Allora...ecco ciò che mi hai chiesto...---Malwarebytes---Malwarebytes' Anti-Malware 1.35
Versione del database: 1917
Windows 5.1.2600 Service Pack 3
30/03/2009 14.50.37
mbam-log-2009-03-30 (14-50-32).txt
Tipo di scansione: Scansione completa (C:\|D:\|)
Elementi scansionati: 111721
Tempo trascorso: 15 minute(s), 18 second(s)
Processi delle memoria infetti: 0
Moduli della memoria infetti: 0
Chiavi di registro infette: 0
Valori di registro infetti: 0
Elementi dato del registro infetti: 2
Cartelle infette: 0
File infetti: 0
Processi delle memoria infetti:
(Nessun elemento malevolo rilevato)
Moduli della memoria infetti:
(Nessun elemento malevolo rilevato)
Chiavi di registro infette:
(Nessun elemento malevolo rilevato)
Valori di registro infetti:
(Nessun elemento malevolo rilevato)
Elementi dato del registro infetti:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken.
Cartelle infette:
(Nessun elemento malevolo rilevato)
File infetti:
(Nessun elemento malevolo rilevato)
---Lop S&D--- --------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft Windows XP Professional ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Processore Intel Pentium III Xeon )
BIOS : Ver 1.00PARTTBL
USER : Ilenia7 ( Administrator )
BOOT : Normal boot
Antivirus : McAfee VirusScan (Activated)
Firewall : McAfee Personal Firewall (Activated)
C:\ (Local Disk) - NTFS - Total:144 Go (Free:131 Go)
D:\ (Local Disk) - NTFS - Total:144 Go (Free:143 Go)
E:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 30/03/2009|14.51 )
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ FIX
Deleted! - C:\DOCUME~1\Ilenia7\IMPOST~1\Temp\nsrCC.tmp
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing folders in DATIAP~1
[30/03/2009|03.57] C:\DOCUME~1\ADMINI~1\DATIAP~1\Identities
[30/03/2009|03.57] C:\DOCUME~1\ADMINI~1\DATIAP~1\Microsoft
[18/07/2008|11.00] C:\DOCUME~1\ADMINI~1\DATIAP~1\SiteAdvisor
[0|File] C:\DOCUME~1\ADMINI~1\DATIAP~1\byte
[5|Directory] C:\DOCUME~1\ADMINI~1\DATIAP~1\byte disponibili
[29/03/2009|20.12] C:\DOCUME~1\ALLUSE~1\DATIAP~1\~0
[30/03/2009|03.58] C:\DOCUME~1\ALLUSE~1\DATIAP~1\Adobe
[29/03/2009|19.42] C:\DOCUME~1\ALLUSE~1\DATIAP~1\ATI
[29/03/2009|19.40] C:\DOCUME~1\ALLUSE~1\DATIAP~1\Corel
[29/03/2009|19.37] C:\DOCUME~1\ALLUSE~1\DATIAP~1\eSobi
[30/03/2009|14.31] C:\DOCUME~1\ALLUSE~1\DATIAP~1\Malwarebytes
[30/03/2009|03.58] C:\DOCUME~1\ALLUSE~1\DATIAP~1\McAfee
[29/03/2009|20.08] C:\DOCUME~1\ALLUSE~1\DATIAP~1\Messenger Plus!
[29/03/2009|20.05] C:\DOCUME~1\ALLUSE~1\DATIAP~1\Microsoft
[29/03/2009|20.11] C:\DOCUME~1\ALLUSE~1\DATIAP~1\Microsoft Help
[30/03/2009|03.58] C:\DOCUME~1\ALLUSE~1\DATIAP~1\SiteAdvisor
[30/03/2009|14.15] C:\DOCUME~1\ALLUSE~1\DATIAP~1\Spybot - Search & Destroy
[0|File] C:\DOCUME~1\ALLUSE~1\DATIAP~1\byte
[14|Directory] C:\DOCUME~1\ALLUSE~1\DATIAP~1\byte disponibili
[30/03/2009|03.57] C:\DOCUME~1\DEFAUL~1\DATIAP~1\Identities
[30/03/2009|03.57] C:\DOCUME~1\DEFAUL~1\DATIAP~1\Microsoft
[18/07/2008|11.00] C:\DOCUME~1\DEFAUL~1\DATIAP~1\SiteAdvisor
[0|File] C:\DOCUME~1\DEFAUL~1\DATIAP~1\byte
[5|Directory] C:\DOCUME~1\DEFAUL~1\DATIAP~1\byte disponibili
[30/03/2009|13.56] C:\DOCUME~1\Ilenia7\DATIAP~1\.clamwin
[29/03/2009|19.28] C:\DOCUME~1\Ilenia7\DATIAP~1\Adobe
[29/03/2009|19.42] C:\DOCUME~1\Ilenia7\DATIAP~1\ATI
[30/03/2009|03.57] C:\DOCUME~1\Ilenia7\DATIAP~1\Identities
[29/03/2009|19.31] C:\DOCUME~1\Ilenia7\DATIAP~1\InstallShield
[29/03/2009|19.34] C:\DOCUME~1\Ilenia7\DATIAP~1\Macromedia
[30/03/2009|14.31] C:\DOCUME~1\Ilenia7\DATIAP~1\Malwarebytes
[29/03/2009|20.24] C:\DOCUME~1\Ilenia7\DATIAP~1\Microsoft
[30/03/2009|11.37] C:\DOCUME~1\Ilenia7\DATIAP~1\SiteAdvisor
[29/03/2009|19.51] C:\DOCUME~1\Ilenia7\DATIAP~1\Yahoo!
[0|File] C:\DOCUME~1\Ilenia7\DATIAP~1\byte
[12|Directory] C:\DOCUME~1\Ilenia7\DATIAP~1\byte disponibili
[30/03/2009|03.58] C:\DOCUME~1\LOCALS~1\DATIAP~1\Microsoft
[18/07/2008|11.01] C:\DOCUME~1\LOCALS~1\DATIAP~1\SiteAdvisor
[0|File] C:\DOCUME~1\LOCALS~1\DATIAP~1\byte
[4|Directory] C:\DOCUME~1\LOCALS~1\DATIAP~1\byte disponibili
[30/03/2009|03.58] C:\DOCUME~1\NETWOR~1\DATIAP~1\Microsoft
[18/07/2008|11.16] C:\DOCUME~1\NETWOR~1\DATIAP~1\SiteAdvisor
[0|File] C:\DOCUME~1\NETWOR~1\DATIAP~1\byte
[4|Directory] C:\DOCUME~1\NETWOR~1\DATIAP~1\byte disponibili
--------------------\\ Scheduled Tasks located in C:\WINDOWS\Tasks
[30/03/2009 14.12][--ah-----] C:\WINDOWS\tasks\SA.DAT
[18/07/2008 11.00][--a------] C:\WINDOWS\tasks\McDefragTask.job
[18/07/2008 11.00][--a------] C:\WINDOWS\tasks\McQcTask.job
[14/04/2008 06.00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing Folders in C:\Programmi
[29/03/2009|19.44] C:\Programmi\Acer Inc
[29/03/2009|19.34] C:\Programmi\Acer Incorporated
[30/03/2009|04.07] C:\Programmi\Adobe
[29/03/2009|19.28] C:\Programmi\ATI Technologies
[30/03/2009|04.08] C:\Programmi\Broadcom
[30/03/2009|14.05] C:\Programmi\CCleaner
[30/03/2009|13.56] C:\Programmi\ClamWin
[08/07/2008|23.13] C:\Programmi\ComPlus Applications
[29/03/2009|19.21] C:\Programmi\CONEXANT
[29/03/2009|19.38] C:\Programmi\COREL
[29/03/2009|19.37] C:\Programmi\eSobi
[29/03/2009|20.11] C:\Programmi\File comuni
[29/03/2009|19.38] C:\Programmi\InstallShield Installation Information
[30/03/2009|04.09] C:\Programmi\Intel
[29/03/2009|21.43] C:\Programmi\Internet Explorer
[29/03/2009|19.39] C:\Programmi\InterVideo
[29/03/2009|19.40] C:\Programmi\Launch Manager
[30/03/2009|14.31] C:\Programmi\Malwarebytes' Anti-Malware
[29/03/2009|20.20] C:\Programmi\McAfee
[30/03/2009|04.09] C:\Programmi\McAfee.com
[30/03/2009|04.09] C:\Programmi\Messenger
[29/03/2009|20.07] C:\Programmi\Messenger Plus! Live
[29/03/2009|20.06] C:\Programmi\Microsoft
[30/03/2009|04.09] C:\Programmi\microsoft frontpage
[29/03/2009|20.11] C:\Programmi\Microsoft Office
[30/03/2009|04.10] C:\Programmi\Microsoft SQL Server
[29/03/2009|20.06] C:\Programmi\Microsoft Sync Framework
[30/03/2009|04.11] C:\Programmi\Microsoft.NET
[30/03/2009|04.11] C:\Programmi\Movie Maker
[08/07/2008|23.12] C:\Programmi\MSN Gaming Zone
[30/03/2009|04.11] C:\Programmi\NetMeeting
[30/03/2009|04.11] C:\Programmi\NewTech Infosystems
[30/03/2009|04.11] C:\Programmi\O2Micro Flash Memory Card Driver
[30/03/2009|04.11] C:\Programmi\Outlook Express
[29/03/2009|19.32] C:\Programmi\Realtek
[30/03/2009|04.11] C:\Programmi\Servizi in linea
[30/03/2009|04.11] C:\Programmi\SiteAdvisor
[30/03/2009|14.15] C:\Programmi\Spybot - Search & Destroy
[29/03/2009|19.32] C:\Programmi\Synaptics
[30/03/2009|13.51] C:\Programmi\Trend Micro
[08/07/2008|23.18] C:\Programmi\Uninstall Information
[29/03/2009|19.29] C:\Programmi\WIDCOMM
[29/03/2009|20.06] C:\Programmi\Windows Live
[29/03/2009|20.05] C:\Programmi\Windows Live SkyDrive
[30/03/2009|04.11] C:\Programmi\Windows Media Player
[30/03/2009|04.11] C:\Programmi\Windows NT
[08/07/2008|23.14] C:\Programmi\WindowsUpdate
[30/03/2009|04.11] C:\Programmi\xerox
[29/03/2009|20.15] C:\Programmi\Yahoo!
[0|File] C:\Programmi\byte
[51|Directory] C:\Programmi\byte disponibili
--------------------\\ Listing Folders in C:\Programmi\File comuni
[30/03/2009|04.08] C:\Programmi\File comuni\Adobe
[29/03/2009|19.36] C:\Programmi\File comuni\InstallShield
[29/03/2009|19.39] C:\Programmi\File comuni\InterVideo
[30/03/2009|04.08] C:\Programmi\File comuni\LightScribe
[30/03/2009|04.08] C:\Programmi\File comuni\McAfee
[29/03/2009|20.14] C:\Programmi\File comuni\Microsoft Shared
[30/03/2009|04.08] C:\Programmi\File comuni\MSSoap
[18/07/2008|10.49] C:\Programmi\File comuni\muvee Technologies
[30/03/2009|04.08] C:\Programmi\File comuni\ODBC
[29/03/2009|19.39] C:\Programmi\File comuni\Protexis
[30/03/2009|04.08] C:\Programmi\File comuni\Services
[29/03/2009|19.32] C:\Programmi\File comuni\snp2uvc
[30/03/2009|04.08] C:\Programmi\File comuni\SpeechEngines
[29/03/2009|20.13] C:\Programmi\File comuni\System
[29/03/2009|20.01] C:\Programmi\File comuni\Windows Live
[0|File] C:\Programmi\File comuni\byte
[17|Directory] C:\Programmi\File comuni\byte disponibili
--------------------\\ Process
( 58 Processes )
... OK !
--------------------\\ Searching with S_Lop
No Lop folder found !
--------------------\\ Searching for Lop Files - Folders
No Lop folder found !
--------------------\\ Searching within the Registry
..... OK !
--------------------\\ Checking the Hosts file
Hosts file CLEAN
--------------------\\ Searching for hidden files with Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.net Rootkit scan 2009-03-30 14:53:46
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------\\ Searching for other infections
No other infections found !
[F:5][D:20]-> C:\DOCUME~1\Ilenia7\IMPOST~1\Temp
[F:54][D:0]-> C:\DOCUME~1\Ilenia7\Cookies
[F:4583][D:8]-> C:\DOCUME~1\Ilenia7\IMPOST~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 30/03/2009|14.54 - Option : [2]
--------------------\\ Scan completed at 14.54.23
---hijackthis---Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14.55.33, on 30/03/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmi\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Programmi\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe
C:\Programmi\McAfee.com\Agent\mcagent.exe
C:\Programmi\SiteAdvisor\6172\SiteAdv.exe
C:\Programmi\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\PLFSetI.exe
C:\Programmi\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\Program Files\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
C:\PROGRA~1\LAUNCH~1\LManager.exe
C:\Programmi\ClamWin\bin\ClamTray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Acer\Empowering Technology\Framework.Launcher.exe
C:\Programmi\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Programmi\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Programmi\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
C:\Programmi\File comuni\InterVideo\RegMgr\iviRegMgr.exe
C:\Programmi\File comuni\LightScribe\LSSrvc.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
c:\PROGRA~1\FILECO~1\mcafee\mna\mcnasvc.exe
c:\PROGRA~1\FILECO~1\mcafee\mcproxy\mcproxy.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
C:\Programmi\McAfee\MPF\MPFSrv.exe
C:\Programmi\McAfee\MSK\MskSrver.exe
C:\Programmi\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
C:\Programmi\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
C:\Programmi\O2Micro Flash Memory Card Driver\o2flash.exe
C:\Programmi\File comuni\Protexis\License Service\PsiService_2.exe
C:\Programmi\SiteAdvisor\6172\SAService.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
C:\Programmi\Spybot - Search & Destroy\TeaTimer.exe
C:\Programmi\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.google.it/R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://it.intl.acer.yahoo.comR0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://it.intl.acer.yahoo.comR0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext =
http://global.acer.com/R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer fornito da Yahoo!
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {089FD14D-132B-48FC-8861-0048AE113215} - C:\Programmi\SiteAdvisor\6172\SiteAdv.dll
O2 - BHO: McAntiPhishingBHO - {377C180E-6F0E-4D4C-980F-F45BD3D40CF4} - c:\PROGRA~1\mcafee\msk\mcapbho.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Programmi\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Programmi\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Programmi\McAfee\VirusScan\scriptsn.dll
O2 - BHO: Guida per l'accesso a Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programmi\File comuni\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Programmi\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: McAfee SiteAdvisor - {0BF43445-2F28-4351-9252-17FE6E806AA0} - C:\Programmi\SiteAdvisor\6172\SiteAdv.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\WINDOWS\system32\eDStoolbar.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Programmi\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [preload] C:\Windows\RUNXMLPL.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Programmi\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [BkupTray] "C:\Programmi\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe"
O4 - HKLM\..\Run: [mcagent_exe] C:\Programmi\McAfee.com\Agent\mcagent.exe /runkey
O4 - HKLM\..\Run: [SiteAdvisor] C:\Programmi\SiteAdvisor\6172\SiteAdv.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [StartCCC] "C:\Programmi\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [PLFSetI] C:\WINDOWS\PLFSetI.exe
O4 - HKLM\..\Run: [PLFSetL] C:\WINDOWS\PLFSetL.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Programmi\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [AzMixerSel] C:\Programmi\Realtek\Audio\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe /idle
O4 - HKLM\..\Run: [ePower_DMC] C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [Boot] C:\Program Files\Acer\Empowering Technology\ePower\Boot.exe
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Program Files\Acer\Empowering Technology\eDataSecurity\eDSloader.exe 0
O4 - HKLM\..\Run: [eRecoveryService] C:\Program Files\Acer\Empowering Technology\eRecovery\eRAgent.exe
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
O4 - HKLM\..\Run: [ClamWin] "C:\Programmi\ClamWin\bin\ClamTray.exe" --logon
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Programmi\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Programmi\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Programmi\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO DI RETE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Acer Empowering Technology.lnk = ?
O4 - Global Startup: BTTray.lnk = ?
O8 - Extra context menu item: Invia a periferica &Bluetooth... - C:\Programmi\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programmi\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programmi\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Programmi\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Programmi\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://it.yahoo.com/?fr=fp-yie8
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Programmi\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: NTI Backup Now 5 Agent Service (BUNAgentSvc) - NewTech Infosystems, Inc. - C:\Programmi\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programmi\File comuni\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: IviRegMgr - InterVideo - C:\Programmi\File comuni\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Programmi\File comuni\LightScribe\LSSrvc.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\PROGRA~1\FILECO~1\mcafee\mna\mcnasvc.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\FILECO~1\mcafee\mcproxy\mcproxy.exe
O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Programmi\McAfee\MPF\MPFSrv.exe
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Programmi\McAfee\MSK\MskSrver.exe
O23 - Service: SQL Server (MSSMLBIZ) (MSSQL$MSSMLBIZ) - Unknown owner - C:\Programmi\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe (file missing)
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Programmi\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - Unknown owner - C:\Programmi\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: O2Micro Flash Memory Card Service (o2flash) - O2Micro International - C:\Programmi\O2Micro Flash Memory Card Driver\o2flash.exe
O23 - Service: Microsoft Office Diagnostics Service (odserv) - Unknown owner - C:\Programmi\File comuni\Microsoft Shared\OFFICE12\ODSERV.EXE (file missing)
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Programmi\File comuni\Protexis\License Service\PsiService_2.exe
O23 - Service: Servizio SiteAdvisor (SiteAdvisor Service) - Unknown owner - C:\Programmi\SiteAdvisor\6172\SAService.exe
--
End of file - 11263 bytes
