Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

computer keeps freezing please help


  • Please log in to reply

#1
gmd1

gmd1

    New Member

  • Member
  • Pip
  • 1 posts
i would be so grateful if someone could shed some light as to why my computer keeps freezing
thankyou







OTL logfile created on: 06/10/2011 19.36.14 - Run 1
OTL by OldTimer - Version 3.2.29.1 Folder = C:\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000410 | Country: Italia | Language: ITA | Date Format: dd/MM/yyyy

3,00 Gb Total Physical Memory | 1,59 Gb Available Physical Memory | 53,18% Memory free
6,23 Gb Paging File | 5,01 Gb Available in Paging File | 80,35% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 298,08 Gb Total Space | 75,64 Gb Free Space | 25,38% Space Free | Partition Type: NTFS

Computer Name: PC-GIUSEPPE | User Name: Giuseppe | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/10/06 19.36.01 | 000,582,656 | ---- | M] (OldTimer Tools) -- C:\Downloads\OTL.exe
PRC - [2011/08/11 19.06.19 | 000,243,360 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashUtil10v_ActiveX.exe
PRC - [2011/06/15 15.16.48 | 000,997,920 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2011/04/27 15.39.26 | 000,208,944 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
PRC - [2011/04/27 15.39.26 | 000,011,736 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
PRC - [2011/03/10 21.55.01 | 004,893,080 | ---- | M] (Pando Networks) -- C:\Program Files\Pando Networks\Pando\Pando.exe
PRC - [2011/02/16 00.18.16 | 002,388,264 | ---- | M] (Apple Inc.) -- C:\Program Files\Safari\Safari.exe
PRC - [2009/11/10 07.41.52 | 002,788,152 | ---- | M] (www.BitComet.com) -- C:\Program Files\BitComet\BitComet.exe
PRC - [2009/10/26 15.46.54 | 001,458,176 | ---- | M] (Motorola Inc.) -- C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
PRC - [2009/07/24 15.05.24 | 000,139,120 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft LifeCam\MSCamS32.exe
PRC - [2009/06/26 17.21.00 | 000,757,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\vVX3000.exe
PRC - [2009/04/11 08.27.36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2007/01/15 17.14.54 | 000,147,456 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
PRC - [2007/01/15 17.13.50 | 001,208,320 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe


========== Modules (No Company Name) ==========

MOD - [2011/08/19 08.50.07 | 006,277,280 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32.dll
MOD - [2011/02/06 12.31.58 | 001,241,888 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2010/11/17 14.16.34 | 000,324,896 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libtidy.dll
MOD - [2010/06/03 13.46.00 | 000,067,872 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2008/09/16 21.18.06 | 000,133,120 | ---- | M] () -- C:\Program Files\WinRAR\rarext.dll


========== Win32 Services (SafeList) ==========

SRV - [2011/04/27 15.39.26 | 000,208,944 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe -- (NisSrv)
SRV - [2011/04/27 15.39.26 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2009/07/24 15.05.24 | 000,139,120 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft LifeCam\MSCamS32.exe -- (MSCamSvc)
SRV - [2008/01/19 09.38.24 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)


========== Driver Services (SafeList) ==========

DRV - [2011/10/06 18.43.35 | 000,028,752 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{5686EA73-1829-4FBB-BBB1-F2B28093B98F}\MpKsl88d6dbed.sys -- (MpKsl88d6dbed)
DRV - [2011/10/06 18.36.33 | 000,028,752 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{5686EA73-1829-4FBB-BBB1-F2B28093B98F}\MpKslf6a28c2b.sys -- (MpKslf6a28c2b)
DRV - [2011/10/06 18.20.40 | 000,028,752 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{5686EA73-1829-4FBB-BBB1-F2B28093B98F}\MpKslf0b107b3.sys -- (MpKslf0b107b3)
DRV - [2011/10/06 16.46.28 | 000,028,752 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{5686EA73-1829-4FBB-BBB1-F2B28093B98F}\MpKsl9b541d46.sys -- (MpKsl9b541d46)
DRV - [2011/04/27 15.25.24 | 000,065,024 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2011/04/18 13.18.50 | 000,043,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\MpNWMon.sys -- (MpNWMon)
DRV - [2010/07/10 06.37.00 | 011,008,040 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2010/04/19 20.29.20 | 000,018,432 | ---- | M] (Apple Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\netaapl.sys -- (Netaapl)
DRV - [2009/10/26 16.09.06 | 001,095,936 | ---- | M] (Motorola Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\smserial.sys -- (smserial)
DRV - [2009/06/26 17.21.02 | 001,956,352 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VX3000.sys -- (VX3000)
DRV - [2009/04/11 06.46.08 | 000,015,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usb8023.sys -- (USB_RNDIS)
DRV - [2008/10/09 16.42.42 | 000,017,408 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\KMWDFILTER.sys -- (KMWDFILTER)
DRV - [2008/09/25 18.58.32 | 000,021,656 | ---- | M] (VIA Technologies,Inc) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\xfilt.sys -- (xfilt)
DRV - [2008/09/25 18.57.20 | 000,012,952 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\videX32.sys -- (videX32)
DRV - [2008/09/22 04.20.42 | 000,043,520 | ---- | M] (VIA Technologies, Inc. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\fetnd6v.sys -- (FETND6V)
DRV - [2005/09/24 00.18.32 | 000,171,520 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\MarvinBus.sys -- (MarvinBus)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = ${URL_SEARCHPAGE}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoo...earchTerms}&f=4
IE - HKLM\..\URLSearchHook: {31c7d459-9cc3-44f2-9dca-fc11795309b4} - C:\Program Files\IObitCom\tbIOb1.dll (Conduit Ltd.)
IE - HKLM\..\URLSearchHook: {7331ed91-b43e-4afe-92a8-f54e8976633f} - C:\Program Files\Download-IT\prxtbDow2.dll (Conduit Ltd.)

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = ${URL_SEARCHPAGE}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://it.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = it
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 4F BA 3A D9 0D E4 CB 01 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\URLSearchHook: {2c965f3f-8efd-4bfc-a2c5-1672845fdbbf} - No CLSID value found
IE - HKCU\..\URLSearchHook: {31c7d459-9cc3-44f2-9dca-fc11795309b4} - C:\Program Files\IObitCom\tbIOb1.dll (Conduit Ltd.)
IE - HKCU\..\URLSearchHook: {7331ed91-b43e-4afe-92a8-f54e8976633f} - C:\Program Files\Download-IT\prxtbDow2.dll (Conduit Ltd.)
IE - HKCU\..\URLSearchHook: {e3393495-8103-46a0-8181-270273eddd60} - No CLSID value found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://start.facemoo...ds.com/?a=cdob"
FF - prefs.js..keyword.URL: "http://start.facemoo...uage}&src=chrm"

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.3: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\OfferBox\[email protected]

[2010/10/27 15.33.05 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Giuseppe\AppData\Roaming\mozilla\Extensions
[2010/11/15 18.06.18 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Giuseppe\AppData\Roaming\mozilla\Firefox\Profiles\76vi0mr0.default\extensions
[2010/10/27 15.34.07 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Giuseppe\AppData\Roaming\mozilla\Firefox\Profiles\76vi0mr0.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010/11/15 18.06.18 | 000,000,000 | ---D | M] (Facemoods) -- C:\Users\Giuseppe\AppData\Roaming\mozilla\Firefox\Profiles\76vi0mr0.default\extensions\[email protected]
[2010/10/28 08.25.03 | 000,000,000 | ---D | M] (Window Shopper - Powered by Superfish) -- C:\Users\Giuseppe\AppData\Roaming\mozilla\Firefox\Profiles\76vi0mr0.default\extensions\[email protected]
[2010/10/27 15.20.04 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\mozilla firefox\extensions
[2010/10/12 22.05.01 | 000,000,744 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-it.xml
[2010/10/21 17.57.06 | 000,002,036 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fcmdSrchcdob.xml
[2010/10/12 22.05.01 | 000,000,825 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\hoepli.xml
[2010/10/28 08.25.04 | 000,002,039 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\McSiteAdvisor.xml
[2010/10/12 22.05.01 | 000,001,182 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-it.xml
[2010/10/12 22.05.01 | 000,000,953 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-it.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?client=chrome&hl={language}&q={searchTerms}
CHR - Extension: Facemoods = C:\Users\Giuseppe\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif\1.2.0_0\

O1 HOSTS File: ([2006/09/18 23.41.30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O2 - BHO: (IObitCom Toolbar) - {31c7d459-9cc3-44f2-9dca-fc11795309b4} - C:\Program Files\IObitCom\tbIOb1.dll (Conduit Ltd.)
O2 - BHO: (BitComet Helper) - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.3.7.16.dll (BitComet)
O2 - BHO: (CescrtHlpr Object) - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files\facemoods.com\facemoods\1.4.17.1\bh\facemoods.dll (facemoods.com BHO)
O2 - BHO: (Download-IT Toolbar) - {7331ed91-b43e-4afe-92a8-f54e8976633f} - C:\Program Files\Download-IT\prxtbDow2.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (no name) - - No CLSID value found.
O3 - HKLM\..\Toolbar: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Download-IT Toolbar) - {7331ed91-b43e-4afe-92a8-f54e8976633f} - C:\Program Files\Download-IT\prxtbDow2.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (facemoods Toolbar) - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Program Files\facemoods.com\facemoods\1.4.17.1\facemoodsTlbr.dll (facemoods.com)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2C965F3F-8EFD-4BFC-A2C5-1672845FDBBF} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (IObitCom Toolbar) - {31C7D459-9CC3-44F2-9DCA-FC11795309B4} - C:\Program Files\IObitCom\tbIOb1.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (Download-IT Toolbar) - {7331ED91-B43E-4AFE-92A8-F54E8976633F} - C:\Program Files\Download-IT\prxtbDow2.dll (Conduit Ltd.)
O4 - HKLM..\Run: [LanguageShortcut] C:\Program Files\CyberLink\PowerDVD\Language\Language.exe ()
O4 - HKLM..\Run: [LifeCam] C:\Program Files\Microsoft LifeCam\LifeExp.exe (Microsoft Corporation)
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe (Motorola Inc.)
O4 - HKLM..\Run: [VX3000] C:\Windows\vVX3000.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKCU..\Run: [ccleaner] C:\Program Files\CCleaner\CCleaner.exe (Piriform Ltd)
O4 - HKCU..\Run: [Pando] C:\Program Files\Pando Networks\Pando\pando.exe (Pando Networks)
O4 - HKCU..\RunOnce: [Shockwave Updater] C:\Windows\system32\Adobe\Shockwave 11\SwHelper_1150600.exe -Update -1150600 -"Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0; Trident/4.0; GTB6.5; SLCC1; .NET CLR 2.0.50727; Media Center PC 5.0; .NET CLR 3.5.30729; InfoPath.1; .NET CLR 3.0.30729; OfficeLiveConnector.1.5; OfficeLivePatch.1.3; .NET4.0C)" -"http://www8.agame.co...gogames_it.htm" File not found
O4 - Startup: C:\Users\Giuseppe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~2\MICROS~2\OFFICE11\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll (Google Inc.)
O8 - Extra context menu item: Scarica tutti i video usando BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: Scarica tutto usando BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: Scarica usando &BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Ricerche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - C:\Program Files\BitComet\tools\BitCometBHO_1.3.7.16.dll (BitComet)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {1C11B948-582A-433F-A98D-A8C4D5CC64F2} http://kitchenplanne...yerAX_Win32.cab (20-20 3D Viewer)
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} http://download.divx...owserPlugin.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{16A12CBD-385D-4CC0-828E-FF8751B67C24}: DhcpNameServer = 62.13.169.92 62.13.169.93
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E319CC9D-8320-4136-8C38-D37D7AE17A9B}: DhcpNameServer = 83.103.25.250 62.101.93.101
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E4D80963-7256-4D53-B73C-F4DAD0CE4C1C}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\PROGRA~2\COMMON~1\MICROS~1\WEBCOM~1\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\PROGRA~2\COMMON~1\MICROS~1\WEBCOM~1\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 23.43.36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{3c9073cf-12fc-11df-9e87-001617e41bd5}\Shell - "" = AutoRun
O33 - MountPoints2\{3c9073cf-12fc-11df-9e87-001617e41bd5}\Shell\AutoRun\command - "" = K:\LaunchU3.exe -a
O33 - MountPoints2\K\Shell - "" = AutoRun
O33 - MountPoints2\K\Shell\AutoRun\command - "" = K:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk /p \??\L:)
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/10/06 18.44.58 | 000,000,000 | ---D | C] -- C:\Users\Giuseppe\AppData\Local\{7C540E4B-8ADB-4269-84DF-E7849D8E0835}
[2011/10/06 18.44.37 | 000,000,000 | ---D | C] -- C:\Users\Giuseppe\AppData\Local\{8CF61A00-B42D-4C37-8068-1119A91A04CE}
[2011/10/06 18.21.28 | 000,000,000 | ---D | C] -- C:\Users\Giuseppe\AppData\Local\{D7ACF81C-7B6F-4488-BFBC-20DDB0A845CC}
[2011/10/06 16.47.49 | 000,000,000 | ---D | C] -- C:\Users\Giuseppe\AppData\Local\{CEC0572C-6D48-4B0A-9C52-657357C4E9C7}
[2011/10/06 16.47.30 | 000,000,000 | ---D | C] -- C:\Users\Giuseppe\AppData\Local\{76924901-1BF2-4985-BA93-A0D41E34FEC7}
[2011/10/06 16.31.57 | 000,000,000 | ---D | C] -- C:\Users\Giuseppe\AppData\Local\{642503C9-9538-42E9-B849-554BD1766A63}
[2011/10/06 16.31.37 | 000,000,000 | ---D | C] -- C:\Users\Giuseppe\AppData\Local\{A820DE71-D570-4CCB-80DD-304B4577580D}
[2011/10/06 16.13.40 | 000,000,000 | ---D | C] -- C:\Users\Giuseppe\AppData\Local\{F3739FF8-ACFD-4065-BD61-49614542B58C}
[2011/10/06 16.11.44 | 000,000,000 | ---D | C] -- C:\Users\Giuseppe\AppData\Local\{D18A4E69-F7D2-416F-8A19-CEDDDC5FDD74}
[2011/10/06 16.11.24 | 000,000,000 | ---D | C] -- C:\Users\Giuseppe\AppData\Local\{D3B3A34F-CDB6-457A-8224-D057C1E14407}
[2011/10/06 16.08.27 | 000,000,000 | ---D | C] -- C:\Users\Giuseppe\AppData\Local\{3869CA16-A2AC-4E43-A566-CB708BEC5E43}
[2011/10/06 15.33.29 | 000,000,000 | ---D | C] -- C:\Users\Giuseppe\AppData\Local\{30ADB17A-3313-4134-9B56-DE34690DEACE}
[2011/10/06 15.32.52 | 000,000,000 | ---D | C] -- C:\Users\Giuseppe\AppData\Local\{D5C0105B-87FD-4C27-B158-FC7644C2A351}
[2011/10/04 19.38.30 | 000,000,000 | ---D | C] -- C:\Users\Giuseppe\AppData\Local\{6C31CC35-8E27-4573-A8E9-A2CC02B41E61}
[2011/10/04 19.38.07 | 000,000,000 | ---D | C] -- C:\Users\Giuseppe\AppData\Local\{83EFF185-075A-4153-880D-37C26ED42892}
[2011/10/04 18.41.08 | 000,000,000 | ---D | C] -- C:\Users\Giuseppe\AppData\Local\{43948DCC-58F4-4371-9CD2-10ABE67E363D}
[2011/10/04 18.40.47 | 000,000,000 | ---D | C] -- C:\Users\Giuseppe\AppData\Local\{8BD26D01-925F-4A5C-AD1F-40935B238471}
[2011/10/04 18.37.04 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2011/09/16 17.31.42 | 000,000,000 | ---D | C] -- C:\Users\Giuseppe\AppData\Local\{CD6C8602-E909-4DB5-98BF-FA9E30B9B715}
[2011/09/16 17.31.26 | 000,000,000 | ---D | C] -- C:\Users\Giuseppe\AppData\Local\{31B17066-011D-4EB5-B70C-89AC2B7C1FBF}
[2011/09/07 22.52.53 | 000,000,000 | ---D | C] -- C:\Users\Giuseppe\AppData\Local\{BD830870-D4B4-442B-8AA4-5158FF944762}
[2011/09/07 22.52.42 | 000,000,000 | ---D | C] -- C:\Users\Giuseppe\AppData\Local\{8326CFC6-3380-49DF-AA86-495500792E18}

========== Files - Modified Within 30 Days ==========

[2011/10/06 19.07.00 | 000,001,138 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/10/06 18.44.07 | 000,056,213 | ---- | M] () -- C:\ProgramData\nvModes.001
[2011/10/06 18.43.45 | 000,004,352 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011/10/06 18.43.45 | 000,004,352 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/10/06 18.43.43 | 000,001,134 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/10/06 18.43.42 | 000,000,376 | ---- | M] () -- C:\Windows\tasks\AWC Startup.job
[2011/10/06 18.43.27 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/10/06 16.46.57 | 000,056,213 | ---- | M] () -- C:\ProgramData\nvModes.dat
[2011/10/06 15.58.28 | 000,221,696 | ---- | M] () -- C:\Users\Giuseppe\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/10/06 15.54.12 | 000,001,887 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2011/10/06 15.50.47 | 000,002,659 | ---- | M] () -- C:\Users\Giuseppe\Desktop\Microsoft Office Word 2003.lnk
[2011/09/16 17.38.57 | 000,676,662 | ---- | M] () -- C:\Windows\System32\perfh010.dat
[2011/09/16 17.38.57 | 000,600,802 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/09/16 17.38.57 | 000,125,234 | ---- | M] () -- C:\Windows\System32\perfc010.dat
[2011/09/16 17.38.57 | 000,105,716 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/09/07 22.56.39 | 000,001,971 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk

========== Files Created - No Company Name ==========

[2010/01/30 20.07.41 | 000,000,270 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2009/12/24 15.24.48 | 000,000,056 | -H-- | C] () -- C:\Windows\System32\ezsidmv.dat
[2009/12/24 09.38.33 | 000,056,213 | ---- | C] () -- C:\ProgramData\nvModes.dat
[2009/12/24 09.38.33 | 000,056,213 | ---- | C] () -- C:\ProgramData\nvModes.001
[2009/12/22 19.04.35 | 000,000,000 | ---- | C] () -- C:\Windows\ViewNX.INI
[2009/12/22 18.47.58 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Repeat Routines
[2009/12/22 18.47.58 | 000,000,268 | RH-- | C] () -- C:\Users\Giuseppe\AppData\Roaming\Project Templates
[2009/12/22 18.47.58 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLdw.DAT
[2009/12/22 18.46.09 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Radio Sounds
[2009/12/22 18.46.09 | 000,000,268 | RH-- | C] () -- C:\Users\Giuseppe\AppData\Roaming\PrintsService
[2009/12/22 18.46.09 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLdu.DAT
[2009/09/11 11.26.41 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009/09/11 11.26.41 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2009/08/03 16.07.42 | 000,403,816 | ---- | C] () -- C:\Windows\System32\OGACheckControl.dll
[2009/08/03 16.07.42 | 000,230,768 | ---- | C] () -- C:\Windows\System32\OGAEXEC.exe
[2009/06/26 17.21.02 | 000,015,498 | ---- | C] () -- C:\Windows\VX3000.ini
[2009/01/11 17.52.15 | 000,000,135 | ---- | C] () -- C:\Windows\disney.ini
[2009/01/04 23.12.40 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2009/01/04 00.01.09 | 000,000,680 | ---- | C] () -- C:\Users\Giuseppe\AppData\Local\d3d9caps.dat
[2008/12/12 23.56.47 | 000,003,057 | ---- | C] () -- C:\Windows\Ascd_tmp.ini
[2008/11/25 21.41.32 | 000,221,696 | ---- | C] () -- C:\Users\Giuseppe\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/11/24 20.12.38 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2008/11/24 16.01.37 | 000,000,424 | ---- | C] () -- C:\Windows\ODBC.INI
[2007/12/28 09.22.04 | 000,010,296 | ---- | C] () -- C:\Windows\System32\drivers\ASUSHWIO.SYS
[2007/01/26 03.04.12 | 000,138,752 | ---- | C] () -- C:\Windows\System32\mase32.dll
[2007/01/26 03.04.12 | 000,027,648 | ---- | C] () -- C:\Windows\System32\ma32.dll
[2006/11/06 03.52.05 | 000,676,662 | ---- | C] () -- C:\Windows\System32\perfh010.dat
[2006/11/06 03.52.05 | 000,331,172 | ---- | C] () -- C:\Windows\System32\perfi010.dat
[2006/11/06 03.52.05 | 000,125,234 | ---- | C] () -- C:\Windows\System32\perfc010.dat
[2006/11/06 03.52.05 | 000,036,614 | ---- | C] () -- C:\Windows\System32\perfd010.dat
[2006/11/02 14.57.28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 14.47.37 | 000,465,912 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006/11/02 14.35.32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 12.33.01 | 000,600,802 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006/11/02 12.33.01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006/11/02 12.33.01 | 000,105,716 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006/11/02 12.33.01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006/11/02 12.23.21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006/11/02 10.58.30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006/11/02 10.19.00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006/11/02 09.40.29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/11/02 09.25.31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2006/10/27 09.26.56 | 000,069,632 | ---- | C] () -- C:\Windows\System32\vuins32.dll
[2003/04/01 12.49.16 | 000,005,360 | ---- | C] () -- C:\Windows\System32\OUTLPERF.INI

========== LOP Check ==========

[2010/02/04 21.48.49 | 000,000,000 | ---D | M] -- C:\Users\Giuseppe\AppData\Roaming\IObit
[2009/12/22 19.03.31 | 000,000,000 | ---D | M] -- C:\Users\Giuseppe\AppData\Roaming\Nikon
[2011/08/19 08.45.37 | 000,000,000 | ---D | M] -- C:\Users\Giuseppe\AppData\Roaming\Opera
[2010/11/15 15.11.35 | 000,000,000 | ---D | M] -- C:\Users\Giuseppe\AppData\Roaming\Software Informer
[2010/11/15 18.22.08 | 000,000,000 | ---D | M] -- C:\Users\Giuseppe\AppData\Roaming\TeamViewer
[2008/11/26 10.46.35 | 000,000,000 | ---D | M] -- C:\Users\Giuseppe\AppData\Roaming\uTorrent
[2009/09/09 17.50.34 | 000,000,000 | ---D | M] -- C:\Users\Giuseppe\AppData\Roaming\WeatherDPA
[2010/11/14 15.18.25 | 000,000,000 | ---D | M] -- C:\Users\Giuseppe\AppData\Roaming\WindSolutions
[2009/09/09 17.50.32 | 000,000,000 | ---D | M] -- C:\Users\Giuseppe\AppData\Roaming\Zango
[2011/10/06 18.43.42 | 000,000,376 | ---- | M] () -- C:\Windows\Tasks\AWC Startup.job
[2011/10/06 16.45.36 | 000,032,584 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2011/04/17 22.41.28 | 000,000,390 | ---- | M] () -- C:\Windows\Tasks\SmartDefrag.job

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 130 bytes -> C:\ProgramData\TEMP:43A31AEA

< End of report >
most grateful if someone could help me sortout this pr
  • 0

Advertisements







Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP