Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

TR/dropper.gen and Crypt.Zpack.gen

Started by onesim29984 , Dec 10 2009 03:43 AM

  • Please log in to reply

#1
onesim29984
Posted 10 December 2009 - 03:43 AM

onesim29984

    New Member

  • Member
  • Pip
  • 3 posts
hi,

i'm new in forum and i don't use a good english!
so sorry for my language

i've read your Malware and Spyware Cleaning Guide

i do an AVIRA scan with this result

Attached File  AVSCAN_20091210_015835_445C498F.TXT   102.91KB   131 downloads

i attach it because is too long log file! if you want for best view i can paste it in this post!

NEXT I FOLLOW YOUR GUIDE AND MALWAREBYTES SHOW ME THIS 

Malwarebytes' Anti-Malware 1.42
Versione del database: 3337
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

10/12/2009 10:32:13
mbam-log-2009-12-10 (10-32-13).txt

Tipo di scansione: Scansione rapida
Elementi scansionati: 115146
Tempo trascorso: 4 minute(s), 4 second(s)

Processi delle memoria infetti: 0
Moduli della memoria infetti: 0
Chiavi di registro infette: 0
Valori di registro infetti: 0
Elementi dato del registro infetti: 0
Cartelle infette: 0
File infetti: 1

Processi delle memoria infetti:
(Nessun elemento malevolo rilevato)

Moduli della memoria infetti:
(Nessun elemento malevolo rilevato)

Chiavi di registro infette:
(Nessun elemento malevolo rilevato)

Valori di registro infetti:
(Nessun elemento malevolo rilevato)

Elementi dato del registro infetti:
(Nessun elemento malevolo rilevato)

Cartelle infette:
(Nessun elemento malevolo rilevato)

File infetti:
C:\Documents and Settings\All Users\Dati applicazioni\1doc2pdf.dll (Trojan.Agent) -> Quarantined and deleted successfully.

HOW I CAN RESOLVE MY PROBLEM?
ANYONE CAN HELP ME PLEASE?

THANKS TO ALL
  • 0

Advertisements

#2
onesim29984
Posted 10 December 2009 - 04:11 AM

onesim29984

    New Member

  • Topic Starter
  • Member
  • Pip
  • 3 posts
i add other log

OTL logfile created on: 10/12/2009 10:53:28 - Run 1
OTL by OldTimer - Version 3.1.14.0 Folder = C:\Documents and Settings\Utente\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000410 | Country: Italia | Language: ITA | Date Format: dd/MM/yyyy

2,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 100,00% Memory free
4,00 Gb Paging File | 4,00 Gb Available in Paging File | 100,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programmi
Drive C: | 465,75 Gb Total Space | 300,15 Gb Free Space | 64,44% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: SIMONEFISSO
Current User Name: Utente
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 14 Days
Output = Standard
Quick Scan

========== Processes (SafeList) ==========

PRC - [2009/12/10 10:52:24 | 00,537,600 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Utente\Desktop\OTL.exe
PRC - [2009/12/09 14:08:03 | 00,215,128 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrB.exe
PRC - [2009/12/03 16:14:00 | 01,394,000 | ---- | M] (Malwarebytes Corporation) -- C:\Programmi\Malwarebytes' Anti-Malware\mbam.exe
PRC - [2009/11/19 16:49:43 | 00,470,273 | ---- | M] (Avira GmbH) -- c:\Programmi\Avira\AntiVir Desktop\avcenter.exe
PRC - [2009/10/11 04:17:36 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Programmi\Java\jre6\bin\jusched.exe
PRC - [2009/10/11 04:17:35 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Programmi\Java\jre6\bin\jqs.exe
PRC - [2009/08/18 19:29:22 | 00,185,089 | ---- | M] (Avira GmbH) -- C:\Programmi\Avira\AntiVir Desktop\avguard.exe
PRC - [2009/08/17 02:03:00 | 00,168,004 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe
PRC - [2009/07/13 20:14:45 | 00,108,289 | ---- | M] (Avira GmbH) -- C:\Programmi\Avira\AntiVir Desktop\sched.exe
PRC - [2009/03/31 08:39:36 | 00,233,472 | ---- | M] (Teruten) -- C:\WINDOWS\system32\FsUsbExService.Exe
PRC - [2009/03/26 20:43:14 | 00,075,064 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrA.exe
PRC - [2009/03/08 13:09:26 | 00,638,816 | ---- | M] (Microsoft Corporation) -- C:\Programmi\Internet Explorer\iexplore.exe
PRC - [2009/03/05 16:07:20 | 02,260,480 | ---- | M] (Safer-Networking Ltd.) -- C:\Programmi\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2009/03/02 12:08:52 | 00,209,153 | ---- | M] (Avira GmbH) -- C:\Programmi\Avira\AntiVir Desktop\avgnt.exe
PRC - [2008/08/04 15:45:16 | 05,779,456 | ---- | M] () -- C:\Programmi\MySQL\MySQL Server 5.0\bin\mysqld-nt.exe
PRC - [2008/06/03 01:05:58 | 00,065,680 | ---- | M] (Ulead Systems, Inc.) -- C:\Programmi\File comuni\Ulead Systems\DVD\ULCDRSvr.exe
PRC - [2008/04/14 03:14:07 | 01,036,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008/01/24 10:02:18 | 01,352,192 | ---- | M] () -- C:\Program Files\ASUS\Ai Suite\EnergySaving\PwSave.exe
PRC - [2008/01/24 03:53:16 | 00,613,376 | R--- | M] () -- C:\Programmi\ASUS\AASP\1.00.59\aaCenter.exe
PRC - [2008/01/09 09:17:18 | 00,627,200 | ---- | M] () -- C:\Program Files\ASUS\Ai Suite\AiGear3\CpuPowerMonitor.exe
PRC - [2007/12/20 09:47:36 | 16,860,672 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.exe
PRC - [2007/12/10 20:49:36 | 01,412,608 | ---- | M] () -- C:\Program Files\ASUS\Ai Suite\AiNap\AiNap.exe
PRC - [2007/08/08 08:25:08 | 00,836,904 | ---- | M] (Nero AG) -- C:\Programmi\Nero\Nero8\Nero BackItUp\NBService.exe
PRC - [2007/04/23 03:00:00 | 00,692,224 | ---- | M] (Logitech Inc.) -- C:\Programmi\Logitech\SetPoint\SetPoint.exe
PRC - [2007/04/11 14:32:22 | 00,056,080 | ---- | M] (Logitech Inc.) -- C:\Programmi\File comuni\Logitech\KhalShared\KHALMNPR.exe
PRC - [2006/11/29 16:28:54 | 00,262,144 | ---- | M] (SONIX) -- C:\WINDOWS\tsnpstd3.exe
PRC - [2006/10/19 12:52:24 | 00,061,440 | ---- | M] (Hewlett-Packard Company) -- C:\Programmi\File comuni\LightScribe\LSSrvc.exe
PRC - [2006/09/18 14:12:12 | 00,843,776 | ---- | M] () -- C:\WINDOWS\vsnpstd3.exe
PRC - [2006/02/28 11:42:38 | 00,229,376 | ---- | M] (Apple Computer, Inc.) -- C:\Programmi\Bonjour\mDNSResponder.exe
PRC - [2004/10/15 13:27:22 | 00,065,536 | ---- | M] (3M) -- C:\Programmi\3M\PSNLite\PSNGive.exe
PRC - [2004/10/15 13:26:54 | 02,080,768 | ---- | M] (3M) -- C:\Programmi\3M\PSNLite\PsnLite.exe


========== Modules (SafeList) ==========

MOD - [2009/12/10 10:52:24 | 00,537,600 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Utente\Desktop\OTL.exe
MOD - [2008/07/25 10:17:20 | 00,635,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcr80.dll
MOD - [2008/07/25 10:17:20 | 00,558,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcp80.dll
MOD - [2007/04/23 03:00:00 | 00,045,568 | ---- | M] (Logitech Inc.) -- C:\Programmi\Logitech\SetPoint\lgscroll.dll


========== Win32 Services (SafeList) ==========

SRV - [2009/12/09 14:08:03 | 00,215,128 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrB.exe -- (PnkBstrB)
SRV - [2009/10/11 04:17:35 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Programmi\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2009/10/01 22:21:45 | 00,116,032 | ---- | M] (LogMeIn, Inc.) -- C:\Programmi\LogMeIn\x86\RaMaint.exe -- (LMIMaint)
SRV - [2009/08/18 19:29:22 | 00,185,089 | ---- | M] (Avira GmbH) -- C:\Programmi\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2009/08/17 02:03:00 | 00,168,004 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe -- (NVSvc)
SRV - [2009/07/13 20:14:45 | 00,108,289 | ---- | M] (Avira GmbH) -- C:\Programmi\Avira\AntiVir Desktop\sched.exe -- (AntiVirScheduler)
SRV - [2009/04/26 16:13:43 | 00,182,768 | ---- | M] (Google) -- C:\Programmi\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc)
SRV - [2009/03/31 08:39:36 | 00,233,472 | ---- | M] (Teruten) -- C:\WINDOWS\system32\FsUsbExService.Exe -- (FsUsbExService)
SRV - [2009/03/26 20:43:14 | 00,075,064 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrA.exe -- (PnkBstrA)
SRV - [2008/11/04 01:06:28 | 00,441,712 | ---- | M] (Microsoft Corporation) -- C:\Programmi\File comuni\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv)
SRV - [2008/10/16 12:33:20 | 00,654,848 | ---- | M] (Macrovision Europe Ltd.) -- C:\Programmi\File comuni\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2008/09/24 15:13:15 | 00,049,664 | ---- | M] (GRISOFT, s.r.o.) -- C:\Programmi\Grisoft\AVG7\avgupsvc.exe -- (Avg7UpdSvc)
SRV - [2008/09/24 15:13:14 | 00,418,816 | ---- | M] (GRISOFT, s.r.o.) -- C:\Programmi\Grisoft\AVG7\avgamsvr.exe -- (Avg7Alrt)
SRV - [2008/09/24 15:13:14 | 00,406,528 | ---- | M] (GRISOFT, s.r.o.) -- C:\Programmi\Grisoft\AVG7\avgemc.exe -- (AVGEMS)
SRV - [2008/08/04 15:45:16 | 05,779,456 | ---- | M] () -- C:\Programmi\MySQL\MySQL Server 5.0\bin\mysqld-nt.exe -- (MySQL)
SRV - [2008/07/24 17:46:10 | 00,063,040 | ---- | M] (LogMeIn, Inc.) -- C:\Programmi\LogMeIn\x86\LogMeIn.exe -- (LogMeIn)
SRV - [2008/06/03 01:05:58 | 00,065,680 | ---- | M] (Ulead Systems, Inc.) -- C:\Programmi\File comuni\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper)
SRV - [2008/04/07 08:17:30 | 00,430,592 | ---- | M] (Nokia.) -- C:\Programmi\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2007/08/08 08:25:08 | 00,836,904 | ---- | M] (Nero AG) -- C:\Programmi\Nero\Nero8\Nero BackItUp\NBService.exe -- (Nero BackItUp Scheduler 3)
SRV - [2007/08/03 11:51:18 | 00,382,248 | ---- | M] (Nero AG) -- C:\Programmi\File comuni\Nero\Lib\NMIndexingService.exe -- (NMIndexingService)
SRV - [2007/03/11 21:02:52 | 00,131,072 | ---- | M] (Hewlett-Packard Co.) -- C:\Programmi\HP\Digital Imaging\bin\hpqddsvc.dll -- (hpqddsvc)
SRV - [2007/03/11 20:24:50 | 00,217,088 | ---- | M] (Hewlett-Packard Co.) -- C:\Programmi\HP\Digital Imaging\bin\hpqcxs08.dll -- (hpqcxs08)
SRV - [2006/10/26 12:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) -- C:\Programmi\File comuni\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2006/10/19 12:52:24 | 00,061,440 | ---- | M] (Hewlett-Packard Company) -- C:\Programmi\File comuni\LightScribe\LSSrvc.exe -- (LightScribeService)
SRV - [2006/02/28 11:42:38 | 00,229,376 | ---- | M] (Apple Computer, Inc.) -- C:\Programmi\Bonjour\mDNSResponder.exe -- (Bonjour Service)
SRV - [2005/04/03 23:41:10 | 00,069,632 | ---- | M] (Macrovision Corporation) -- C:\Programmi\File comuni\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.co...m...tf8&oe=utf8
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



O1 HOSTS File: (267185 bytes) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 123topsearch.com
O1 - Hosts: 127.0.0.1 www.123topsearch.com
O1 - Hosts: 127.0.0.1 132.com
O1 - Hosts: 127.0.0.1 www.132.com
O1 - Hosts: 127.0.0.1 www.136136.net
O1 - Hosts: 127.0.0.1 136136.net
O1 - Hosts: 9252 more lines...
O2 - BHO: (Supporto di collegamento per Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (ContributeBHO Class) - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Programmi\Adobe\/Adobe Contribute CS3/contributeieplugin.dll ()
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Programmi\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Guida per l'accesso a Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programmi\File comuni\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - No CLSID value found.
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Programmi\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programmi\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll (Google Inc.)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programmi\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Programmi\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Programmi\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Contribute Toolbar) - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Programmi\Adobe\/Adobe Contribute CS3/contributeieplugin.dll ()
O3 - HKLM\..\Toolbar: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Programmi\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Adobe ARM] C:\Programmi\File comuni\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Programmi\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Ai Nap] C:\Program Files\ASUS\Ai Suite\AiNap\AiNap.exe ()
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [ASUS Energy Saving] C:\Program Files\ASUS\Ai Suite\EnergySaving\PwSave.exe ()
O4 - HKLM..\Run: [avgnt] C:\Programmi\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [Cpu Level Up help] C:\Program Files\ASUS\Ai Suite\CpuLevelUpHelp.exe ()
O4 - HKLM..\Run: [CPU Power Monitor] C:\Program Files\ASUS\Ai Suite\AiGear3\CpuPowerMonitor.exe ()
O4 - HKLM..\Run: [KernelFaultCheck] File not found
O4 - HKLM..\Run: [Logitech Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech Inc.)
O4 - HKLM..\Run: [MSConfig] C:\WINDOWS\pchealth\helpctr\Binaries\MSCONFIG.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Programmi\File comuni\Nero\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [NPSStartup] File not found
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Programmi\NVIDIA Corporation\nView\nwiz.exe ()
O4 - HKLM..\Run: [RTHDCPL] C:\WINDOWS\RTHDCPL.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [snpstd3] C:\WINDOWS\vsnpstd3.exe ()
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Programmi\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [tsnpstd3] C:\WINDOWS\tsnpstd3.exe (SONIX)
O4 - HKCU..\Run: [AdobeUpdater] C:\Programmi\File comuni\Adobe\Updater5\AdobeUpdater.exe File not found
O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Programmi\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
O4 - HKCU..\Run: [swg] C:\Programmi\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Programmi\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\Logitech SetPoint.lnk = C:\Programmi\Logitech\SetPoint\SetPoint.exe (Logitech Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\Post-it® Software Notes Lite.lnk = C:\Programmi\3M\PSNLite\PsnLite.exe (3M)
O4 - Startup: C:\Documents and Settings\Utente\Menu Avvio\Programmi\Esecuzione automatica\Ritaglio schermata e avvio di OneNote 2007.lnk = C:\Programmi\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O8 - Extra context menu item: Aggiungi a PDF esistente - C:\Programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Converti destinazione link in Adobe PDF - C:\Programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Converti destinazione link in file PDF esistente - C:\Programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Converti i link selezionati in Adobe PDF - C:\Programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Converti i link selezionati in file PDF esistente - C:\Programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Converti in Adobe PDF - C:\Programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Converti selezione in Adobe PDF - C:\Programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Converti selezione in file PDF esistente - C:\Programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: E&sporta in Microsoft Excel - C:\Programmi\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Google Sidewiki... - C:\Programmi\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll (Google Inc.)
O9 - Extra Button: Invia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programmi\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : I&nvia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programmi\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe ()
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Programmi\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Programmi\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Programmi\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O15 - HKLM\..Trusted Domains: 46 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKCU\..Trusted Domains: microsoft.com ([office] http in Trusted sites)
O15 - HKCU\..Trusted Domains: 46 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://download.micr.../OGAControl.cab (Office Genuine Advantage Validation Tool)
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} http://upload.facebo...toUploader5.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} http://www.srtest.co.../sysreqlab3.cab (System Requirements Lab Class)
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} http://messenger.zon...1/GAME_UNO1.cab (UnoCtrl Class)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} http://download.bitd...can8/oscan8.cab (BDSCANONLINE Control)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://www.update.mi...b?1222288293255 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.micros...b?1222430596312 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zon...nt.cab56907.cab (MessengerStatsClient Class)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} Reg Error: Value error. (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} Reg Error: Value error. (Reg Error: Key error.)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} https://mysql.webex....ent/ieatgpc.cab (GpcContainer Class)
O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} https://secure.logme...trl.cab?lmi=100 (Performance Viewer Activex Control)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programmi\File comuni\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Programmi\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Programmi\File comuni\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\LMIinit: DllName - LMIinit.dll - C:\WINDOWS\System32\LMIinit.dll (LogMeIn, Inc.)
O21 - SSODL: BidiSpooler - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: CddbPL2CriteriaClass - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: Class - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: DeploymentToolkit - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: ExtensionsManager - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: HelixProducerCtrlClass - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: HPCUEWSPHStationClass - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: IEWSChange - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: IllustratorCMYKColor - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: IRBSDBClass - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: JavaPlug-in - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: LceDispClass - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: LcifProtocolClass - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: MCShared - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: MicrosoftHTML - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: MicrosoftWeb - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: MicrosoftWord - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: MSWebDVDClass - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: Msxml - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: NeroDigital - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: NeroPreviewWindowClass - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: NeroSearchFilterGenreClass - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: NMBAppGlobalSettingsFavouriteTransitionsClass - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: NMHDSPluginDevicesMyComputerClass - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: NMXRTServiceProviderSampleClass - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: NvCplLateBoundClass - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: OggettoReplicaPointer - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: OggettoVirtualStorage - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: OSEGlobal - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: PDFMakerAppClass - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: PhotoshopEPSSaveOptions - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: Plug-incontrollo - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: PSFactoryBuffer - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: QTRefMovieDescriptorClass - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: QuickTimeCheckClass - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: SharePointOpenDocuments - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: SliderGeneral - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: Solarize - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: TemplatePrinter - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: Tipidicarattere - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: URLMoniker - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: WavProperties - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: WbemScripting - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: WindowsMedia - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: WindowsTheme - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: WinSoftSpellingClass - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: WMEncSourcesAltPage2Class - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: WSecEditSecurity - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: XACTEngine - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O21 - SSODL: XMLDataSource - {1070dcf9-f475-4e69-9a94-9bf469830b47} - CLSID or File not found.
O24 - Desktop Components:0 (Pagina iniziale corrente) - About:Home
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/09/24 20:23:14 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - C:\WINDOWS\system32\ias [2008/09/24 22:09:14 | 00,000,000 | ---D | M]
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

CREATERESTOREPOINT
Error starting restore point: System Restore is disabled.
Error closing restore point: System Restore is disabled.

========== Files/Folders - Created Within 14 Days ==========

[2009/12/10 10:52:02 | 00,537,600 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Utente\Desktop\OTL.exe
[2009/12/10 10:27:18 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Dati applicazioni\Malwarebytes
[2009/12/10 10:27:14 | 00,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2009/12/10 10:27:13 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dati applicazioni\Malwarebytes
[2009/12/10 10:27:12 | 00,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2009/12/10 10:27:12 | 00,000,000 | ---D | C] -- C:\Programmi\Malwarebytes' Anti-Malware
[2009/12/10 10:26:49 | 04,844,296 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\Utente\Desktop\mbam-setup.exe
[2009/12/10 10:24:42 | 00,000,000 | ---D | C] -- C:\Programmi\ERUNT
[2009/12/10 10:24:28 | 00,791,393 | ---- | C] (Lars Hederer ) -- C:\Documents and Settings\Utente\Desktop\erunt_setup.exe
[2009/12/10 10:23:49 | 00,021,504 | ---- | C] (Doug Knox) -- C:\Documents and Settings\Utente\Desktop\SysRestorePoint.exe
[2009/12/10 10:18:19 | 00,343,040 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Utente\Desktop\TFC.exe
[2009/12/10 10:06:59 | 00,000,000 | ---D | C] -- C:\Programmi\Uninstall Tool
[2009/12/10 01:29:40 | 00,000,000 | --SD | C] -- C:\ComboFix
[2009/12/10 00:49:20 | 00,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2009/12/10 00:49:20 | 00,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2009/12/10 00:49:20 | 00,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2009/12/10 00:49:20 | 00,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2009/12/10 00:48:53 | 00,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2009/12/10 00:45:18 | 00,000,000 | ---D | C] -- C:\Qoobox
[2009/12/08 11:40:56 | 00,000,000 | RH-D | C] -- C:\Documents and Settings\Utente\Recent
[2009/12/03 17:20:42 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Desktop\Veltri
[2009/11/30 12:28:04 | 00,000,000 | R-SD | C] -- C:\Documents and Settings\Utente\Documenti\My Stationery
[2009/11/29 21:39:25 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Dati applicazioni\MAGIX
[2009/11/29 21:39:24 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Impostazioni locali\Dati applicazioni\Xara
[2009/11/29 21:38:15 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Documenti\MAGIX_Xtreme_Web_Designer_5_Download_Version
[2009/11/29 21:38:15 | 00,000,000 | ---D | C] -- C:\Programmi\MAGIX
[2009/11/29 21:38:15 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dati applicazioni\MAGIX
[2009/11/29 21:36:33 | 00,000,000 | ---D | C] -- C:\Programmi\File comuni\MAGIX Services
[2009/11/29 20:17:50 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Utente\Desktop\MAGIX_Xtreme_Web_Designer_5.0.10354
[2009/10/27 14:35:12 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Impostazioni locali\Dati applicazioni\ICS
[2009/09/03 04:25:43 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dati applicazioni\Adobe
[2009/07/21 23:24:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Impostazioni locali\Dati applicazioni\Microsoft
[2009/06/23 07:23:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Impostazioni locali\Dati applicazioni\LogMeIn
[2009/03/10 23:55:41 | 00,061,440 | ---- | C] ( ) -- C:\WINDOWS\System32\vsnpstd3.dll
[2009/03/10 23:55:40 | 00,147,456 | ---- | C] ( ) -- C:\WINDOWS\System32\rsnpstd3.dll
[2009/03/10 23:55:38 | 00,053,248 | ---- | C] ( ) -- C:\WINDOWS\System32\csnpstd3.dll
[2008/10/22 11:45:09 | 00,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Dati applicazioni\Microsoft
[2008/10/22 11:45:09 | 00,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Dati applicazioni\Microsoft
[2008/10/22 11:45:09 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Impostazioni locali\Dati applicazioni\Microsoft
[2008/09/24 15:13:27 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dati applicazioni\AVG7

========== Files - Modified Within 14 Days ==========

[2009/12/10 10:52:24 | 00,537,600 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Utente\Desktop\OTL.exe
[2009/12/10 10:27:16 | 00,000,676 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2009/12/10 10:26:57 | 04,844,296 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\Utente\Desktop\mbam-setup.exe
[2009/12/10 10:24:43 | 00,000,591 | ---- | M] () -- C:\Documents and Settings\Utente\Desktop\NTREGOPT.lnk
[2009/12/10 10:24:43 | 00,000,572 | ---- | M] () -- C:\Documents and Settings\Utente\Desktop\ERUNT.lnk
[2009/12/10 10:24:33 | 00,791,393 | ---- | M] (Lars Hederer ) -- C:\Documents and Settings\Utente\Desktop\erunt_setup.exe
[2009/12/10 10:24:26 | 11,010,048 | -H-- | M] () -- C:\Documents and Settings\Utente\NTUSER.DAT
[2009/12/10 10:23:55 | 00,021,504 | ---- | M] (Doug Knox) -- C:\Documents and Settings\Utente\Desktop\SysRestorePoint.exe
[2009/12/10 10:23:06 | 00,000,786 | ---- | M] () -- C:\WINDOWS\win.ini
[2009/12/10 10:23:06 | 00,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2009/12/10 10:23:06 | 00,000,211 | -HS- | M] () -- C:\boot.ini
[2009/12/10 10:20:31 | 00,249,324 | ---- | M] () -- C:\WINDOWS\System32\NvApps.xml
[2009/12/10 10:20:27 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2009/12/10 10:20:26 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009/12/10 10:19:30 | 00,000,194 | -HS- | M] () -- C:\Documents and Settings\Utente\ntuser.ini
[2009/12/10 10:18:21 | 00,343,040 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Utente\Desktop\TFC.exe
[2009/12/10 10:07:00 | 00,000,621 | ---- | M] () -- C:\Documents and Settings\Utente\Desktop\Uninstall Tool.lnk
[2009/12/10 09:34:45 | 00,000,436 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{66A9BFBB-DFB9-4775-9CBD-FCCFF40817D6}.job
[2009/12/10 00:45:05 | 03,847,760 | R--- | M] () -- C:\Documents and Settings\Utente\Desktop\ComboFix.exe
[2009/12/10 00:42:11 | 00,494,740 | ---- | M] () -- C:\Documents and Settings\Utente\Desktop\Combofix Guida Illustrata - WinInizio.mht
[2009/12/09 22:54:07 | 00,261,632 | ---- | M] () -- C:\WINDOWS\PEV.exe
[2009/12/09 22:18:53 | 00,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2009/12/09 14:09:42 | 00,138,384 | ---- | M] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2009/12/09 14:08:03 | 00,215,128 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.xtr
[2009/12/09 14:08:03 | 00,215,128 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2009/12/09 00:17:17 | 00,091,332 | ---- | M] () -- C:\Documents and Settings\Utente\Desktop\Call_of_Duty_Modern_Warfare_2_[PC_ITA___Sub_Ita].5169273.TPB.torrent
[2009/12/08 22:17:40 | 00,002,359 | ---- | M] () -- C:\Documents and Settings\Utente\Desktop\Burraconline Client.lnk
[2009/12/08 15:05:55 | 00,000,158 | ---- | M] () -- C:\WINDOWS\matlab.ini
[2009/12/08 15:01:27 | 00,713,131 | ---- | M] () -- C:\Documents and Settings\Utente\Desktop\relazione controllo processi.docx
[2009/12/05 22:53:16 | 00,094,720 | ---- | M] () -- C:\Documents and Settings\Utente\Impostazioni locali\Dati applicazioni\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/12/04 12:32:52 | 00,002,228 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2009/12/03 16:14:06 | 00,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2009/12/03 16:13:56 | 00,019,160 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2009/12/03 12:59:22 | 00,142,359 | ---- | M] () -- C:\Documents and Settings\Utente\Desktop\AN EFFICIENT BICLUSTERING ALGORITHM FOR FINDING GENES WITH SIMILAR PATTERNS IN TIME-SERIES EXPRESSION DATA.pdf
[2009/12/03 12:51:38 | 00,517,887 | ---- | M] () -- C:\Documents and Settings\Utente\Desktop\A joint finite mixture model for clustering genes from independent gaussian and beta distributed data.pdf
[2009/12/02 14:43:56 | 00,028,657 | ---- | M] () -- C:\Documents and Settings\Utente\Desktop\Untitled1.web
[2009/11/30 16:30:06 | 00,080,712 | ---- | M] () -- C:\Documents and Settings\Utente\Impostazioni locali\Dati applicazioni\GDIPFONTCACHEV1.DAT
[2009/11/30 10:49:46 | 01,576,048 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009/11/29 21:39:16 | 00,000,963 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\MAGIX Xtreme Web Designer 5 Download Version.lnk
[2009/11/27 09:25:19 | 00,002,387 | ---- | M] () -- C:\Documents and Settings\Utente\Desktop\RESIDENT EVIL 5.lnk

========== Files Created - No Company Name ==========

[2009/12/10 10:27:16 | 00,000,676 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2009/12/10 10:24:43 | 00,000,591 | ---- | C] () -- C:\Documents and Settings\Utente\Desktop\NTREGOPT.lnk
[2009/12/10 10:24:43 | 00,000,572 | ---- | C] () -- C:\Documents and Settings\Utente\Desktop\ERUNT.lnk
[2009/12/10 10:07:00 | 00,000,621 | ---- | C] () -- C:\Documents and Settings\Utente\Desktop\Uninstall Tool.lnk
[2009/12/10 00:49:20 | 00,261,632 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2009/12/10 00:49:20 | 00,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2009/12/10 00:49:20 | 00,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2009/12/10 00:49:20 | 00,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2009/12/10 00:49:20 | 00,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2009/12/10 00:44:42 | 03,847,760 | R--- | C] () -- C:\Documents and Settings\Utente\Desktop\ComboFix.exe
[2009/12/10 00:41:59 | 00,494,740 | ---- | C] () -- C:\Documents and Settings\Utente\Desktop\Combofix Guida Illustrata - WinInizio.mht
[2009/12/09 00:17:17 | 00,091,332 | ---- | C] () -- C:\Documents and Settings\Utente\Desktop\Call_of_Duty_Modern_Warfare_2_[PC_ITA___Sub_Ita].5169273.TPB.torrent
[2009/12/08 15:01:25 | 00,713,131 | ---- | C] () -- C:\Documents and Settings\Utente\Desktop\relazione controllo processi.docx
[2009/12/03 17:19:00 | 00,517,887 | ---- | C] () -- C:\Documents and Settings\Utente\Desktop\A joint finite mixture model for clustering genes from independent gaussian and beta distributed data.pdf
[2009/12/03 17:19:00 | 00,142,359 | ---- | C] () -- C:\Documents and Settings\Utente\Desktop\AN EFFICIENT BICLUSTERING ALGORITHM FOR FINDING GENES WITH SIMILAR PATTERNS IN TIME-SERIES EXPRESSION DATA.pdf
[2009/12/02 14:43:56 | 00,028,657 | ---- | C] () -- C:\Documents and Settings\Utente\Desktop\Untitled1.web
[2009/11/29 21:39:16 | 00,000,963 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\MAGIX Xtreme Web Designer 5 Download Version.lnk
[2009/11/29 21:38:15 | 00,120,200 | ---- | C] () -- C:\WINDOWS\System32\DLLDEV32i.dll
[2009/11/11 22:52:18 | 00,000,261 | ---- | C] () -- C:\Documents and Settings\Utente\Dati applicazioni\ini.xml
[2009/10/29 11:14:47 | 00,000,258 | ---- | C] () -- C:\WINDOWS\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini
[2009/10/16 23:00:57 | 00,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll
[2009/10/16 23:00:57 | 00,036,608 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys
[2009/10/16 23:00:49 | 00,002,528 | ---- | C] () -- C:\Documents and Settings\Utente\Dati applicazioni\$_hpcst$.hpc
[2009/10/07 14:02:39 | 00,041,324 | ---- | C] () -- C:\WINDOWS\System32\winio.sys
[2009/10/07 11:21:41 | 00,000,158 | ---- | C] () -- C:\WINDOWS\matlab.ini
[2009/08/02 23:21:54 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2009/08/02 23:21:54 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2009/08/02 23:21:54 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2009/08/02 23:21:54 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2009/08/02 23:21:54 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2009/08/02 23:21:54 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2009/08/02 23:21:54 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2009/08/02 23:21:52 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2009/08/02 23:21:52 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
[2009/04/22 00:19:06 | 00,172,173 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2009/03/10 23:55:41 | 00,015,498 | ---- | C] () -- C:\WINDOWS\snpstd3.ini
[2008/12/04 09:12:33 | 00,131,072 | ---- | C] () -- C:\WINDOWS\System32\mtkjpeg.dll
[2008/11/08 14:03:31 | 00,000,014 | ---- | C] () -- C:\Documents and Settings\All Users\Dati applicazioni\AdobeUpdater.rbt
[2008/10/19 11:29:00 | 00,138,384 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2008/10/19 11:29:00 | 00,022,328 | ---- | C] () -- C:\Documents and Settings\Utente\Dati applicazioni\PnkBstrK.sys
[2008/10/16 22:45:52 | 00,209,040 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeW7.dll
[2008/10/16 22:45:52 | 00,204,944 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeA6.dll
[2008/10/16 22:45:52 | 00,196,752 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeP6.dll
[2008/10/16 22:45:52 | 00,196,752 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeM6.dll
[2008/10/16 22:45:52 | 00,192,656 | ---- | C] () -- C:\WINDOWS\System32\IVIresizePX.dll
[2008/10/16 22:45:52 | 00,024,720 | ---- | C] () -- C:\WINDOWS\System32\IVIresize.dll
[2008/10/16 16:51:08 | 00,000,736 | ---- | C] () -- C:\WINDOWS\SamsungMaster.INI
[2008/10/16 16:40:04 | 00,765,952 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2008/10/16 16:40:04 | 00,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2008/10/16 12:42:35 | 02,463,976 | ---- | C] () -- C:\WINDOWS\System32\NPSWF32.dll
[2008/10/14 13:45:37 | 00,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2008/10/07 12:33:00 | 01,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2008/10/07 12:33:00 | 01,486,848 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2008/10/07 12:33:00 | 01,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2008/10/07 12:33:00 | 00,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2008/10/07 12:33:00 | 00,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2008/10/03 13:12:33 | 00,000,625 | ---- | C] () -- C:\Documents and Settings\All Users\Dati applicazioni\hpzinstall.log
[2008/09/28 21:32:22 | 00,116,224 | ---- | C] () -- C:\WINDOWS\System32\pdfmonnt.dll
[2008/09/28 21:32:21 | 00,000,164 | ---- | C] () -- C:\WINDOWS\System32\psconv.ini
[2008/09/27 10:17:13 | 00,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2008/09/24 20:46:54 | 00,024,576 | R--- | C] () -- C:\WINDOWS\System32\AsIO.dll
[2008/09/24 20:46:54 | 00,012,400 | R--- | C] () -- C:\WINDOWS\System32\drivers\AsIO.sys
[2008/09/24 20:46:52 | 00,011,832 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp64.sys
[2008/09/24 20:46:52 | 00,010,216 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp32.sys
[2008/09/24 20:34:58 | 00,031,291 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini
[2008/09/24 20:34:53 | 00,030,985 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2008/09/24 20:34:52 | 00,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2008/09/24 20:34:45 | 00,012,536 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2008/09/24 15:42:04 | 00,094,720 | ---- | C] () -- C:\Documents and Settings\Utente\Impostazioni locali\Dati applicazioni\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/09/24 15:07:00 | 00,000,424 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2008/06/05 07:58:26 | 00,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll
[2008/02/04 17:23:10 | 00,693,792 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.DLL
[2008/01/09 14:01:48 | 00,000,453 | ---- | C] () -- C:\WINDOWS\bdoscandellang.ini
[2007/10/25 16:26:10 | 00,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2007/08/06 11:07:30 | 00,008,784 | ---- | C] () -- C:\WINDOWS\System32\ractrlkeyhook.dll
[2005/10/31 21:28:22 | 00,069,632 | ---- | C] () -- C:\WINDOWS\System32\MobOlExt.dll
[2002/03/17 01:00:00 | 00,007,420 | ---- | C] () -- C:\WINDOWS\UA000104.DLL
[1998/09/14 17:43:16 | 00,065,536 | ---- | C] () -- C:\WINDOWS\System32\evtwain32.dll

========== LOP Check ==========

[2008/10/22 11:45:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\avg7
[2009/09/03 18:44:50 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Boss Media
[2008/11/09 11:48:46 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\CanonBJ
[2009/02/20 15:26:29 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Electronic Arts
[2009/11/11 22:52:22 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Garden Planner
[2008/09/24 15:21:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Grisoft
[2008/10/16 22:45:53 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\InterVideo
[2009/10/28 19:56:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\KONAMI
[2008/10/16 06:55:06 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\LogMeIn
[2009/11/29 21:40:31 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\MAGIX
[2008/09/24 23:10:49 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Messenger Plus!
[2008/10/15 20:51:12 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\OrbNetworks
[2009/10/16 23:04:10 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\PC Suite
[2008/09/25 13:08:06 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Sync App Settings
[2008/10/16 22:50:58 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Ulead Systems
[2008/11/01 15:42:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\VOWSoft
[2009/11/12 18:54:06 | 00,000,000 | -HSD | M] -- C:\Documents and Settings\Utente\Dati applicazioni\.#
[2009/05/20 08:50:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Utente\Dati applicazioni\3M
[2008/09/24 15:14:01 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Utente\Dati applicazioni\AVG7
[2008/09/24 15:06:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Utente\Dati applicazioni\AVGTOOLBAR
[2009/01/15 13:33:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Utente\Dati applicazioni\CD-LabelPrint
[2008/09/27 09:51:13 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Utente\Dati applicazioni\DAEMON Tools
[2009/12/07 13:15:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Utente\Dati applicazioni\FileZilla
[2009/11/12 18:41:58 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Utente\Dati applicazioni\Garden Planner
[2008/09/24 21:27:45 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Utente\Dati applicazioni\Leadertech
[2009/11/29 21:39:25 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Utente\Dati applicazioni\MAGIX
[2009/10/16 23:04:09 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Utente\Dati applicazioni\PC Suite
[2009/11/02 12:01:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Utente\Dati applicazioni\PresPro
[2009/10/16 23:00:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Utente\Dati applicazioni\Samsung
[2009/04/21 17:56:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Utente\Dati applicazioni\SWI-Prolog
[2008/09/25 13:09:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Utente\Dati applicazioni\Sync App Settings
[2009/01/23 17:03:40 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Utente\Dati applicazioni\TeamViewer
[2009/05/26 11:14:19 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Utente\Dati applicazioni\The Creative Assembly
[2008/09/24 20:44:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Utente\Dati applicazioni\TMP
[2008/10/16 22:54:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Utente\Dati applicazioni\Ulead Systems
[2009/12/09 02:55:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Utente\Dati applicazioni\uTorrent
[2009/02/05 15:07:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Utente\Dati applicazioni\WebEx
[2009/05/07 10:54:10 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Utente\Dati applicazioni\xpce
[2008/11/01 15:39:53 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Utente\Dati applicazioni\zweitgeist
[2009/12/10 09:34:45 | 00,000,436 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{66A9BFBB-DFB9-4775-9CBD-FCCFF40817D6}.job

========== Purity Check ==========



========== Custom Scans ==========


< %SYSTEMDRIVE%\*.exe >
[2007/11/07 08:03:18 | 00,562,688 | ---- | M] (Microsoft Corporation) -- C:\install.exe


< MD5 for: AGP440.SYS >
[2008/04/13 19:36:38 | 00,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008/04/13 19:36:38 | 00,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys

< MD5 for: ATAPI.SYS >
[2008/04/13 19:40:30 | 00,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008/04/13 19:40:30 | 00,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004/08/03 21:59:44 | 00,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2004/08/03 21:59:44 | 00,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\drivers\system32\DRIVERS\atapi.sys
[2004/08/03 21:59:44 | 00,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0007\DriverFiles\i386\atapi.sys
[2004/08/03 21:59:44 | 00,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0008\DriverFiles\i386\atapi.sys

< MD5 for: EVENTLOG.DLL >
[1999/10/02 08:24:46 | 00,017,408 | ---- | M] () MD5=1363337A5301619F00F8033835EF30E9 -- C:\Programmi\MATLAB\R2006b\sys\perl\win32\site\lib\auto\Win32\EventLog\EventLog.dll
[2008/04/14 03:13:39 | 00,056,320 | ---- | M] (Microsoft Corporation) MD5=BD5FEE908FDD9CB09AA3E78111AB1119 -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008/04/14 03:13:39 | 00,056,320 | ---- | M] (Microsoft Corporation) MD5=BD5FEE908FDD9CB09AA3E78111AB1119 -- C:\WINDOWS\system32\eventlog.dll
[2004/08/19 14:39:10 | 00,055,808 | ---- | M] (Microsoft Corporation) MD5=D1CAA255F33C06C8302769A86FFB905E -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll

< MD5 for: NETLOGON.DLL >
[2004/08/19 14:39:22 | 00,407,040 | ---- | M] (Microsoft Corporation) MD5=926BB51BB6DE79DEDB93E9C2B0811CCF -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
[2008/04/14 03:13:46 | 00,407,040 | ---- | M] (Microsoft Corporation) MD5=E1DACEE13CAF8E118416399ABD2A08D9 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008/04/14 03:13:46 | 00,407,040 | ---- | M] (Microsoft Corporation) MD5=E1DACEE13CAF8E118416399ABD2A08D9 -- C:\WINDOWS\system32\netlogon.dll

< MD5 for: SCECLI.DLL >
[2008/04/14 03:13:49 | 00,187,904 | ---- | M] (Microsoft Corporation) MD5=034B4B1E882563562B35E1FAB279DEDF -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008/04/14 03:13:49 | 00,187,904 | ---- | M] (Microsoft Corporation) MD5=034B4B1E882563562B35E1FAB279DEDF -- C:\WINDOWS\system32\scecli.dll
[2004/08/19 14:39:26 | 00,186,880 | ---- | M] (Microsoft Corporation) MD5=1446EB71ADF0F54980CDD7E5A812E102 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll

< %systemroot%\*. /mp /s >
< End of report >[/code]

HEAR ALSO THE EXTRA FILE

[code=auto:0]OTL Extras logfile created on: 10/12/2009 10:53:28 - Run 1
OTL by OldTimer - Version 3.1.14.0 Folder = C:\Documents and Settings\Utente\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000410 | Country: Italia | Language: ITA | Date Format: dd/MM/yyyy

2,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 100,00% Memory free
4,00 Gb Paging File | 4,00 Gb Available in Paging File | 100,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programmi
Drive C: | 465,75 Gb Total Space | 300,15 Gb Free Space | 64,44% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: SIMONEFISSO
Current User Name: Utente
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 14 Days
Output = Standard
Quick Scan

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- C:\Programmi\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Programmi\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Programmi\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Programmi\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Programmi\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Programmi\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
https [open] -- "C:\Programmi\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Programmi\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~2\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Programmi\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Programmi\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "C:\Programmi\Winamp\winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "C:\Programmi\Winamp\winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Programmi\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Programmi\Internet Explorer\iexplore.exe" (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Programmi\Windows Live\Messenger\wlcsdk.exe" = C:\Programmi\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Programmi\Grisoft\AVG7\avginet.exe" = C:\Programmi\Grisoft\AVG7\avginet.exe:*:Enabled:avginet.exe -- (GRISOFT, s.r.o.)
"C:\Programmi\Grisoft\AVG7\avgamsvr.exe" = C:\Programmi\Grisoft\AVG7\avgamsvr.exe:*:Enabled:avgamsvr.exe -- (GRISOFT, s.r.o.)
"C:\Programmi\Grisoft\AVG7\avgcc.exe" = C:\Programmi\Grisoft\AVG7\avgcc.exe:*:Enabled:avgcc.exe -- (GRISOFT, s.r.o.)
"C:\Programmi\Grisoft\AVG7\avgemc.exe" = C:\Programmi\Grisoft\AVG7\avgemc.exe:*:Enabled:avgemc.exe -- (GRISOFT, s.r.o.)
"C:\Programmi\eMule\emule.exe" = C:\Programmi\eMule\emule.exe:*:Enabled:eMule -- (http://www.emule-project.net)
"C:\Programmi\mIRC\mirc.exe" = C:\Programmi\mIRC\mirc.exe:*:Enabled:mIRC -- (mIRC Co. Ltd.)
"C:\Programmi\Microsoft Office\Office12\ONENOTE.EXE" = C:\Programmi\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote -- (Microsoft Corporation)
"C:\Programmi\Lionhead Studios Ltd\Black & White\runblack.exe" = C:\Programmi\Lionhead Studios Ltd\Black & White\runblack.exe:*:Enabled:lh -- File not found
"C:\Programmi\Winamp Remote\bin\Orb.exe" = C:\Programmi\Winamp Remote\bin\Orb.exe:*:Enabled:Orb -- (Orb Networks, Inc.)
"C:\Programmi\Winamp Remote\bin\OrbTray.exe" = C:\Programmi\Winamp Remote\bin\OrbTray.exe:*:Enabled:OrbTray -- (Orb Networks)
"C:\Programmi\Winamp Remote\bin\OrbStreamerClient.exe" = C:\Programmi\Winamp Remote\bin\OrbStreamerClient.exe:*:Enabled:Orb Stream Client -- (Orb Networks)
"C:\Programmi\Bonjour\mDNSResponder.exe" = C:\Programmi\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour -- (Apple Computer, Inc.)
"C:\WINDOWS\system32\PnkBstrA.exe" = C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA -- ()
"C:\WINDOWS\system32\PnkBstrB.exe" = C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB -- ()
"C:\Programmi\EA GAMES\Battlefield 2\bf2_w32ded.exe" = C:\Programmi\EA GAMES\Battlefield 2\bf2_w32ded.exe:*:Enabled:bf2_w32ded -- ()
"C:\Programmi\KONAMI\Pro Evolution Soccer 2009\pes2009.exe" = C:\Programmi\KONAMI\Pro Evolution Soccer 2009\pes2009.exe:*:Enabled:Pro Evolution Soccer 2009 -- (Konami Digital Entertainment Co., Ltd.)
"C:\Programmi\Java\jdk1.6.0_10\jre\bin\java.exe" = C:\Programmi\Java\jdk1.6.0_10\jre\bin\java.exe:*:Enabled:Java™ Platform SE binary -- (Sun Microsystems, Inc.)
"C:\Programmi\Java\jdk1.6.0_10\bin\java.exe" = C:\Programmi\Java\jdk1.6.0_10\bin\java.exe:*:Enabled:Java™ Platform SE binary -- (Sun Microsystems, Inc.)
"C:\WINDOWS\system32\java.exe" = C:\WINDOWS\system32\java.exe:*:Enabled:Java™ Platform SE binary -- (Sun Microsystems, Inc.)
"C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)
"C:\Programmi\Java\jre6\bin\java.exe" = C:\Programmi\Java\jre6\bin\java.exe:*:Enabled:Java™ Platform SE binary -- (Sun Microsystems, Inc.)
"C:\Programmi\Electronic Arts\EADM\Core.exe" = C:\Programmi\Electronic Arts\EADM\Core.exe:*:Enabled:EA Download Manager -- (Electronic Arts)
"C:\Programmi\EA GAMES\Battlefield 2\BF2.exe" = C:\Programmi\EA GAMES\Battlefield 2\BF2.exe:*:Enabled:Battlefield 2 -- ()
"C:\Programmi\Windows Live\Messenger\wlcsdk.exe" = C:\Programmi\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation)
"C:\Programmi\uTorrent\uTorrent.exe" = C:\Programmi\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\Programmi\Electronic Arts\Dead Space\Dead Space.exe" = C:\Programmi\Electronic Arts\Dead Space\Dead Space.exe:*:Enabled:Dead Space ™ -- File not found
"C:\Programmi\TavoliVerdi\TavoliVerdi.exe" = C:\Programmi\TavoliVerdi\TavoliVerdi.exe:*:Enabled:Applicativo Principale -- File not found
"C:\Programmi\TavoliVerdi\TVControllo.exe" = C:\Programmi\TavoliVerdi\TVControllo.exe:*:Enabled:TVControllo -- File not found
"C:\Programmi\MATLAB\R2006b\bin\win32\MATLAB.exe" = C:\Programmi\MATLAB\R2006b\bin\win32\MATLAB.exe:*:Enabled:MATLAB -- (The MathWorks Inc.)
"C:\Programmi\Samsung\Samsung New PC Studio\npsasvr.exe" = C:\Programmi\Samsung\Samsung New PC Studio\npsasvr.exe:*:Enabled:KTF MUSIC AoD Server -- (PeeringPortal)
"C:\Programmi\Samsung\Samsung New PC Studio\npsvsvr.exe" = C:\Programmi\Samsung\Samsung New PC Studio\npsvsvr.exe:*:Enabled:KTF MUSIC VoD Server -- (PeeringPortal)
"C:\Programmi\KONAMI\Pro Evolution Soccer 2010\pes2010.exe" = C:\Programmi\KONAMI\Pro Evolution Soccer 2010\pes2010.exe:*:Enabled:Pro Evolution Soccer 2010 -- (Konami Digital Entertainment Co., Ltd.)
"C:\Programmi\Ventrilo\Ventrilo.exe" = C:\Programmi\Ventrilo\Ventrilo.exe:*:Enabled:Ventrilo.exe -- (Flagship Industries, Inc.)
"C:\Programmi\CAPCOM\RESIDENT EVIL 5\RE5DX9.EXE" = C:\Programmi\CAPCOM\RESIDENT EVIL 5\RE5DX9.EXE:*:Enabled:RESIDENT EVIL 5 (DX9) -- (CAPCOM CO., LTD.)
"C:\Programmi\CAPCOM\RESIDENT EVIL 5\RE5DX10.EXE" = C:\Programmi\CAPCOM\RESIDENT EVIL 5\RE5DX10.EXE:*:Enabled:RESIDENT EVIL 5 (DX10) -- (CAPCOM CO., LTD.)
"C:\Programmi\Java\jre6\bin\javaw.exe" = C:\Programmi\Java\jre6\bin\javaw.exe:*:Enabled:Java™ Platform SE binary -- (Sun Microsystems, Inc.)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3
"{05B49229-22A2-4F88-842A-BBC2EBE1CCF6}" = Microsoft Games for Windows - LIVE Redistributable
"{082EA2B7-C14C-4D48-8527-EF8375E99EBE}" = Burraconline CLIENT
"{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting
"{10E1E87C-656C-4D08-86D6-5443D28583BE}" = TrayApp
"{10E98191-4B8B-415B-A2FC-04F2D2FB876C}" = Adobe Illustrator CS3
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4500_series" = Canon iP4500 series
"{14F4BF1D-26C9-4B7B-9D36-7D92FADCE422}" = Adobe Flash CS3
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin
"{1F4BF9EA-847E-44FB-A728-C456116E6CEF}" = InstantShareDevicesMFC
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Strumento di caricamento di Windows Live
"{218D2E7E-37A9-4B5D-B4A1-13FD6B8B9D17}" = Corel DVD MovieFactory 7
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{22EDBE71-AFEE-42A5-952D-C7A7E3C013DE}" = Adobe Fireworks CS3
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{26A24AE4-039D-4CA4-87B4-2F83216010FF}" = Java™ 6 Update 17
"{283FFB23-8751-4B08-ACB8-5E0F8BCF7727}" = Pro Evolution Soccer 2010
"{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3
"{29FA38B4-0AE4-4D0D-8A51-6165BB990BB0}" = WebReg
"{2DD388FF-6422-43C9-86A1-C7A99C83E946}" = ASUS nVidia Driver
"{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}" = Logitech SetPoint
"{310BC5E2-31AF-49BB-904D-E71EB93645DC}" = AI Suite
"{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java™ 6 Update 7
"{32A3A4F4-B792-11D6-A78A-00B0D0160100}" = Java™ SE Development Kit 6 Update 10
"{350C9410-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{373CDA0D-A5B1-4BCB-8E74-C6337DC4A259}" = Microsoft .NET Framework 2.0 Language Pack - ITA
"{383E4144-2E98-44f3-A47C-FEED949AB133}" = HP Fotocamere Photosmart 9.0
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = Logitech Registration
"{406AD3D7-F5BB-49C1-A280-6BCB5F6BC099}" = MySQL Server 5.0
"{4845FA8C-D545-44fb-9088-7CE1144DABB3}" = CameraUserGuides
"{48F57C2C-0295-4CE3-BD76-375649032D49}" = Adobe Creative Suite 3 Web Premium
"{49C77D21-F91F-4296-B7DF-19C5FF51AF4D}" = Windows Live Call
"{4D243BA7-9AC4-46D1-90E5-EEB88974F501}" = Microsoft Games for Windows - LIVE
"{543E938C-BDC4-4933-A612-01293996845F}" = UnloadSupport
"{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3
"{55647445-D0D5-40CD-BCD3-B663348BA196}" = PowerDesigns Express Tool 2.5
"{5615BF15-A281-4606-9E9D-AF74A4233D20}" = WEA400
"{56918C0C-0D87-4CA6-92BF-4975A43AC719}" = KhalInstallWrapper
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}" = Microsoft Office Live Add-in 1.3
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6ABE0BEE-D572-4FE8-B434-9E72A289431B}" = Adobe Fonts All
"{6B708481-748A-4EB4-97C1-CD386244FF77}" = Adobe MotionPicture Color Files
"{6BBAA81D-6A7E-43AD-8889-2F002DCAAFDD}" = AHV content for Acrobat and Flash
"{6BF2CCD4-33D1-499D-9055-49E023B5468D}" = LogMeIn
"{6D7BDA00-A4DA-49F9-BAE4-7FB71FAA4737}" = Windows Live Essentials
"{6F695BCF-9BDC-48AB-8D46-D57CFAD7A248}" = Assistente per l'accesso a Windows Live
"{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{730837D4-FF5E-48DB-BA49-33E732DFF0B3}" = PanoStandAlone
"{73B5D990-04EA-4751-B10F-5534770B91F2}" = Adobe Color EU Recommended Settings
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo Client
"{7C2426D1-FED1-41CB-9942-C62D90913153}" = Adobe Dreamweaver CS3
"{7E84FAC8-C518-40F9-9807-7455301D6D25}" = SamsungConnectivityCableDriver
"{802771A9-A856-4A41-ACF7-1450E523C923}" = Adobe XMP Panels CS3
"{821A7A63-1599-49A6-92F2-1009E96BDE5B}" = Adobe Setup
"{824D3839-DAA1-4315-A822-7AE3E620E528}" = VideoToolkit01
"{8389382B-53BA-4A87-8854-91E3D80A5AC7}" = HP Photosmart Essential2.01
"{86D6A20D-3910-4441-A3E5-EB6977251C86}" = Samsung USB Driver
"{88D422DB-E9C7-4E16-9D80-2999F4FD6AD9}" = Adobe Flash Player 9 Plugin
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8AEA4BE2-2B52-41C0-BB7D-9F2D17AF1040}" = Nero 8
"{8C6027FD-53DC-446D-BB75-CACD7028A134}" = HP Update
"{8CC990CD-87C8-475C-AC32-8A7984E2FCFA}" = CDDRV_Installer
"{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3
"{8DC42D05-680B-41B0-8878-6C14D24602DB}" = QuickTime
"{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support
"{90120000-0010-0410-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Italian) 12
"{90120000-0016-0410-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Italian) 2007
"{90120000-0016-0410-0000-0000000FF1CE}_HOMESTUDENTR_{71CCE0F1-A3B4-49C9-A328-1DABE845E0C4}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0410-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Italian) 2007
"{90120000-0018-0410-0000-0000000FF1CE}_HOMESTUDENTR_{71CCE0F1-A3B4-49C9-A328-1DABE845E0C4}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0410-0000-0000000FF1CE}" = Microsoft Office Word MUI (Italian) 2007
"{90120000-001B-0410-0000-0000000FF1CE}_HOMESTUDENTR_{71CCE0F1-A3B4-49C9-A328-1DABE845E0C4}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007
"{90120000-001F-0410-0000-0000000FF1CE}_HOMESTUDENTR_{322296D4-1EAE-4030-9FBC-D2787EB25FA2}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0410-0000-0000000FF1CE}" = Microsoft Office Proofing (Italian) 2007
"{90120000-006E-0410-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Italian) 2007
"{90120000-006E-0410-0000-0000000FF1CE}_HOMESTUDENTR_{0A75DA12-55CB-4DE5-8B6A-74D97847204E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0410-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Italian) 2007
"{90120000-00A1-0410-0000-0000000FF1CE}_HOMESTUDENTR_{71CCE0F1-A3B4-49C9-A328-1DABE845E0C4}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{93F54611-2701-454e-94AB-623F458D9E6B}" = DeviceDiscovery
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{998D6972-F58E-479D-9248-8F179E55AE38}" = Java DB 10.4.1.3
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9B63540D-D942-4C38-B42E-A48AE0145970}" = Virtua Tennis 3
"{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3
"{9D34E5C7-DF76-46B7-9891-FE3E5E97B74F}" = Adobe Contribute CS3
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A2AA6878-1321-424e-8B1B-D53BC94107D7}" = CameraDrivers
"{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps
"{A2D81E70-2A98-4A08-A628-94388B063C5E}" = Adobe Color - Photoshop Specific
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A8DB611A-D80E-450D-85F6-3ACDD164BE31}" = Pro Evolution Soccer 2009
"{A8DBF55D-73C0-4E37-A10E-365BFBB14119}" = Battlefield 2 Complete Collection
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AC08BBA0-96B9-431A-A7D0-D8598E493775}" = RESIDENT EVIL 5
"{AC599724-5755-48C1-ABE7-ABB857652930}" = PC Connectivity Solution
"{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}" = PDF Settings
"{AC76BA86-1040-7D00-7760-000000000003}" = Adobe Acrobat 8 Professional - Italiano, Espańol, Nederlands
"{AC76BA86-7AD7-1040-7B44-A92000000001}" = Adobe Reader 9.2 - Italiano
"{AEA07F97-9088-497c-8821-0F36BD5DC251}" = HPProductAssistant
"{AF61282C-B451-4225-99D8-618B377BC0C8}" = Adobe Photoshop CS3
"{AF7E85DC-317C-47F5-810E-B82EE093A612}" = Samsung New PC Studio USB Driver Installer
"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B73CFB12-C814-4638-AFFD-7E3AAFAF0B4E}" = Adobe BridgeTalk Plugin CS3
"{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3
"{BBF0A67B-5DBA-452F-9D2E-6F168BC226E4}" = Need for Speed™ SHIFT
"{BCD6CD1A-0DBE-412E-9F25-3B500D1E6BA1}" = SolutionCenter
"{BE5F3842-8309-4754-92D5-83E02E6077A3}" = Adobe Extension Manager CS3
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C2D69781-F392-4118-A5A7-C7E9C38DBFC2}" = Adobe ExtendScript Toolkit 2
"{C5BD220A-EFE8-48A5-B70E-9503D535FACE}" = Adobe WAS CS3
"{C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B}" = NVIDIA PhysX
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client
"{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files
"{D8F3A332-4400-4250-B0FC-38F31D5CE2ED}" = HP Fotocamere Photosmart 9.0
"{DADD7B8A-BCB0-44F5-967A-ECB6B4F2ECD9}" = Adobe Color Common Settings
"{DC7B7288-428A-46F7-BF69-103B37856C32}" = FootChecker 4.0
"{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}" = Adobe Color JA Extra Settings
"{E0ABA486-A39B-4B96-BD80-757396151079}" = Windows Live Messenger
"{E1180142-3B31-4DCC-9D27-7AC2D37662BF}" = LightScribe 1.4.124.1
"{E2662C24-B31E-4349-A084-32EB76E8B760}" = BufferChm
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{E31A24A7-CF73-42B7-8FA1-26644296C9E3}" = Windows Live Mail
"{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}" = Windows Media Encoder 9 Series
"{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3
"{EDFD3B5E-707D-4070-B6A6-3877270A6A00}" = Adobe Flash Video Encoder
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"{F72E2DDC-3DB8-4190-A21D-63883D955FE7}" = PSSWCORE
"{FD8D8B04-BEAD-4A55-AA1D-62D2373E7DEA}" = Status
"{FF29A7E2-FF40-4D07-B7E4-2093DE59E10A}" = Adobe Color NA Extra Settings
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"3A5DEFA413DDE699DBA6EBE0A63534ACA524D30F" = Pacchetto driver Windows - Nokia pccsmcfd (10/12/2007 6.85.4.0)
"6194C28A8F62DD817EA1B918E6E46E806A21B452" = Pacchetto driver Windows - MobileTop (sshpmdm) Modem (02/23/2007 2.5.0.0)
"65B6FE5418CE28F4D72543FB2D964C3CEC83F161" = Pacchetto driver Windows - MobileTop (sshpusb) USB (02/23/2007 2.5.0.0)
"ActiveTouchMeetingClient" = WebEx
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe_41c8421d18f3dac73ebc65cdb4d329c" = Aggiungi o rimuovi Adobe Creative Suite 3 Web Premium
"AIX-V2_mappack_ITHH" = AIX-V2_mappack_ITHH
"ALCATEL PC Suite_is1" = ALCATEL PC Suite V6.3.3
"Allied Intent Xtended" = Allied Intent Xtended 2.0
"Allway Sync_is1" = Allway Sync version 8.3.1
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"CamStudio" = CamStudio
"CCleaner" = CCleaner (remove only)
"Convert DOC to PDF For Word_is1" = Convert DOC to PDF For Word 3.50
"EADM" = EA Download Manager
"eMule" = eMule
"ERUNT_is1" = ERUNT 1.1j
"Excel to MySQL 4.3 Demo" = Excel to MySQL 4.3 Demo
"FileZilla Client" = FileZilla Client 3.3.0.1
"Free PDF to Word Doc Converter_is1" = Free PDF to Word Doc Converter v1.1
"Free PS Convert driver_is1" = Free PS Convert driver 8.15
"Garden Planner_is1" = Garden Planner 2.3
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"HP Imaging Device Functions" = HP Imaging Device Functions 9.0
"HP Photosmart Essential" = HP Photosmart Essential 2.01
"HP Solution Center & Imaging Support Tools" = HP Solution Center 9.0
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"InstallShield_{218D2E7E-37A9-4B5D-B4A1-13FD6B8B9D17}" = Corel DVD MovieFactory 7 TBYB
"InstallShield_{AF7E85DC-317C-47F5-810E-B82EE093A612}" = Samsung New PC Studio USB Driver Installer
"InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"MAGIX Xtreme Web Designer 5 Download Version UK" = MAGIX Xtreme Web Designer 5 Download Version 5.0.1.10136 (UK)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Marvell Miniport Driver" = Marvell Miniport Driver
"MatlabR2006b" = MATLAB R2006b
"MediaNavigation.CDLabelPrint" = CD-LabelPrint
"Messenger Plus! Live" = Messenger Plus! Live
"MetFileRegenerator" = MetFileRegenerator v3.0.16
"Microsoft .NET Framework 2.0 Language Pack - ITA" = Microsoft .NET Framework 2.0 - Language Pack (italiano)
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"mIRC" = mIRC
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"nbi-glassfish-2.0.2.4.20080515" = GlassFish V2 UR2
"nbi-glassfish-mod-3.0.0.28.20081022" = GlassFish v3 Prelude
"nbi-nb-base-6.5.0.0.200811100001" = NetBeans IDE 6.5
"nbi-tomcat-6.0.16.0.0" = Apache Tomcat 6.0.16
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA Drivers" = NVIDIA Drivers
"NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager
"Orb" = Winamp Remote
"Poker Club by Lottomatica" = Poker Club by Lottomatica
"PokerStars.it" = PokerStars.it
"PSN" = Post-it® Software Notes Lite
"PunkBusterSvc" = PunkBuster Services
"SAMSUNG Mobile Composite Device" = SAMSUNG Mobile Composite Device Software
"SAMSUNG Mobile Modem" = SAMSUNG Mobile Modem Driver Set
"Samsung Mobile Modem Device" = Samsung Mobile Modem Device Software
"Samsung Mobile phone USB driver" = Samsung Mobile phone USB driver Software
"SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software
"SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software
"SAMSUNG USB Mobile Device" = SAMSUNG USB Mobile Device Software
"SWI-Prolog" = SWI-Prolog (remove only)
"SystemRequirementsLab" = System Requirements Lab
"Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2
"Uninstall Tool_is1" = Uninstall Tool
"VLC media player" = VLC media player 1.0.1
"Winamp" = Winamp
"Windows Live OneCare safety scanner" = Windows Live OneCare safety scanner
"Windows Media Encoder 9" = Windows Media Encoder 9 Series
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR gestione archivi
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"uTorrent" = µTorrent

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 22/11/2008 12:38:30 | Computer Name = SIMONEFISSO | Source = AVG7 | ID = 100
Description = 2008-11-22 16:38:30,234 SIMONEFISSO [001484:001492] ERROR 000 AVG7.AM
HKEY_CLASSES_ROOT\AppId\{A434D6BB-090E-4DF6-8B03-AA04A6F58804} opening failed

Error - 22/11/2008 13:49:02 | Computer Name = SIMONEFISSO | Source = AVG7 | ID = 100
Description = 2008-11-22 17:49:02,625 SIMONEFISSO [000640:000644] ERROR 000 AVG7.AM
HKEY_CLASSES_ROOT\AppId\{A434D6BB-090E-4DF6-8B03-AA04A6F58804} opening failed

Error - 23/11/2008 07:32:13 | Computer Name = SIMONEFISSO | Source = AVG7 | ID = 100
Description = 2008-11-23 11:32:13,718 SIMONEFISSO [001516:001532] ERROR 000 AVG7.AM
HKEY_CLASSES_ROOT\AppId\{A434D6BB-090E-4DF6-8B03-AA04A6F58804} opening failed

Error - 24/11/2008 07:08:05 | Computer Name = SIMONEFISSO | Source = AVG7 | ID = 100
Description = 2008-11-24 11:08:05,546 SIMONEFISSO [000504:000508] ERROR 000 AVG7.AM
HKEY_CLASSES_ROOT\AppId\{A434D6BB-090E-4DF6-8B03-AA04A6F58804} opening failed

Error - 24/11/2008 13:45:14 | Computer Name = SIMONEFISSO | Source = AVG7 | ID = 100
Description = 2008-11-24 17:45:14,203 SIMONEFISSO [000436:000696] ERROR 000 AVG7.AM
HKEY_CLASSES_ROOT\AppId\{A434D6BB-090E-4DF6-8B03-AA04A6F58804} opening failed

Error - 25/11/2008 08:14:21 | Computer Name = SIMONEFISSO | Source = AVG7 | ID = 100
Description = 2008-11-25 12:14:21,546 SIMONEFISSO [001936:001940] ERROR 000 AVG7.AM
HKEY_CLASSES_ROOT\AppId\{A434D6BB-090E-4DF6-8B03-AA04A6F58804} opening failed

Error - 26/11/2008 09:14:26 | Computer Name = SIMONEFISSO | Source = AVG7 | ID = 100
Description = 2008-11-26 13:14:26,484 SIMONEFISSO [000540:000544] ERROR 000 AVG7.AM
HKEY_CLASSES_ROOT\AppId\{A434D6BB-090E-4DF6-8B03-AA04A6F58804} opening failed

Error - 27/11/2008 02:17:28 | Computer Name = SIMONEFISSO | Source = AVG7 | ID = 100
Description = 2008-11-27 06:17:28,796 SIMONEFISSO [001476:001516] ERROR 000 AVG7.AM
HKEY_CLASSES_ROOT\AppId\{A434D6BB-090E-4DF6-8B03-AA04A6F58804} opening failed

Error - 28/11/2008 12:28:41 | Computer Name = SIMONEFISSO | Source = AVG7 | ID = 100
Description = 2008-11-28 16:28:41,078 SIMONEFISSO [001052:001056] ERROR 000 AVG7.AM
HKEY_CLASSES_ROOT\AppId\{A434D6BB-090E-4DF6-8B03-AA04A6F58804} opening failed

Error - 29/11/2008 08:29:46 | Computer Name = SIMONEFISSO | Source = AVG7 | ID = 100
Description = 2008-11-29 12:29:46,375 SIMONEFISSO [001724:001512] ERROR 000 AVG7.AM
HKEY_CLASSES_ROOT\AppId\{A434D6BB-090E-4DF6-8B03-AA04A6F58804} opening failed

[ OSession Events ]
Error - 06/05/2009 04:06:43 | Computer Name = SIMONEFISSO | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 3, Application Name: Microsoft Office PowerPoint, Application
Version: 12.0.6300.5000, Microsoft Office Version: 12.0.6215.1000. This session
lasted 1071 seconds with 780 seconds of active time. This session ended with a
crash.

[ System Events ]
Error - 10/12/2009 06:00:24 | Computer Name = SIMONEFISSO | Source = Disk | ID = 262151
Description = Rilevato blocco danneggiato sulla periferica \Device\Harddisk0\D.

Error - 10/12/2009 06:00:27 | Computer Name = SIMONEFISSO | Source = Disk | ID = 262151
Description = Rilevato blocco danneggiato sulla periferica \Device\Harddisk0\D.

Error - 10/12/2009 06:00:30 | Computer Name = SIMONEFISSO | Source = Disk | ID = 262151
Description = Rilevato blocco danneggiato sulla periferica \Device\Harddisk0\D.

Error - 10/12/2009 06:00:33 | Computer Name = SIMONEFISSO | Source = Disk | ID = 262151
Description = Rilevato blocco danneggiato sulla periferica \Device\Harddisk0\D.

Error - 10/12/2009 06:00:36 | Computer Name = SIMONEFISSO | Source = Disk | ID = 262151
Description = Rilevato blocco danneggiato sulla periferica \Device\Harddisk0\D.

Error - 10/12/2009 06:00:39 | Computer Name = SIMONEFISSO | Source = Disk | ID = 262151
Description = Rilevato blocco danneggiato sulla periferica \Device\Harddisk0\D.

Error - 10/12/2009 06:00:42 | Computer Name = SIMONEFISSO | Source = Disk | ID = 262151
Description = Rilevato blocco danneggiato sulla periferica \Device\Harddisk0\D.

Error - 10/12/2009 06:00:45 | Computer Name = SIMONEFISSO | Source = Disk | ID = 262151
Description = Rilevato blocco danneggiato sulla periferica \Device\Harddisk0\D.

Error - 10/12/2009 06:00:48 | Computer Name = SIMONEFISSO | Source = Disk | ID = 262151
Description = Rilevato blocco danneggiato sulla periferica \Device\Harddisk0\D.

Error - 10/12/2009 06:00:51 | Computer Name = SIMONEFISSO | Source = Disk | ID = 262151
Description = Rilevato blocco danneggiato sulla periferica \Device\Harddisk0\D.


< End of report >
  • 0

#3
onesim29984
Posted 11 December 2009 - 02:48 AM

onesim29984

    New Member

  • Topic Starter
  • Member
  • Pip
  • 3 posts
i'm resolved this problem!

the virus was in system recovery point!

i disabled it, and scan is ok now!

at last i reactivate it!

thanks bye
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP