11.28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Ubisoft
[2010/03/02 22.38.44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\UDL
[2010/04/19 22.31.13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\vsosdk
[2010/04/18 08.47.07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\ZEMNOTT
[2012/11/14 07.11.20 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Dati applicazioni\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
[2012/12/11 15.17.38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dati applicazioni\IObit
[2012/11/17 09.26.51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dati applicazioni\TuneUp Software
[2010/07/21 21.21.19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\2monkeys
[2012/12/14 12.58.15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\abgx360
[2010/10/07 20.44.47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Abra Academy2
[2010/10/24 20.57.33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Aerohills
[2010/05/14 11.53.00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Alawar
[2010/08/08 21.49.32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Anarchy
[2010/04/08 20.37.47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\AnvSoft
[2010/10/02 21.04.24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Artifex Mundi
[2010/10/12 12.52.23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Artisteer
[2010/05/17 19.04.20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Artogon
[2010/10/16 22.11.43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Ashampoo
[2012/03/16 23.44.31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Audacity
[2010/05/24 15.24.19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Auslogics
[2010/05/24 15.24.16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Auslogics(2)
[2010/04/08 13.10.32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Babylon
[2011/10/08 20.12.48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\BeNaughtyChat
[2010/08/10 20.34.33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Bicyclestudios
[2010/09/24 20.32.22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Big Fish Games
[2010/09/09 20.30.13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\BoneTown
[2010/04/27 12.39.35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Boolat Games
[2010/07/02 20.37.46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Brunhilda
[2010/07/02 20.38.54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Brunhilda_Release
[2010/03/02 22.18.07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Canneverbe Limited
[2010/09/09 20.34.09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Casual Mechanics
[2011/02/05 14.28.27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Charles
[2010/07/20 21.58.34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\ChaYoWo Games
[2011/06/21 11.38.53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\com.socialbox.socialbox
[2011/06/19 22.22.59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\com.zoosk.Desktop.096E6A67431258A508A2446A847B240591D2C99B.1
[2010/04/02 12.40.44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Command and Conquer 4
[2010/07/27 20.52.42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Coyotes Tale
[2012/12/11 15.26.14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\DAEMON Tools Lite
[2011/12/23 08.07.31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Digiarty
[2012/11/05 16.33.05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\DVDVideoSoft
[2012/11/05 16.33.04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\DVDVideoSoftIEHelpers
[2010/10/15 21.54.22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Elephant Games
[2010/08/05 20.50.34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Enlightenus2_BFG
[2010/04/25 08.05.21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\EPSON
[2010/04/18 13.06.36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\ERS G-Studio
[2010/10/29 14.01.54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\ERS Game Studios
[2010/03/01 20.09.25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\f-secure
[2010/04/18 19.47.51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Fireglow Games
[2010/05/21 20.49.26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Flood Light Games
[2010/09/26 21.07.08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Floodlight Games
[2010/10/03 22.11.03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\FlyWheelGames
[2011/09/13 14.10.43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\FreeAudioPack
[2012/03/25 17.01.12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\FreeFLVConverter
[2010/04/23 20.35.50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Freeze Tag
[2010/10/24 17.13.07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\GameHouse
[2010/08/15 14.37.36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\GameInvest
[2010/08/10 20.28.34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\GameMill Entertainment
[2010/09/19 15.14.35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Gamers Digital
[2010/07/22 20.55.11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Gold Casual Games
[2010/10/04 21.20.51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\HdO Adventure
[2012/04/14 13.19.36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\ImgBurn
[2011/09/13 14.34.55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\ImTOO
[2012/12/12 00.08.52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\IObit
[2010/10/27 20.33.53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\JAlbum
[2010/10/20 20.37.46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Jetdogs Studios
[2010/05/14 22.20.36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\JoyBits
[2010/09/12 13.12.37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\KC Softwares
[2010/09/26 21.51.29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\KingArthur
[2010/07/13 21.46.31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\KranX Productions
[2010/05/02 10.01.51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Lazy Turtle Games
[2010/11/12 13.23.34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\magentictb
[2010/07/02 20.37.46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\MagicMatch
[2010/07/21 21.20.10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Management
[2010/06/27 10.19.16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Mariaglorum
[2012/10/22 19.16.23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\MechCAD
[2010/06/29 21.20.10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Merscom
[2010/07/04 10.03.56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Mutant Arcade
[2010/06/04 21.21.19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\My Games
[2011/10/23 13.47.33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\MyHeritage
[2010/07/28 20.28.50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\MysteriousCaseOfJekyllAndHyde
[2010/10/31 17.02.35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Namco
[2010/07/26 17.24.20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Odian Games
[2012/04/01 15.33.49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\OfferBox
[2012/11/05 16.32.43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\OpenCandy
[2010/07/24 20.24.55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Orneon
[2010/06/03 22.01.38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Paige Harper and the Tome of Mystery
[2011/10/29 12.59.21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Palmlex
[2010/03/01 22.32.54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Panda Security
[2010/09/09 21.59.41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\panoramik
[2010/09/12 13.54.01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Passport Photo Studio
[2010/09/12 13.41.32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\passport_photo
[2011/06/23 19.26.51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\PC Suite
[2010/09/05 09.08.10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\PCFix
[2010/10/17 21.57.32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\perfect future studio
[2010/11/03 20.57.41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\PhotoFiltre
[2010/06/29 20.56.51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\PlayFirst
[2010/10/17 21.18.31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\PlayPond
[2010/06/18 21.10.31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Playrix Entertainment
[2010/10/26 22.00.29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Pogo Games
[2013/01/22 00.20.33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\PriceGong
[2010/06/07 19.19.07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Prison Break
[2011/05/19 12.07.17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\PunkBuster
[2010/09/05 13.49.23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\quickclick
[2011/06/23 19.24.31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Samsung
[2010/07/02 20.37.46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Saqqarah
[2010/10/20 20.54.47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Scholastic
[2010/10/24 17.05.29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\ScreenSeven
[2011/03/20 10.02.55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\searchquband
[2011/11/23 02.27.26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\searchqutoolbar
[2010/10/12 13.37.29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Serif
[2010/07/03 21.22.34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\SerpentOfIsis
[2010/07/08 21.42.04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Silverback Productions
[2010/06/10 18.52.28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Skunk Studios
[2011/09/13 14.15.46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Softplicity
[2010/10/08 20.51.48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\SolidDocuments
[2010/09/01 21.08.32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Specialbit
[2010/07/06 21.04.45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\SpinTop Games
[2010/07/02 20.37.46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\StoneLoops!
[2012/04/06 21.13.43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Systweak
[2011/12/09 16.58.45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\TeamViewer
[2010/09/14 20.44.11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Ten Heavens
[2010/04/09 12.21.02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\The Creative Assembly
[2010/07/11 21.45.20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\TikisLab
[2010/09/19 20.50.36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\TOMI2.THE GATES OF FATE
[2010/07/19 14.50.58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Top Evidence
[2010/07/22 21.12.40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Total Eclipse
[2012/11/14 07.02.52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\TuneUp Software
[2012/04/05 07.29.18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Tuto4pc
[2011/07/17 19.11.29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Ubisoft
[2010/09/05 12.17.19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Uniblue
[2013/01/25 08.15.29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\uTorrent
[2010/08/03 20.38.30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Vast Studios
[2010/07/18 22.27.35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Virtual Prophecy
[2010/07/17 21.28.12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Vogat Interactive
[2012/12/11 15.26.17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Vso
[2010/10/19 21.58.41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\World-Loom
[2010/09/18 22.06.54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\YoudaGames
[2010/04/18 08.47.07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\ZEMNOTT
[2010/10/06 21.24.03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\Zuzu

========== Purity Check ==========



========== Files - Unicode (All) ==========
[2012/11/08 09.17.29 | 000,000,000 | ---D | M](C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\???????sAppData) -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\敎潲䍄敔灭慬整sAppData
[2012/11/08 09.17.29 | 000,000,000 | ---D | M](C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\???????sAppData) -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\敎潲䍄敔灭慬整sAppData
(C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\???????sAppData) -- C:\Documents and Settings\Max Kia Lalla\Dati applicazioni\敎潲䍄敔灭慬整sAppData

========== Alternate Data Streams ==========

@Alternate Data Stream - 96 bytes -> C:\Documents and Settings\All Users\Dati applicazioni\TEMP:D48500F8
@Alternate Data Stream - 95 bytes -> C:\Documents and Settings\All Users\Dati applicazioni\TEMP:5C6EBC69
@Alternate Data Stream - 24 bytes -> C:\WINDOWS:647CBCB48FDD95E8
@Alternate Data Stream - 159 bytes -> C:\Documents and Settings\All Users\Dati applicazioni\TEMP:5F59E8EA
@Alternate Data Stream - 144 bytes -> C:\Documents and Settings\All Users\Dati applicazioni\TEMP:A2349A15
@Alternate Data Stream - 139 bytes -> C:\Documents and Settings\All Users\Dati applicazioni\TEMP:2398E95B
@Alternate Data Stream - 139 bytes -> C:\Documents and Settings\All Users\Dati applicazioni\TEMP:1FF4363A
@Alternate Data Stream - 134 bytes -> C:\Documents and Settings\All Users\Dati applicazioni\TEMP:18BFD8F8
@Alternate Data Stream - 130 bytes -> C:\Documents and Settings\All Users\Dati applicazioni\TEMP:C186F20B
@Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Dati applicazioni\TEMP:F64FC07C
@Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Dati applicazioni\TEMP:D6255023
@Alternate Data Stream - 120 bytes -> C:\Documents and Settings\All Users\Dati applicazioni\TEMP:3B812EE0
@Alternate Data Stream - 115 bytes -> C:\Documents and Settings\All Users\Dati applicazioni\TEMP:3595B780
@Alternate Data Stream - 114 bytes -> C:\Documents and Settings\All Users\Dati applicazioni\TEMP:1CB4A530
@Alternate Data Stream - 113 bytes -> C:\Documents and Settings\All Users\Dati applicazioni\TEMP:7C60A173
@Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Dati applicazioni\TEMP:E91ADC66

< End of report >



OTL Extras logfile created on: 25/01/2013 8.08.00 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Max Kia Lalla\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000410 | Country: Italia | Language: ITA | Date Format: dd/MM/yyyy

3,00 Gb Total Physical Memory | 2,05 Gb Available Physical Memory | 68,27% Memory free
4,84 Gb Paging File | 4,00 Gb Available in Paging File | 82,61% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programmi
Drive C: | 232,88 Gb Total Space | 70,54 Gb Free Space | 30,29% Space Free | Partition Type: NTFS

Computer Name: MAX-6128F3031CD | User Name: Max Kia Lalla | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

[HKEY_USERS\S-1-5-21-1659004503-1965331169-839522115-1004\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
"10243:TCP" = 10243:TCP:LocalSubNet:Enabled:Servizio di condivisione in rete Windows Media Player
"10280:UDP" = 10280:UDP:LocalSubNet:Enabled:Servizio di condivisione in rete Windows Media Player
"10281:UDP" = 10281:UDP:LocalSubNet:Enabled:Servizio di condivisione in rete Windows Media Player
"10282:UDP" = 10282:UDP:LocalSubNet:Enabled:Servizio di condivisione in rete Windows Media Player
"10283:UDP" = 10283:UDP:LocalSubNet:Enabled:Servizio di condivisione in rete Windows Media Player
"10284:UDP" = 10284:UDP:LocalSubNet:Enabled:Servizio di condivisione in rete Windows Media Player
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"19197:TCP" = 19197:TCP:*:Enabled:Utorrent 2
"19197:UDP" = 19197:UDP:*:Enabled:utorrent2
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
"10243:TCP" = 10243:TCP:LocalSubNet:Enabled:Servizio di condivisione in rete Windows Media Player
"10280:UDP" = 10280:UDP:LocalSubNet:Enabled:Servizio di condivisione in rete Windows Media Player
"10281:UDP" = 10281:UDP:LocalSubNet:Enabled:Servizio di condivisione in rete Windows Media Player
"10282:UDP" = 10282:UDP:LocalSubNet:Enabled:Servizio di condivisione in rete Windows Media Player
"10283:UDP" = 10283:UDP:LocalSubNet:Enabled:Servizio di condivisione in rete Windows Media Player
"10284:UDP" = 10284:UDP:LocalSubNet:Enabled:Servizio di condivisione in rete Windows Media Player
"1903:UDP" = 1903:UDP:*:Enabled:Dimensity
"1900:TCP" = 1900:TCP:*:Enabled:UPnP
"2157:UDP" = 2157:UDP:*:Enabled:Dimensity
"2793:UDP" = 2793:UDP:*:Enabled:Dimensity
"1866:UDP" = 1866:UDP:*:Enabled:Dimensity
"4798:UDP" = 4798:UDP:*:Enabled:Dimensity
"1187:UDP" = 1187:UDP:*:Enabled:Dimensity
"1358:UDP" = 1358:UDP:*:Enabled:Dimensity
"1377:UDP" = 1377:UDP:*:Enabled:Dimensity
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"5985:TCP" = 5985:TCP:*:Disabled:Gestione remota Windows
"80:TCP" = 80:TCP:*:Disabled:Gestione remota Windows - Modalità compatibilità (HTTP-In)

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\Programmi\Windows Live\Sync\WindowsLiveSync.exe" = C:\Programmi\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync -- (Microsoft Corporation)
"C:\Programmi\Windows Live\Messenger\msnmsgr.exe" = C:\Programmi\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger -- (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Programmi\eMule\emule.exe" = C:\Programmi\eMule\emule.exe:*:Enabled:eMule -- (http://www.emule-project.net)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\Programmi\Messenger\msmsgs.exe" = C:\Programmi\Messenger\msmsgs.exe:*:Enabled:Windows Messenger -- (Microsoft Corporation)
"C:\Programmi\IVT Corporation\BlueSoleil\BlueSoleil.exe" = C:\Programmi\IVT Corporation\BlueSoleil\BlueSoleil.exe:*:Enabled:BlueSoleil -- (IVT Corporation.)
"C:\Programmi\Windows Live\Sync\WindowsLiveSync.exe" = C:\Programmi\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync -- (Microsoft Corporation)
"C:\Programmi\Windows Live\Messenger\msnmsgr.exe" = C:\Programmi\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger -- (Microsoft Corporation)
"C:\Programmi\Microsoft LifeCam\LifeCam.exe" = C:\Programmi\Microsoft LifeCam\LifeCam.exe:*:Enabled:LifeCam.exe -- (Microsoft Corporation)
"C:\Programmi\Microsoft LifeCam\LifeExp.exe" = C:\Programmi\Microsoft LifeCam\LifeExp.exe:*:Enabled:LifeExp.exe -- (Microsoft Corporation)
"C:\Programmi\Windows Searchqu Toolbar\ToolBar\dtUser.exe" = C:\Programmi\Windows Searchqu Toolbar\ToolBar\dtUser.exe:*:Enabled:DTX broker -- (Visicom Media Inc.)
"C:\Programmi\Yahoo!\Messenger\YahooMessenger.exe" = C:\Programmi\Yahoo!\Messenger\YahooMessenger.exe:*:Enabled:Yahoo! Messenger -- (Yahoo! Inc.)
"C:\WINDOWS\system32\PnkBstrA.exe" = C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA -- ()
"C:\WINDOWS\system32\PnkBstrB.exe" = C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB -- ()
"C:\Documents and Settings\Max Kia Lalla\Documenti\Downloads\SweetImSetup.exe" = C:\Documents and Settings\Max Kia Lalla\Documenti\Downloads\SweetImSetup.exe:*:Enabled:SweetIM Installer -- (SweetIM Technologies Ltd.)
"C:\Programmi\uTorrent\uTorrent.exe" = C:\Programmi\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\Programmi\Windows Searchqu Toolbar\Datamngr\ToolBar\dtUser.exe" = C:\Programmi\Windows Searchqu Toolbar\Datamngr\ToolBar\dtUser.exe:*:Enabled:DTX broker -- (Visicom Media Inc.)
"C:\Programmi\TeamViewer\Version7\TeamViewer.exe" = C:\Programmi\TeamViewer\Version7\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application -- (TeamViewer GmbH)
"C:\Programmi\TeamViewer\Version7\TeamViewer_Service.exe" = C:\Programmi\TeamViewer\Version7\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service -- (TeamViewer GmbH)
"C:\Programmi\File comuni\Ahead\Nero Web\SetupX.exe" = C:\Programmi\File comuni\Ahead\Nero Web\SetupX.exe:*:Enabled:Nero ProductSetup -- (Nero AG)
"C:\Programmi\Iminent\IMBooster\IMBooster.exe" = C:\Programmi\Iminent\IMBooster\IMBooster.exe:*:Enabled:IMBooster -- (Iminent)
"C:\Programmi\Iminent\MMServer\Iminent.MMServer.exe" = C:\Programmi\Iminent\MMServer\Iminent.MMServer.exe:*:Enabled:MMServer -- (Iminent)
"C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\Facebook\Video\Skype\FacebookVideoCalling.exe" = C:\Documents and Settings\Max Kia Lalla\Impostazioni locali\Dati applicazioni\Facebook\Video\Skype\FacebookVideoCalling.exe:*:Enabled:Facebook Video Calling Plugin -- (Skype Limited)
"C:\WINDOWS\system32\msiexec.exe" = C:\WINDOWS\system32\msiexec.exe:*:Enabled:UpdateManagerSetup -- (Microsoft Corporation)
"C:\Programmi\SweetIM\Communicator\SweetPacksUpdateManager.exe" = C:\Programmi\SweetIM\Communicator\SweetPacksUpdateManager.exe:*:Enabled:SweetPacksUpdateManager -- (SweetIM Technologies Ltd.)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{0B500125-92A7-40BF-ACF0-45A9221ADE21}_is1" = PowerOffer 2.0
"{0D343C5F-FE5C-4914-91D9-E9E7A440590E}" = Windows Live Writer
"{1859BB19-EF0A-4196-9F48-569499FE7420}" = Raccolta foto di Windows Live
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Strumento di caricamento di Windows Live
"{20C45B32-5AB6-46A4-94EF-58950CAF05E5}" = EPSON Attach To Email
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{26A24AE4-039D-4CA4-87B4-2F83216035FF}" = Java(TM) 6 Update 37
"{2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}" = EPSON Scan Assistant
"{2DC469DE-10BD-4032-AEB0-6E5D5B8225FD}_is1" = Emoticoons 1.0
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{350C9410-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{39AE27EE-A148-48A3-B98D-35498C4D9719}" = Windows Live Messenger
"{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}" = NVIDIA PhysX
"{438BB9B4-65FE-4626-91D9-A8F57B18001D}" = Bluesoleil2.6.0.8 Release 070517
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4DF4CAB9-B628-4924-AD9A-1C457DD2960A}" = VirtualDJ Home FREE
"{50779A29-834E-4E36-BBEB-B7CABC67A825}" = Microsoft Security Client IT-IT Language Pack
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}" = Microsoft Office Live Add-in 1.3
"{5C29CB8B-AC1E-4114-8D68-9CD080140D4A}" = Sony USB Driver
"{635E8116-E451-4E27-BF28-AD11C489D28E}_is1" = MyPcCleaner versione 1.0
"{6421DD1B-F425-487F-945D-381A847D6901}" = Iminent
"{67EDD823-135A-4D59-87BD-950616D6E857}" = EPSON Copy Utility 3
"{6F695BCF-9BDC-48AB-8D46-D57CFAD7A248}" = Assistente per l'accesso a Windows Live
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7462E859-C453-4E08-BE0D-7D5E13E4CD1F}" = Microsoft Antimalware Service IT-IT Language Pack
"{7E84FAC8-C518-40F9-9807-7455301D6D25}" = SamsungConnectivityCableDriver
"{82EF29B1-9B60-4142-A155-0599216DD053}" = LightScribe System Software
"{83258E90-1F76-4E13-9F60-A0F8ED41E76F}" = PC Connectivity Solution
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{847CAE64-4CD2-4B2D-AF00-978FF5431040}" = Nero 7 Ultra Edition
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{889DF117-14D1-44EE-9F31-C5FB5D47F68B}" = Yontoo 1.10.03
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8D273DE5-ABFA-4BD0-A9D7-EE9C971438C4}_is1" = PDF-Viewer
"{8DC42D05-680B-41B0-8878-6C14D24602DB}" = QuickTime
"{8E5233E1-7495-44FB-8DEB-4BE906D59619}" = Junk Mail filter update
"{90110410-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel(R) Matrix Storage Manager
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{96E2E493-C484-43E3-9B95-D62EE7D40D3A}" = Internet Explorer Toolbar 4.7 by SweetPacks
"{98EABC7F-B1A1-43A5-B505-5B4EC3908DCD}" = Microsoft Security Client
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9CEB017E-CC16-4C89-B9E4-AAB5A1DD12F9}" = Windows Live Essentials
"{A0C9DF2B-89B5-4483-8983-18A68200F1B4}" = SweetIM for Messenger 3.7
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1040-7B44-AA1000000001}" = Adobe Reader X (10.1.5) - Italiano
"{B92C5909-1D37-4C51-8397-A28BB28E5DC3}" = Facebook Video Calling 1.2.0.287
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C3C640B8-95B6-40AE-A058-BE4896CD3010}" = Windows Live Call
"{C89F2092-B9E4-46FD-83BB-C6F2D7838CED}" = Windows Live Sync
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D5068583-D569-468B-9755-5FBF5848F46F}" = Sony Picture Utility
"{D87ED458-C738-42E9-9A6F-961CD715388B}" = Microsoft LifeCam
"{D8CE69B0-9274-4b8c-BA49-0FF6A20A3C65}" = SAMSUNG SYMBIAN USB Download Driver
"{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1" = Auslogics Disk Defrag
"{E31A24A7-CF73-42B7-8FA1-26644296C9E3}" = Windows Live Mail
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{EA8FA6BE-29BE-4AF2-9352-841F83215EB0}" = Update Manager for SweetPacks 1.1
"{F03CB3EF-DC16-35CE-B3C1-C68EA09E5E97}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"{F689320D-C3BB-4BDE-B43C-C7ADE3898BFB}" = Jalbum
"{FE23D063-934D-4829-A0D8-00634CE79B4A}" = Adobe AIR
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"504244733D18C8F63FF584AEB290E3904E791693" = Pacchetto driver Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"6194C28A8F62DD817EA1B918E6E46E806A21B452" = Pacchetto driver Windows - MobileTop (sshpmdm) Modem (02/23/2007 2.5.0.0)
"65B6FE5418CE28F4D72543FB2D964C3CEC83F161" = Pacchetto driver Windows - MobileTop (sshpusb) USB (02/23/2007 2.5.0.0)
"abgx360" = abgx360 v1.0.6
"Active@ DVD Eraser v 1.1" = Active@ DVD Eraser v 1.1
"addlyrics@addlyrics.net" = AddLyrics
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"aTube Catcher" = aTube Catcher
"AviSynth" = AviSynth 2.5
"AVS DVD Copy_is1" = AVS DVD Copy version 4.1.1
"AVS Update Manager_is1" = AVS Update Manager 1.0
"AVS4YOU Software Navigator_is1" = AVS4YOU Software Navigator 1.3
"BigTime Screen Saver 1.6" = BigTime Screen Saver 1.6
"Blue Byte Game Channel" = Blue Byte Game Channel
"CCleaner" = CCleaner
"Cheat Engine 6.1_is1" = Cheat Engine 6.1
"CloneCD" = CloneCD
"DAEMON Tools Toolbar" = DAEMON Tools Toolbar
"DF095A5F6BDF51B12AC8DFCDBA1B044C442E0ADE" = Pacchetto driver Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)
"eMule" = eMule
"EPSON Printer and Utilities" = Software per stampante EPSON
"EPSON Scanner" = EPSON Scan
"ESDX4000_4050_CX3900" = ESDX4000_4050_CX3900
"EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v5.50
"Faim_is1" = Faim
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.11.35.1031
"Image Converter .EXE_is1" = Image Converter .EXE 2.0.0.82
"IMBoosterARP" = Iminent
"ImgBurn" = ImgBurn
"InstallShield_{20C45B32-5AB6-46A4-94EF-58950CAF05E5}" = EPSON Attach To Email
"InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"IsoBuster_is1" = IsoBuster 2.7
"KLiteCodecPack_is1" = K-Lite Codec Pack 2.41 Basic
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware versione 1.70.0.1100
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft Security Client" = Microsoft Security Essentials
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NVIDIA Drivers" = NVIDIA Drivers
"NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager
"OpenAL" = OpenAL
"Picasa 3" = Picasa 3
"PriceGong" = PriceGong 2.5.0
"PricePeep" = PricePeep
"Protected Search_is1" = Protected Search 1.1
"PunkBusterSvc" = PunkBuster Services
"SAMSUNG Mobile Composite Device" = SAMSUNG Mobile Composite Device Software
"SAMSUNG Mobile Modem" = SAMSUNG Mobile Modem Driver Set
"Samsung Mobile Modem Device" = Samsung Mobile Modem Device Software
"Samsung Mobile phone USB driver" = Samsung Mobile phone USB driver Software
"SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software
"SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software
"SAMSUNG USB Mobile Device" = SAMSUNG USB Mobile Device Software
"save2pc Pro_is1" = save2pc Pro 3.25
"Searchqu 0 MediaBar" = Windows Searchqu Toolbar
"Searchqu 101 MediaBar" = Windows Searchqu Toolbar
"Security Task Manager" = Security Task Manager 1.7h
"StmAdsl" = ADSL modem
"SystemRequirementsLab" = System Requirements Lab
"TeamViewer 7" = TeamViewer 7
"The KMPlayer" = The KMPlayer (remove only)
"uTorrent" = µTorrent
"Vtune_is1" = Vtune 4.6
"WIC" = Windows Imaging Component
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR gestione archivi
"WinX DVD Author_is1" = WinX DVD Author 5.9
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"Yahoo! Companion" = Yahoo! Toolbar
"Yahoo! Messenger" = Yahoo! Messenger
"Yahoo! Software Update" = Yahoo! Software Update

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-1659004503-1965331169-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 21/01/2013 1.52.42 | Computer Name = MAX-6128F3031CD | Source = PowerOffer Upd Service | ID = 0
Description = Service cannot be started. Handle non valido

Error - 21/01/2013 14.02.12 | Computer Name = MAX-6128F3031CD | Source = Google Update | ID = 20
Description =

Error - 21/01/2013 17.02.14 | Computer Name = MAX-6128F3031CD | Source = Google Update | ID = 20
Description =

Error - 21/01/2013 19.15.32 | Computer Name = MAX-6128F3031CD | Source = PowerOffer Upd Service | ID = 0
Description = Service cannot be started. Handle non valido

Error - 21/01/2013 19.19.49 | Computer Name = MAX-6128F3031CD | Source = PowerOffer Upd Service | ID = 0
Description = Service cannot be started. Handle non valido

Error - 22/01/2013 3.43.35 | Computer Name = MAX-6128F3031CD | Source = PowerOffer Upd Service | ID = 0
Description = Service cannot be started. Handle non valido

Error - 22/01/2013 19.23.52 | Computer Name = MAX-6128F3031CD | Source = PowerOffer Upd Service | ID = 0
Description = Service cannot be started. Handle non valido

Error - 23/01/2013 3.16.15 | Computer Name = MAX-6128F3031CD | Source = PowerOffer Upd Service | ID = 0
Description = Service cannot be started. Handle non valido

Error - 24/01/2013 2.16.00 | Computer Name = MAX-6128F3031CD | Source = PowerOffer Upd Service | ID = 0
Description = Service cannot be started. Handle non valido

Error - 25/01/2013 2.57.18 | Computer Name = MAX-6128F3031CD | Source = PowerOffer Upd Service | ID = 0
Description = Service cannot be started. Handle non valido

[ System Events ]
Error - 24/01/2013 2.13.56 | Computer Name = MAX-6128F3031CD | Source = Dhcp | ID = 1002
Description = Il lease 192.168.0.2 dell'indirizzo IP della scheda di rete con indirizzo
00138FD227ED è stato negato dal server DHCP 192.168.0.1. Il server DHCP ha inviato
un messaggio DHCPNACK.

Error - 24/01/2013 2.14.17 | Computer Name = MAX-6128F3031CD | Source = Service Control Manager | ID = 7000
Description = Il servizio StarOpen non è stato avviato per il seguente errore: %%2

Error - 24/01/2013 2.15.43 | Computer Name = MAX-6128F3031CD | Source = Service Control Manager | ID = 7022
Description = Servizio Pos Service bloccato in partenza.

Error - 24/01/2013 2.15.43 | Computer Name = MAX-6128F3031CD | Source = Service Control Manager | ID = 7022
Description = Servizio Serv Updater bloccato in partenza.

Error - 24/01/2013 2.15.53 | Computer Name = MAX-6128F3031CD | Source = Service Control Manager | ID = 7000
Description = Il servizio Cardex non è stato avviato per il seguente errore: %%183

Error - 25/01/2013 2.55.11 | Computer Name = MAX-6128F3031CD | Source = Dhcp | ID = 1002
Description = Il lease 192.168.0.2 dell'indirizzo IP della scheda di rete con indirizzo
00138FD227ED è stato negato dal server DHCP 192.168.0.1. Il server DHCP ha inviato
un messaggio DHCPNACK.

Error - 25/01/2013 2.55.33 | Computer Name = MAX-6128F3031CD | Source = Service Control Manager | ID = 7000
Description = Il servizio StarOpen non è stato avviato per il seguente errore: %%2

Error - 25/01/2013 2.56.58 | Computer Name = MAX-6128F3031CD | Source = Service Control Manager | ID = 7022
Description = Servizio Pos Service bloccato in partenza.

Error - 25/01/2013 2.56.58 | Computer Name = MAX-6128F3031CD | Source = Service Control Manager | ID = 7022
Description = Servizio Serv Updater bloccato in partenza.

Error - 25/01/2013 2.57.11 | Computer Name = MAX-6128F3031CD | Source = Service Control Manager | ID = 7000
Description = Il servizio Cardex non è stato avviato per il seguente errore: %%183


< End of report >
Torna in alto
 
Utenti presenti in questo topic
Guest

Aiutamici Forum » FORUM - Istruzioni e Guide » Sicurezza VIRUS » Ciao...mi controllate il Log per favore ???


Salta al Forum
Aggiunta nuovi Topic disabilitata in questo forum.
Risposte disabilitate in questo forum.
Eliminazione tuoi Post disabilitata in questo forum.
Modifica dei tuoi post disabilitata in questo forum.
Creazione Sondaggi disabilitata in questo forum.
Voto ai sondaggi disabilitato in questo forum.

Main Forum RSS : RSS

Aiutamici Theme
Powered by Yet Another Forum.net versione 1.9.1.8 (NET v2.0) - 3/29/2008
Copyright © 2003-2008 Yet Another Forum.net. All rights reserved.