OTL logfile created on: 06/06/2012 13.02.13 - Run 
OTLPE by OldTimer - Version 3.1.48.0     Folder = D:\PROGRAMS\OTLPE
Microsoft Windows XP Service Pack 2 (Version = 5.1.2600) - Type = SYSTEM
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000410 | Country: Italia | Language: ITA | Date Format: dd/MM/yyyy
 
1.023,00 Mb Total Physical Memory | 803,00 Mb Available Physical Memory | 78,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 97,00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programmi
Drive C: | 152,66 Gb Total Space | 83,09 Gb Free Space | 54,43% Space Free | Partition Type: NTFS
Drive D: | 284,12 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive E: | 1,89 Gb Total Space | 1,47 Gb Free Space | 77,69% Space Free | Partition Type: FAT
 
Computer Name: UTENTE-SSR3JKXG | User Name: Administrator
Boot Mode: SafeMode | Scan Mode: All users | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
Using ControlSet: ControlSet002
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - File not found [Auto] --  -- (cbrwlcl)
SRV - [2012/04/28 10.40.48 | 000,644,392 | ---- | M] (Anvisoft) [Auto] -- C:\Programmi\Anvisoft\Anvi Smart Defender\ASDSrv.exe -- (asdsrv)
SRV - [2011/09/29 10.54.11 | 000,068,096 | ---- | M] () [On_Demand] -- C:\Programmi\File comuni\Macromedia Shared\Service\Macromedia Licensing.exe -- (Macromedia Licensing Service)
SRV - [2011/04/17 02.45.11 | 000,130,008 | R--- | M] (Symantec Corporation) [Auto] -- C:\Programmi\Norton AntiVirus\Engine\18.7.1.3\ccSvcHst.exe -- (NAV)
SRV - [2010/01/15 14.49.20 | 000,227,232 | ---- | M] (McAfee, Inc.) [On_Demand] -- C:\Programmi\McAfee Security Scan\2.0.181\McCHSvc.exe -- (McComponentHostService)
SRV - [2007/09/07 11.40.04 | 001,373,480 | ---- | M] (Wacom Technology, Corp.) [Auto] -- C:\WINDOWS\system32\Wacom_Tablet.exe -- (TabletServiceWacom)
SRV - [2007/06/15 16.55.00 | 000,300,544 | ---- | M] (Nokia.) [On_Demand] -- C:\Programmi\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2005/04/04 00.41.10 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand] -- C:\Programmi\File comuni\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT)
SRV - [2003/04/18 18.06.26 | 000,008,192 | ---- | M] () [Auto] -- C:\Programmi\Telecom Italia\WanMiniport1st\srvany.exe -- (Network WanMiniport First Position)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | On_Demand] --  -- (ZTEusbser6k)
DRV - File not found [Kernel | On_Demand] --  -- (ZTEusbnmea)
DRV - File not found [Kernel | On_Demand] --  -- (WDICA)
DRV - File not found [Kernel | On_Demand] --  -- (PSSdk23)
DRV - File not found [Kernel | On_Demand] --  -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand] --  -- (PDRELI)
DRV - File not found [Kernel | On_Demand] --  -- (PDFRAME)
DRV - File not found [Kernel | On_Demand] --  -- (PDCOMP)
DRV - File not found [Kernel | System] --  -- (PCIDump)
DRV - File not found [Kernel | On_Demand] --  -- (FXDRV)
DRV - [2012/04/27 11.28.26 | 000,023,848 | ---- | M] (Anvisoft) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\avhips.sys -- (avhips)
DRV - [2012/04/27 11.28.24 | 000,017,704 | ---- | M] (Anvisoft) [File_System | System] -- C:\WINDOWS\system32\drivers\avfsmn.sys -- (avfsmn)
DRV - [2012/03/06 17.04.10 | 000,356,280 | ---- | M] (Symantec Corporation) [Kernel | On_Demand] -- C:\Documents and Settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.5.0.125\Definitions\IPSDefs\20120320.002\IDSXpx86.sys -- (IDSxpx86)
DRV - [2012/03/02 20.58.02 | 000,820,856 | ---- | M] (Symantec Corporation) [Kernel | System] -- C:\Documents and Settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.5.0.125\Definitions\BASHDefs\20120317.002\BHDrvx86.sys -- (BHDrvx86)
DRV - [2012/02/04 15.27.25 | 000,374,392 | ---- | M] (Symantec Corporation) [Kernel | System] -- C:\Programmi\File comuni\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2012/02/04 15.27.25 | 000,106,104 | ---- | M] (Symantec Corporation) [Kernel | On_Demand] -- C:\Programmi\File comuni\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2012/01/26 22.35.08 | 001,576,312 | ---- | M] (Symantec Corporation) [Kernel | On_Demand] -- C:\Documents and Settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.5.0.125\Definitions\VirusDefs\20120320.034\NAVEX15.SYS -- (NAVEX15)
DRV - [2012/01/26 22.35.08 | 000,086,136 | ---- | M] (Symantec Corporation) [Kernel | On_Demand] -- C:\Documents and Settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.5.0.125\Definitions\VirusDefs\20120320.034\NAVENG.SYS -- (NAVENG)
DRV - [2011/05/11 15.36.50 | 000,126,584 | ---- | M] (Symantec Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2011/04/21 03.37.49 | 000,369,784 | ---- | M] (Symantec Corporation) [Kernel | System] -- C:\WINDOWS\System32\Drivers\NAV\1207010.003\SYMTDI.SYS -- (SYMTDI)
DRV - [2011/04/15 15.08.06 | 000,040,840 | ---- | M] () [Kernel | System] -- C:\WINDOWS\system32\drivers\termdd.sys -- (TermDD)
DRV - [2011/03/31 05.00.09 | 000,516,216 | ---- | M] (Symantec Corporation) [File_System | On_Demand] -- C:\WINDOWS\System32\Drivers\NAV\1207010.003\SRTSP.SYS -- (SRTSP)
DRV - [2011/03/31 05.00.09 | 000,050,168 | ---- | M] (Symantec Corporation) [Kernel | System] -- C:\WINDOWS\system32\drivers\NAV\1207010.003\SRTSPX.SYS -- (SRTSPX) Symantec Real Time Storage Protection (PEL)
DRV - [2011/03/15 04.31.23 | 000,744,568 | ---- | M] (Symantec Corporation) [File_System | Boot] -- C:\WINDOWS\system32\drivers\NAV\1207010.003\symefa.sys -- (SymEFA)
DRV - [2011/01/27 08.47.10 | 000,340,088 | ---- | M] (Symantec Corporation) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\NAV\1207010.003\symds.sys -- (SymDS)
DRV - [2011/01/27 07.07.05 | 000,136,312 | ---- | M] (Symantec Corporation) [Kernel | System] -- C:\WINDOWS\system32\drivers\NAV\1207010.003\Ironx86.SYS -- (SymIRON)
DRV - [2009/10/19 10.55.40 | 000,021,248 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand] -- C:\Programmi\Common Files\Motive\MREMP50.sys -- (MREMP50)
DRV - [2009/10/19 10.55.40 | 000,020,096 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand] -- C:\Programmi\Common Files\Motive\MRESP50.sys -- (MRESP50)
DRV - [2008/07/14 18.15.32 | 000,029,696 | ---- | M] (Service & Quality Technology.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\capt913d.sys -- (SQTECH913D)
DRV - [2008/04/09 17.29.14 | 000,290,816 | ---- | M] (Realtek Semiconductor Corporation                           ) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\RTL8187B.sys -- (RTL8187B)
DRV - [2007/09/26 10.11.00 | 000,013,532 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\SjyPkt.sys -- (SjyPkt)
DRV - [2007/02/22 11.15.56 | 000,137,216 | ---- | M] (Nokia) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\nmwcd.sys -- (nmwcd)
DRV - [2007/02/22 11.15.14 | 000,012,288 | ---- | M] (Nokia) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\nmwcdcm.sys -- (nmwcdcm)
DRV - [2007/02/22 11.15.14 | 000,012,288 | ---- | M] (Nokia) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\nmwcdcj.sys -- (nmwcdcj)
DRV - [2007/02/22 11.15.14 | 000,008,320 | ---- | M] (Nokia) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\nmwcdc.sys -- (nmwcdc)
DRV - [2007/02/16 11.12.36 | 000,011,312 | ---- | M] (Wacom Technology) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\wacommousefilter.sys -- (wacommousefilter)
DRV - [2007/02/16 10.30.12 | 000,012,848 | ---- | M] (Wacom Technology) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\wacomvhid.sys -- (wacomvhid)
DRV - [2007/02/15 16.11.28 | 000,011,440 | ---- | M] (Wacom Technology) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\WacomVKHid.sys -- (WacomVKHid)
DRV - [2006/02/21 21.46.26 | 001,505,792 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2005/05/27 10.31.28 | 000,022,016 | ---- | M] (Logitech Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LVUSBSta.sys -- (LVUSBSta)
DRV - [2005/05/24 16.00.46 | 000,087,424 | R--- | M] (MCCI) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\w800mdm.sys -- (w800mdm)
DRV - [2005/05/24 16.00.44 | 000,006,096 | R--- | M] (MCCI) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\w800mdfl.sys -- (w800mdfl)
DRV - [2005/05/24 16.00.37 | 000,052,384 | R--- | M] (MCCI) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\w800bus.sys -- (w800bus) Sony Ericsson W800 driver (WDM)
DRV - [2005/02/24 14.35.06 | 000,015,232 | R--- | M] (Micronas GmbH) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\uac4pdt.sys -- (uac4pdt)
DRV - [2005/01/31 12.20.04 | 000,211,712 | ---- | M] (Logitech Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\lv561av.sys -- (PID_0928) Logitech QuickCam Express(PID_0928)
DRV - [2004/11/22 18.36.40 | 000,018,003 | ---- | M] (Motive, Inc.) [Kernel | On_Demand] -- C:\Programmi\Common Files\Motive\mrendis5.sys -- (MRENDIS5)
DRV - [2004/11/22 18.36.34 | 000,019,345 | ---- | M] (Motive, Inc.) [Kernel | On_Demand] -- C:\Programmi\Common Files\Motive\MREMPR5.sys -- (MREMPR5)
DRV - [2004/08/04 08.00.12 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\WINDOWS\System32\drivers\changer.sys -- (Changer)
DRV - [2004/08/04 07.59.32 | 000,034,688 | ---- | M] (Toshiba Corp.) [Kernel | System] -- C:\WINDOWS\System32\drivers\lbrtfdc.sys -- (lbrtfdc)
DRV - [2004/08/04 07.31.32 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\rtl8139.sys -- (rtl8139)
DRV - [2003/08/21 10.31.52 | 000,462,940 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2003/08/14 17.16.38 | 000,404,736 | R--- | M] (Sensaura Ltd) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ALCXSENS.SYS -- (ALCXSENS)
DRV - [2003/06/13 18.22.08 | 000,049,664 | ---- | M] (Conexant) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\cnxtrusb.sys -- (CnxTrUsb)
DRV - [2003/06/13 18.22.08 | 000,025,984 | ---- | M] (Conexant) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\cnxtrlan.sys -- (CnxTrLan)
DRV - [2001/09/18 13.00.00 | 000,167,816 | ---- | M] (OmniVision Technologies, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\omcamvid.sys -- (OVT511Plus)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/avcenter/fix_homepage
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/avcenter/fix_homepage
IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Programmi\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Programmi\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Motive.com/NpMotive,version=1.0: C:\Programmi\Common Files\Motive\npMotive.dll (Motive, Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Programmi\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Programmi\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\Documents and Settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.5.0.125\IPSFFPlgn\ [2012/02/11 13.18.38 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.10\extensions\\Components: C:\Programmi\Mozilla Firefox\components [2010/09/29 19.54.24 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.10\extensions\\Plugins: C:\Programmi\Mozilla Firefox\plugins [2011/08/25 19.07.44 | 000,000,000 | ---D | M]
 
[2011/08/26 11.12.24 | 000,000,000 | ---D | M] (No name found) -- C:\Programmi\Mozilla Firefox\extensions
[2011/08/25 19.07.48 | 000,000,000 | ---D | M] (Java Console) -- C:\Programmi\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2011/08/25 19.07.25 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Programmi\mozilla firefox\plugins\npdeployJava1.dll
[2009/07/22 19.17.16 | 000,001,412 | ---- | M] () -- C:\Programmi\mozilla firefox\searchplugins\demauro.xml
[2010/09/11 13.45.31 | 000,000,744 | ---- | M] () -- C:\Programmi\mozilla firefox\searchplugins\eBay-it.xml
[2010/09/11 13.45.32 | 000,000,825 | ---- | M] () -- C:\Programmi\mozilla firefox\searchplugins\hoepli.xml
[2010/09/11 13.45.32 | 000,001,182 | ---- | M] () -- C:\Programmi\mozilla firefox\searchplugins\wikipedia-it.xml
[2010/09/11 13.45.32 | 000,000,953 | ---- | M] () -- C:\Programmi\mozilla firefox\searchplugins\yahoo-it.xml
 
O1 HOSTS File: ([2011/03/19 22.26.45 | 000,000,736 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Programmi\Norton AntiVirus\Engine\18.7.1.3\ips\ipsbho.dll (Symantec Corporation)
O2 - BHO: (CNavExtBho Class) - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} -  File not found
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programmi\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Protection Bar) - {F06E2ABE-3A50-4079-BE25-FC100D9EAA25} -  File not found
O4 - HKLM..\Run: [Adobe ARM] C:\Programmi\File comuni\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AliceRE_McciTrayApp] C:\Programmi\Alice ti aiuta\vendors\AliceRE\content\template\driven_dev\syncer\McciTrayApp.exe (Motive Communications, Inc.)
O4 - HKLM..\Run: [Anvi Smart Defender] C:\Programmi\Anvisoft\Anvi Smart Defender\ASDTray.exe (Anvisoft)
O4 - HKLM..\Run: [ControlCenter3] C:\Programmi\Brother\ControlCenter3\brctrcen.exe (Brother Industries, Ltd.)
O4 - HKLM..\Run: [dlxVLNiTSbbfN8U]  File not found
O4 - HKLM..\Run: [DWQueuedReporting] C:\Programmi\File comuni\Microsoft Shared\DW\DWTRIG20.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [KernelFaultCheck]  File not found
O4 - HKLM..\Run: [KRAUN USB HANDSET] C:\Programmi\KRAUN USB HANDSET\KRAUN USB HANDSET.exe (KURAN)
O4 - HKLM..\Run: [KRAUN USB HANDSETUI] C:\Programmi\KRAUN USB HANDSET\KraunUsbHandsetUi.exe (KRAUN)
O4 - HKLM..\Run: [LogitechVideoRepair] C:\Programmi\Logitech\Video\ISStart.exe (Logitech Inc.)
O4 - HKLM..\Run: [LogitechVideoTray] C:\Programmi\Logitech\Video\LogiTray.exe (Logitech Inc.)
O4 - HKLM..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE (Logitech Inc.)
O4 - HKLM..\Run: [Malwarebytes Anti-Malware (reboot)] C:\Programmi\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [Motive SmartBridge] C:\Programmi\Alice ti aiuta\SmartBridge\MotiveSB.exe (Motive Communications, Inc.)
O4 - HKLM..\Run: [PCSuiteTrayApplication] C:\Programmi\Nokia\Nokia PC Suite 6\LaunchApplication.exe (Nokia)
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SSBkgdUpdate] C:\Programmi\File comuni\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe (Scansoft, Inc.)
O4 - HKLM..\Run: [start_cablecom volumecounter]  File not found
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Programmi\File comuni\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKU\.DEFAULT..\Run: [dlxVLNiTSbbfN8U]  File not found
O4 - HKU\.DEFAULT..\Run: [Nokia.PCSync] C:\Programmi\Nokia\Nokia PC Suite 6\PcSync2.exe (Time Information Services Ltd.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\Adobe Gamma Loader.lnk = C:\Programmi\File comuni\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\Alice ti aiuta.lnk = C:\Programmi\Alice ti aiuta\bin\matcli.exe (Motive Communications, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\McAfee Security Scan Plus.lnk = C:\Programmi\McAfee Security Scan\2.0.181\SSScheduler.exe (McAfee, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\Microsoft Office.lnk = C:\Programmi\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\Pannello controllo Alice Wi-Fi TG123g.lnk = C:\Programmi\Alice Wi-Fi TG123g\WlanCU.exe ()
O4 - Startup: C:\Documents and Settings\user\Menu Avvio\Programmi\Esecuzione automatica\OpenOffice.org 3.3.lnk = C:\Programmi\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)
O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} http://download.microsoft.com/download/F/6/E/F6E491A6-77E1-4E20-9F5F-94901338C922/wmv9VCM.CAB (Reg Error: Key error.)
O16 - DPF: {33564D57-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/D/0/D/D0DD87DA-994F-4334-8B55-AF2E4D98ED0C/wmv9dmo.cab (Reg Error: Key error.)
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {8FD68625-2346-418A-8899-67CB36B1917F} http://aiuto.alice.it/ata/static/installers/McciControlInstaller_6.6.cab (McciSM Class)
O16 - DPF: {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_09-windows-i586.cab (Java Plug-in 1.5.0_09)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: DirectAnimation Java Classes file://C:\WINDOWS\Java\classes\dajava.cab (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (C:\Windows\explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Documents and Settings\user\Dati applicazioni\Apple_Store.exe) -  File not found
O20 - HKU\.DEFAULT Winlogon: UserInit - (\Apple_Store.exe) -  File not found
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O31 - SafeBoot: UseAlternatShell - 1
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2005/10/01 13.25.19 | 000,000,034 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2006/03/24 13.06.41 | 000,000,053 | R--- | M] () - D:\AUTORUN.INF -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2012/06/06 12.56.38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\TEMP.UTENTE-SSR3JKXG\Menu Avvio\Programmi\OmniVision
[2012/06/06 12.55.37 | 000,000,000 | --SD | C] -- C:\Documents and Settings\TEMP.UTENTE-SSR3JKXG\Dati applicazioni\Microsoft
[2012/06/06 12.55.37 | 000,000,000 | --SD | C] -- C:\Documents and Settings\TEMP.UTENTE-SSR3JKXG\Cookies
[2012/06/06 12.55.37 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\TEMP.UTENTE-SSR3JKXG\Dati applicazioni
[2012/06/06 12.55.37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\TEMP.UTENTE-SSR3JKXG\Desktop
[2012/06/06 12.55.36 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\TEMP.UTENTE-SSR3JKXG\SendTo
[2012/06/06 12.55.36 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\TEMP.UTENTE-SSR3JKXG\Impostazioni locali
[2012/06/06 12.55.36 | 000,000,000 | R--D | C] -- C:\Documents and Settings\TEMP.UTENTE-SSR3JKXG\Menu Avvio
[2012/06/06 12.55.36 | 000,000,000 | R--D | C] -- C:\Documents and Settings\TEMP.UTENTE-SSR3JKXG\Menu Avvio\Programmi\Esecuzione automatica
[2012/06/06 12.55.36 | 000,000,000 | R--D | C] -- C:\Documents and Settings\TEMP.UTENTE-SSR3JKXG\Menu Avvio\Programmi\Accessori
[2012/06/06 12.55.36 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\TEMP.UTENTE-SSR3JKXG\Risorse di stampa
[2012/06/06 12.55.36 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\TEMP.UTENTE-SSR3JKXG\Risorse di rete
[2012/06/06 12.55.36 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\TEMP.UTENTE-SSR3JKXG\Recent
[2012/06/06 12.55.36 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\TEMP.UTENTE-SSR3JKXG\Modelli
[2012/06/06 12.55.36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\TEMP.UTENTE-SSR3JKXG\Preferiti
[2012/06/06 12.55.36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\TEMP.UTENTE-SSR3JKXG\Documenti
[2012/06/05 11.53.13 | 010,063,000 | ---- | C] (Malwarebytes Corporation                                    ) -- C:\mal.exe
[2012/06/05 11.37.41 | 000,000,000 | ---D | C] -- C:\FRST
[2012/06/05 10.59.03 | 000,023,848 | ---- | C] (Anvisoft) -- C:\WINDOWS\System32\drivers\avhips.sys
[2012/06/05 10.59.03 | 000,017,704 | ---- | C] (Anvisoft) -- C:\WINDOWS\System32\drivers\avfsmn.sys
[2012/06/05 10.32.51 | 000,000,000 | ---D | C] -- C:\Programmi\Anvisoft
[2012/06/02 17.31.15 | 000,235,008 | ---- | C] (tfytfyffytf) -- C:\Apple_Store.exe.vir
[2007/06/22 15.54.02 | 004,066,632 | ---- | C] (InstallAWARE Software Corporation) -- C:\Programmi\volumecounter_en.exe
[2007/02/28 15.33.30 | 036,808,256 | ---- | C] (Apple Computer, Inc.) -- C:\Programmi\iTunesSetup.exe
[2006/10/25 10.55.19 | 023,640,104 | ---- | C] (Skype Technologies S.A.) -- C:\Programmi\SkypeSetup.exe
[2006/09/21 13.39.40 | 014,405,024 | ---- | C] (Macrovision Corporation) -- C:\Programmi\GoogleEarthWin.exe
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\drivers\*.tmp files -> C:\WINDOWS\System32\drivers\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2012/06/06 12.54.40 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012/06/05 11.31.52 | 000,000,260 | ---- | M] () -- C:\WINDOWS\tasks\WGASetup.job
[2012/06/05 11.30.34 | 000,001,126 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2012/06/05 11.19.10 | 000,001,130 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2012/06/05 08.33.04 | 000,869,000 | ---- | M] () -- C:\FRST.exe
[2012/06/04 23.03.00 | 000,245,512 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012/06/04 10.40.43 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012/06/02 17.14.48 | 000,235,008 | ---- | M] (tfytfyffytf) -- C:\Apple_Store.exe.vir
[2012/05/31 13.50.00 | 000,000,276 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2012/05/10 08.04.46 | 010,063,000 | ---- | M] (Malwarebytes Corporation                                    ) -- C:\mal.exe
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\drivers\*.tmp files -> C:\WINDOWS\System32\drivers\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2012/06/06 12.55.37 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\TEMP.UTENTE-SSR3JKXG\Menu Avvio\Programmi\Assistenza remota.lnk
[2012/06/06 12.55.37 | 000,000,772 | ---- | C] () -- C:\Documents and Settings\TEMP.UTENTE-SSR3JKXG\Menu Avvio\Programmi\Windows Media Player.lnk
[2012/06/05 11.53.02 | 000,869,000 | ---- | C] () -- C:\FRST.exe
[2011/04/15 01.11.32 | 000,000,378 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI
[2010/07/08 15.53.20 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010/05/05 10.16.56 | 000,000,000 | ---- | C] () -- C:\WINDOWS\WinInit.ini
[2010/05/04 15.29.18 | 000,000,050 | ---- | C] () -- C:\WINDOWS\System32\bridf08b.dat
[2010/05/03 12.51.45 | 000,006,048 | ---- | C] () -- C:\WINDOWS\System32\MCC16.dll
[2010/04/10 01.21.03 | 000,001,413 | ---- | C] () -- C:\WINDOWS\lsrslt.ini
[2008/12/29 20.59.54 | 000,000,718 | ---- | C] () -- C:\WINDOWS\DISNEY.INI
[2008/12/29 20.59.50 | 000,300,032 | ---- | C] () -- C:\WINDOWS\unin0411.exe
[2008/11/25 12.52.07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2008/10/29 15.01.28 | 000,053,248 | R--- | C] () -- C:\WINDOWS\System32\InstMed.exe
[2008/10/29 15.01.18 | 000,009,255 | ---- | C] () -- C:\WINDOWS\System32\lvcoinst.ini
[2007/10/01 11.53.59 | 000,001,099 | ---- | C] () -- C:\Programmi\ca.der
[2007/07/06 14.10.41 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2007/05/08 12.46.46 | 000,000,456 | ---- | C] () -- C:\WINDOWS\BRWMARK.INI
[2007/05/08 12.46.46 | 000,000,027 | ---- | C] () -- C:\WINDOWS\BRPP2KA.INI
[2007/05/08 12.46.45 | 000,000,030 | ---- | C] () -- C:\WINDOWS\System32\brss01a.ini
[2007/05/08 12.45.20 | 000,000,050 | ---- | C] () -- C:\WINDOWS\System32\bridf05a.dat
[2007/05/08 12.42.17 | 000,027,104 | ---- | C] () -- C:\WINDOWS\maxlink.ini
[2007/03/29 23.00.40 | 000,203,264 | R--- | C] () -- C:\WINDOWS\System32\CddbCdda.dll
[2007/03/07 16.37.02 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2007/02/26 16.24.43 | 000,000,037 | ---- | C] () -- C:\WINDOWS\iltwain.ini
[2006/12/13 21.03.28 | 000,001,755 | ---- | C] () -- C:\Documents and Settings\All Users\Dati applicazioni\QTSBandwidthCache
[2006/07/26 15.59.52 | 000,561,152 | R--- | C] () -- C:\WINDOWS\System32\hpotscl.dll
[2006/02/13 14.29.26 | 000,121,995 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2005/11/25 16.14.22 | 000,000,000 | ---- | C] () -- C:\WINDOWS\mngui.INI
[2005/10/01 13.24.59 | 000,247,296 | ---- | C] () -- C:\WINDOWS\UN160410.EXE
[2005/06/26 17.21.42 | 000,000,000 | ---- | C] () -- C:\WINDOWS\mfont.dat
[2005/06/26 17.21.30 | 000,000,035 | ---- | C] () -- C:\WINDOWS\A5W.INI
[2005/03/08 01.37.44 | 000,000,424 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2005/02/17 19.18.38 | 000,516,096 | ---- | C] () -- C:\WINDOWS\System32\ati2sgag.exe
[2005/02/17 18.35.20 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2005/02/17 18.31.25 | 000,021,840 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2005/02/17 18.30.37 | 000,040,840 | ---- | C] () -- C:\WINDOWS\System32\drivers\termdd.sys
[2005/02/17 18.22.39 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2005/02/17 18.21.49 | 000,245,512 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2002/09/09 16.06.44 | 000,001,788 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2002/09/09 15.50.28 | 000,010,752 | ---- | C] () -- C:\WINDOWS\System32\TDesigndb.dll.vir
[2002/09/09 15.50.28 | 000,010,752 | ---- | C] () -- C:\WINDOWS\System32\Scretk.dll.vir
[2002/03/25 22.02.14 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
[2002/03/04 10.16.34 | 000,110,592 | R--- | C] () -- C:\WINDOWS\System32\Jpeg32.dll
[2001/09/18 13.00.00 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\bmpproc.dll
[2001/09/18 13.00.00 | 000,032,528 | ---- | C] () -- C:\WINDOWS\amcap.exe
[2001/08/31 15.00.00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2001/08/31 15.00.00 | 000,478,808 | ---- | C] () -- C:\WINDOWS\System32\perfh010.dat
[2001/08/31 15.00.00 | 000,432,356 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2001/08/31 15.00.00 | 000,300,212 | ---- | C] () -- C:\WINDOWS\System32\perfi010.dat
[2001/08/31 15.00.00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2001/08/31 15.00.00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2001/08/31 15.00.00 | 000,079,292 | ---- | C] () -- C:\WINDOWS\System32\perfc010.dat
[2001/08/31 15.00.00 | 000,067,312 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2001/08/31 15.00.00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2001/08/31 15.00.00 | 000,034,004 | ---- | C] () -- C:\WINDOWS\System32\perfd010.dat
[2001/08/31 15.00.00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2001/08/31 15.00.00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2001/08/23 17.00.00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2001/08/23 17.00.00 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[1999/01/22 17.46.58 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\MSRTEDIT.DLL
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2007/06/22 15.54.57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\cablecom
[2012/04/06 20.15.42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Deskshare
[2011/07/21 15.42.35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Easybits GO
[2008/05/23 12.14.08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Installations
[2008/05/23 12.25.02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\PC Suite
[2011/03/21 11.36.53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\PCSettings
[2007/05/08 12.41.58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\ScanSoft
[2011/03/21 12.22.20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\TEMP
[2012/05/05 02.00.00 | 000,000,422 | ---- | M] () -- C:\WINDOWS\Tasks\SyncBack backup docs2.job
[2012/06/05 11.31.52 | 000,000,260 | ---- | M] () -- C:\WINDOWS\Tasks\WGASetup.job
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 121 bytes -> C:\Documents and Settings\All Users\Dati applicazioni\TEMP:DFC5A2B2
@Alternate Data Stream - 103 bytes -> C:\Documents and Settings\All Users\Dati applicazioni\TEMP:A8ADE5D8
< End of report >