gigio3367

Utenti
  • Numero contenuti

    16
  • Iscritto

  • Ultima visita

Su gigio3367

  • Livello
    Iniziato
  1. aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software Run date: 2013-02-20 10:56:57 ----------------------------- 10:56:57.890 OS Version: Windows 5.1.2600 Service Pack 3 10:56:57.890 Number of processors: 4 586 0x402 10:56:57.890 ComputerName: STUDIO-8BAE2A6B UserName: Luigi 10:56:59.406 Initialize success 10:57:36.015 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-6 10:57:36.015 Disk 0 Vendor: STM3500418AS CC38 Size: 476940MB BusType: 3 10:57:36.015 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP2T1L0-e 10:57:36.015 Disk 1 Vendor: STM3500418AS CC38 Size: 476940MB BusType: 3 10:57:36.031 Disk 2 \Device\Harddisk2\DR2 -> \Device\Ide\IdeDeviceP3T0L0-1a 10:57:36.031 Disk 2 Vendor: STM3500418AS CC38 Size: 476940MB BusType: 3 10:57:36.046 Disk 0 MBR read successfully 10:57:36.046 Disk 0 MBR scan 10:57:36.046 Disk 0 Windows XP default MBR code 10:57:36.062 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 99998 MB offset 63 10:57:36.062 Disk 0 Partition - 00 0F Extended LBA 376931 MB offset 204796620 10:57:36.078 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 199996 MB offset 204796683 10:57:36.078 Disk 0 Partition - 00 05 Extended 176934 MB offset 614389860 10:57:36.093 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 176934 MB offset 614389923 10:57:36.109 Disk 0 scanning sectors +976752000 10:57:36.265 Disk 0 scanning C:\WINDOWS\system32\drivers 10:57:42.968 Service scanning 10:58:00.125 Modules scanning 10:58:05.531 Disk 0 trace - called modules: 10:58:05.593 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys 10:58:05.671 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x89b07ab8] 10:58:05.750 3 CLASSPNP.SYS[f7637fd7] -> nt!IofCallDriver -> \Device\0000006f[0x89b3b9e8] 10:58:05.812 5 ACPI.sys[f75ae620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-6[0x89b3bd98] 10:58:05.890 Scan finished successfully 10:58:25.234 Disk 0 MBR has been saved successfully to "J:\MBR.dat" 10:58:25.265 The log file has been saved successfully to "J:\aswMBR.txt" MBR.zip
  2. OTL logfile created on: 20/02/2013 10.31.45 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = J:\ Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000410 | Country: Italia | Language: ITA | Date Format: dd/MM/yyyy 2,00 Gb Total Physical Memory | 1,35 Gb Available Physical Memory | 67,71% Memory free 3,85 Gb Paging File | 3,45 Gb Available in Paging File | 89,51% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programmi Drive C: | 97,65 Gb Total Space | 3,82 Gb Free Space | 3,91% Space Free | Partition Type: NTFS Drive D: | 232,88 Gb Total Space | 231,20 Gb Free Space | 99,28% Space Free | Partition Type: NTFS Drive E: | 465,76 Gb Total Space | 342,69 Gb Free Space | 73,58% Space Free | Partition Type: NTFS Drive F: | 195,31 Gb Total Space | 193,72 Gb Free Space | 99,19% Space Free | Partition Type: NTFS Drive G: | 172,79 Gb Total Space | 172,62 Gb Free Space | 99,90% Space Free | Partition Type: NTFS Drive H: | 232,88 Gb Total Space | 227,81 Gb Free Space | 97,83% Space Free | Partition Type: NTFS Drive J: | 971,61 Mb Total Space | 664,63 Mb Free Space | 68,40% Space Free | Partition Type: FAT Drive K: | 3,64 Gb Total Space | 0,68 Gb Free Space | 18,66% Space Free | Partition Type: FAT32 Computer Name: STUDIO-8BAE2A6B | User Name: Luigi | Logged in as Administrator. Boot Mode: SafeMode | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - J:\OTL.exe (OldTimer Tools) PRC - C:\Programmi\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation) PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation) ========== Modules (No Company Name) ========== MOD - C:\Programmi\File comuni\Microsoft Shared\OFFICE12\MSPTLS.DLL () ========== Services (SafeList) ========== SRV - (winmgmt) -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\19144265.exe () SRV - (AdobeFlashPlayerUpdateSvc) -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated) SRV - (JavaQuickStarterService) -- C:\Programmi\Java\jre7\bin\jqs.exe (Oracle Corporation) SRV - (TeamViewer8) -- C:\Programmi\TeamViewer\Version8\TeamViewer_Service.exe (TeamViewer GmbH) SRV - (AVGIDSAgent) -- C:\Programmi\AVG\AVG2013\avgidsagent.exe (AVG Technologies CZ, s.r.o.) SRV - (avgwd) -- C:\Programmi\AVG\AVG2013\avgwdsvc.exe (AVG Technologies CZ, s.r.o.) SRV - (TuneUp.UtilitiesSvc) -- C:\Programmi\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe (TuneUp Software) SRV - (MsMpSvc) -- C:\Programmi\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation) SRV - (odserv) -- C:\Programmi\File comuni\Microsoft Shared\OFFICE12\ODSERV.EXE (Microsoft Corporation) SRV - (cligrafsrv) -- C:\Programmi\WKICOSIMI\ClientGrafico\bin\cligrafsrv.exe () SRV - (FLEXnet Licensing Service) -- C:\Programmi\File comuni\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Macrovision Europe Ltd.) SRV - (ForceWare Intelligent Application Manager (IAM) -- C:\Programmi\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe () SRV - (nSvcIp) -- C:\Programmi\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe () SRV - (p2pgasvc) -- C:\WINDOWS\system32\p2pgasvc.dll (Microsoft Corporation) SRV - (Iprip) -- C:\WINDOWS\system32\iprip.dll (Microsoft Corporation) SRV - (ose) -- C:\Programmi\File comuni\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation) ========== Driver Services (SafeList) ========== DRV - (WDICA) -- File not found DRV - (radzumuv) -- C:\WINDOWS\system32\drivers\radzumuv.sys File not found DRV - (PDRFRAME) -- File not found DRV - (PDRELI) -- File not found DRV - (PDFRAME) -- File not found DRV - (PDCOMP) -- File not found DRV - (PCIDump) -- File not found DRV - (ltaaqjnx) -- C:\WINDOWS\system32\drivers\ltaaqjnx.sys File not found DRV - (lbrtfdc) -- File not found DRV - (i2omgmt) -- File not found DRV - (Changer) -- File not found DRV - (Avgmfx86) -- C:\WINDOWS\system32\drivers\avgmfx86.sys (AVG Technologies CZ, s.r.o.) DRV - (AVGIDSDriver) -- C:\WINDOWS\system32\drivers\avgidsdriverx.sys (AVG Technologies CZ, s.r.o. ) DRV - (AVGIDSHX) -- C:\WINDOWS\system32\drivers\avgidshx.sys (AVG Technologies CZ, s.r.o. ) DRV - (Avgldx86) -- C:\WINDOWS\system32\drivers\avgldx86.sys (AVG Technologies CZ, s.r.o.) DRV - (Avgtdix) -- C:\WINDOWS\system32\drivers\avgtdix.sys (AVG Technologies CZ, s.r.o.) DRV - (Avglogx) -- C:\WINDOWS\system32\drivers\avglogx.sys (AVG Technologies CZ, s.r.o.) DRV - (AVGIDSShim) -- C:\WINDOWS\system32\drivers\avgidsshimx.sys (AVG Technologies CZ, s.r.o. ) DRV - (TuneUpUtilitiesDrv) -- C:\Programmi\TuneUp Utilities 2013\TuneUpUtilitiesDriver32.sys (TuneUp Software) DRV - (Avgrkx86) -- C:\WINDOWS\system32\drivers\avgrkx86.sys (AVG Technologies CZ, s.r.o.) DRV - (Tcpip6) -- C:\WINDOWS\system32\drivers cpip6.sys (Microsoft Corporation) DRV - (VIAHdAudAddService) -- C:\WINDOWS\system32\drivers\viahduaa.sys (VIA Technologies, Inc.) DRV - (nvsmu) -- C:\WINDOWS\system32\drivers\nvsmu.sys (NVIDIA Corporation) DRV - (nvnetbus) -- C:\WINDOWS\system32\drivers\nvnetbus.sys (NVIDIA Corporation) DRV - (NVENETFD) -- C:\WINDOWS\system32\drivers\NVENETFD.sys (NVIDIA Corporation) DRV - (RtNdPt5x) -- C:\WINDOWS\system32\drivers\RtNdPt5x.sys (Realtek Semiconductor Corporation ) DRV - (RTLVLAN) -- C:\WINDOWS\system32\drivers\RTLVLAN.SYS (Realtek Semiconductor Corporation ) DRV - (ati2mtag) -- C:\WINDOWS\system32\drivers\ati2mtag.sys (ATI Technologies Inc.) DRV - (RTLTEAMING) -- C:\WINDOWS\system32\drivers\RTLTEAMING.SYS (Realtek Semiconductor Corporation) DRV - (AtiHdmiService) -- C:\WINDOWS\system32\drivers\AtiHdmi.sys (ATI Research Inc.) DRV - (AmdPPM) -- C:\WINDOWS\system32\drivers\AmdPPM.sys (Advanced Micro Devices) DRV - (USBCCID) -- C:\WINDOWS\system32\drivers\usbccid.sys (Microsoft Corporation) DRV - (MTsensor) -- C:\WINDOWS\system32\drivers\ASACPI.sys () ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.v9.com/?utm_source=b&utm_medium=mlv&from=mlv&uid=STM3500418AS_9VM6HYCTXXXX9VM6HYCT&ts=1356603086 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.v9.com/?utm_source=b&utm_medium=mlv&from=mlv&uid=STM3500418AS_9VM6HYCTXXXX9VM6HYCT&ts=1356603086 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://search.v9.com/web/?utm_source=b&utm_medium=mlv&from=mlv&uid=STM3500418AS_9VM6HYCTXXXX9VM6HYCT&ts=1356603086 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie IE - HKLM\..\SearchScopes,DefaultScope = {006ee092-9658-4fd6-bd8e-a21a348e59f5} IE - HKLM\..\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}: "URL" = http://feed.snap.do/?publisher=QuickOC&dpid=QuickOC&co=IT&userid=ddb6b426-64cd-485c-8cb0-0be193ea4da7&searchtype=ds&q={searchTerms}&installDate=01/01/1970 IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.v9.com/?utm_source=b&utm_medium=mlv&from=mlv&uid=STM3500418AS_9VM6HYCTXXXX9VM6HYCT&ts=1356603086 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/ IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\..\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}: "URL" = http://feed.snap.do/?publisher=QuickOC&dpid=QuickOC&co=IT&userid=ddb6b426-64cd-485c-8cb0-0be193ea4da7&searchtype=ds&q={searchTerms}&installDate=01/01/1970 IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://search.v9.com/web/?utm_source=b&utm_medium=mlv&from=mlv&uid=STM3500418AS_9VM6HYCTXXXX9VM6HYCT&ts=1356603086 IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rlz=1I7GGLD_en&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7 IE - HKCU\..\SearchScopes\{70D46D94-BF1E-45ED-B567-48701376298E}: "URL" = http://127.0.0.1:4664/search&s=ac9iuWm3GHyQu6qHr0eBb37pqvU?q={searchTerms} IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2851640 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.13.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.13.2: C:\Programmi\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.4: C:\Programmi\VideoLAN\VLC\npvlc.dll (VideoLAN) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Programmi\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) [2012/12/19 11.05.29 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\Mozilla\Firefox\extensions [2012/12/19 11.05.34 | 000,000,000 | ---D | M] (uTorrentBar_IT) -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\Mozilla\Firefox\extensions\{4ae0c3d6-f713-4eed-bc65-25dc3ffdaac1} O1 HOSTS File: ([2012/12/19 08.21.48 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programmi\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programmi\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (SweetPacks Browser Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Programmi\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.) O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O3 - HKLM\..\Toolbar: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Programmi\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.) O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O3 - HKCU\..\Toolbar\WebBrowser: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Programmi\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.) O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O8 - Extra context menu item: Aggiungi a PDF esistente - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Aggiungi destinazione link a PDF esistente - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Converti destinazione link in Adobe PDF - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Converti in Adobe PDF - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmi\Java\jre1.5.0_16\bin\NPJPI150_16.dll (Sun Microsystems, Inc.) O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe File not found O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\system32\nvLsp.dll (NVIDIA) O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\system32\nvLsp.dll (NVIDIA) O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\system32\nvLsp.dll (NVIDIA) O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\system32\nvLsp.dll (NVIDIA) O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\system32\nvLsp.dll (NVIDIA) O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\WINDOWS\system32\nvLsp.dll (NVIDIA) O10 - Protocol_Catalog9\Catalog_Entries\000000000025 - C:\WINDOWS\system32\nvLsp.dll (NVIDIA) O15 - HKCU\..Trusted Domains: localhost ([]http in Intranet locale) O15 - HKCU\..Trusted Ranges: GD ([http] in Intranet locale) O16 - DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} http://office.microsoft.com/_layouts/ClientBin/ieawsdc32.cab (Microsoft Office Template and Media Control) O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_10-windows-i586.cab (Reg Error: Value error.) O16 - DPF: {CAFEEFAC-0015-0000-0016-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_16-windows-i586.cab (Java Plug-in 1.5.0_16) O16 - DPF: {CAFEEFAC-0016-0000-0038-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_38-windows-i586.cab (Java Plug-in 1.6.0_38) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_38-windows-i586.cab (Java Plug-in 1.7.0_10) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B9960F21-D84A-42A1-A704-737D44E34AE5}: DhcpNameServer = 192.168.1.1 192.168.1.1 O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programmi\File comuni\Microsoft Shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Filter ext/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Programmi\File comuni\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20 - AppInit_DLLs: (acaptuser32.dll) - C:\WINDOWS\System32\acaptuser32.dll (Adobe Systems, Inc.) O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL) - C:\Programmi\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.) O24 - Desktop Components:0 (Pagina iniziale corrente) - About:Home O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Colline.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Colline.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009/11/25 17.14.06 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG2013\avgrsx.exe /sync /restart) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = ComFile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) NetSvcs: Ias - File not found NetSvcs: Iprip - C:\WINDOWS\system32\iprip.dll (Microsoft Corporation) NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found NetSvcs: winmgmt - C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\19144265.exe () Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation) Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS) Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.) Drivers32: msacm.trspch - C:\WINDOWS\System32 ssoft32.acm (DSP GROUP, INC.) Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.) Drivers32: VIDC.FMVC - C:\WINDOWS\System32\fmcodec.DLL (Fox Magic Software) Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll () Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll () Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation) Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation) CREATERESTOREPOINT System Restore Service not available. ========== Files/Folders - Created Within 30 Days ========== [2013/02/19 13.37.46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\TeamViewer [2013/02/14 18.05.56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\Marino [2013/02/13 11.43.50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Documenti\Modello di delega per il ritiro o la richiesta di documenti [2013/02/13 09.45.01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\AVG [2013/02/08 13.03.32 | 015,739,760 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerInstaller.exe [2013/02/07 16.48.32 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ptpusd.dll [2013/02/07 16.48.32 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ptpusb.dll [2013/02/07 16.48.31 | 000,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbscan.sys [2013/02/06 07.22.22 | 000,262,560 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe [2013/02/06 07.22.18 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe [2013/02/06 07.22.18 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe [2013/02/06 07.22.18 | 000,094,112 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll [2013/02/05 10.47.50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\mySudokuEngine Futura Software [2013/02/01 08.28.25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\bilanci [2013/01/31 17.20.59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\BERTENASCO [2013/01/31 09.12.28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\pdf995 [2013/01/31 09.12.27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Impostazioni locali\Dati applicazioni\pdf995 [2013/01/31 09.11.20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\pdf995 [2013/01/31 09.11.19 | 001,671,168 | ---- | C] (TODO: <Company name>) -- C:\WINDOWS\System32\pdfmona.dll [2013/01/31 09.11.19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Software995 [2013/01/31 09.10.15 | 000,000,000 | ---D | C] -- C:\Programmi\pdf995 [2013/01/30 14.24.09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\CARTELLA [2013/01/28 10.26.52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Documenti\My Google Gadgets [2013/01/28 10.26.27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Google Desktop [2013/01/28 10.25.54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Impostazioni locali\Dati applicazioni\Google [2013/01/28 09.32.06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Documenti\CARTELLA [2013/01/24 16.08.48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\Nuova cartella [2013/01/23 09.10.48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Documenti\CONTRATTI [2013/01/23 07.42.30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\AVG January 2013 Campaign [2013/01/22 09.35.15 | 000,045,392 | R--- | C] (Adobe Systems Inc) -- C:\WINDOWS\System32\AdobePDF.dll [2013/01/22 09.35.15 | 000,022,872 | R--- | C] (Adobe Systems Inc.) -- C:\WINDOWS\System32\AdobePDFUI.dll [2013/01/21 10.53.47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Documenti\ISTRUZIONI [5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [2 C:\*.tmp files -> C:\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2013/02/20 08.28.45 | 000,000,398 | -H-- | M] () -- C:\WINDOWS asks\Microsoft Antimalware Scheduled Scan.job [2013/02/20 08.19.15 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2013/02/20 08.19.10 | 000,000,242 | RHS- | M] () -- C:\boot.ini [2013/02/20 08.18.28 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2013/02/20 07.55.37 | 095,023,320 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\56244191.pad [2013/02/19 14.03.15 | 000,000,978 | ---- | M] () -- C:\WINDOWS asks\Adobe Flash Player Updater.job [2013/02/19 12.52.59 | 000,096,256 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\19144265.exe [2013/02/19 12.36.35 | 000,009,572 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\PROVA.pdf [2013/02/19 08.17.34 | 000,459,761 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\estratto-sicuro-di-te-in-60-giorni.pdf [2013/02/18 17.59.08 | 000,006,508 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\LIQ.pdf [2013/02/18 17.57.22 | 000,012,311 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\BONAF1.pdf [2013/02/18 16.21.17 | 000,080,570 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\2012-UNIPF-2011.pdf [2013/02/18 11.59.36 | 000,228,538 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\MailUp_Ebook_01-Le_tue_email_arrivano_nella_casella_giusta[1].pdf [2013/02/18 11.22.46 | 000,134,144 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Impostazioni locali\Dati applicazioni\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2013/02/18 08.29.35 | 000,015,416 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Impostazioni locali\Dati applicazioni\recently-used.xbel [2013/02/15 14.55.09 | 000,018,169 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\CALGIO-INPS.pdf [2013/02/14 17.20.52 | 000,370,203 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\F24.pdf [2013/02/14 07.30.52 | 000,302,824 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2013/02/13 18.57.26 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2013/02/13 18.53.33 | 000,479,574 | ---- | M] () -- C:\WINDOWS\System32\perfh010.dat [2013/02/13 18.53.33 | 000,432,928 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2013/02/13 18.53.33 | 000,079,932 | ---- | M] () -- C:\WINDOWS\System32\perfc010.dat [2013/02/13 18.53.33 | 000,067,884 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2013/02/13 16.31.51 | 000,378,548 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\VERMAR-CI.pdf [2013/02/13 09.45.01 | 000,000,697 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\AVG 2013.lnk [2013/02/12 17.38.21 | 000,099,748 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\PESARE-MENNILLO.pdf [2013/02/12 10.40.31 | 000,044,925 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\prova1.pdf [2013/02/11 15.54.09 | 000,153,070 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\Visura.pdf [2013/02/11 15.48.38 | 000,077,680 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\ELENCO FORNITORI-CLIENTI.pdf [2013/02/11 15.26.37 | 000,038,410 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Documenti\BILANCIO.pdf [2013/02/11 09.12.43 | 000,262,905 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\MUAZ04-2012-BANCA.pdf [2013/02/08 13.03.39 | 000,697,712 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe [2013/02/08 13.03.39 | 000,074,096 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2013/02/08 13.03.33 | 015,739,760 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerInstaller.exe [2013/02/07 11.44.16 | 000,053,466 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\documento.zip [2013/02/07 11.36.47 | 000,014,465 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\VERS-12.pdf [2013/02/07 10.27.14 | 000,080,902 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\RICEVUTA.pdf [2013/02/07 10.26.56 | 000,088,117 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\michea.pdf [2013/02/06 07.22.09 | 000,094,112 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll [2013/02/06 07.22.07 | 000,262,560 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe [2013/02/06 07.22.07 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe [2013/02/06 07.22.07 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe [2013/02/06 07.22.07 | 000,143,872 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl [2013/02/06 07.22.06 | 000,861,088 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\npDeployJava1.dll [2013/02/06 07.22.06 | 000,782,240 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\deployJava1.dll [2013/02/05 16.04.02 | 000,000,420 | ---- | M] () -- C:\WINDOWS\BRWMARK.INI [2013/02/05 15.03.27 | 002,490,088 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\image.jpeg [2013/02/04 11.18.41 | 000,058,071 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\lautoliquida.pdf [2013/02/01 08.35.49 | 000,000,060 | ---- | M] () -- C:\WINDOWS\wpd99.drv [2013/01/31 09.57.45 | 000,031,285 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\Ricevuta-2010.pdf [2013/01/31 09.56.13 | 000,029,176 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\Ricevuta-2011.pdf [2013/01/31 09.12.28 | 000,000,028 | ---- | M] () -- C:\WINDOWS\pdf995.ini [2013/01/31 09.11.19 | 001,671,168 | ---- | M] (TODO: <Company name>) -- C:\WINDOWS\System32\pdfmona.dll [2013/01/31 09.11.19 | 000,036,864 | ---- | M] () -- C:\WINDOWS\System32\pdf995mon.dll [2013/01/31 08.58.14 | 000,095,442 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\Senza titolo.pdf [2013/01/31 08.52.33 | 000,025,642 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\ConsumeWS.pdf [2013/01/30 11.53.21 | 000,232,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MpSigStub.exe [2013/01/29 17.37.20 | 000,044,394 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\idp=7515.pdf [2013/01/28 10.55.19 | 000,547,447 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\OEView_en.zip [2013/01/28 09.02.49 | 000,822,534 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Documenti\RSORNN71C48L219P_DSU.pdf [2013/01/26 04.55.42 | 000,552,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oleaut32.dll [2013/01/24 16.05.55 | 000,062,165 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Documenti\parcella n..pdf [2013/01/23 16.47.47 | 000,255,878 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\SISATU-BIL12.pdf [2013/01/22 11.49.36 | 000,557,933 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\pec.pdf [2013/01/22 11.45.13 | 000,623,737 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\Modulo di Login.pdf [2013/01/22 11.43.23 | 000,533,442 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\- WebMail PEC -.pdf [2013/01/22 10.39.06 | 000,013,753 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Documenti\Rendiconto 2012.pdf [2013/01/22 09.34.50 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Adobe Acrobat 9 Pro Extended.lnk [2013/01/21 15.45.33 | 000,242,802 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Documenti\Senzanome.pdf [5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [2 C:\*.tmp files -> C:\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] ========== Files Created - No Company Name ========== [2013/02/19 12.53.00 | 095,023,320 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\56244191.pad [2013/02/19 12.52.47 | 000,096,256 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\19144265.exe [2013/02/19 08.17.34 | 000,459,761 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\estratto-sicuro-di-te-in-60-giorni.pdf [2013/02/18 17.59.08 | 000,006,508 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\LIQ.pdf [2013/02/18 17.57.22 | 000,012,311 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\BONAF1.pdf [2013/02/18 16.21.17 | 000,080,570 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\2012-UNIPF-2011.pdf [2013/02/18 11.59.35 | 000,228,538 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\MailUp_Ebook_01-Le_tue_email_arrivano_nella_casella_giusta[1].pdf [2013/02/18 11.14.44 | 000,009,572 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\PROVA.pdf [2013/02/18 11.10.37 | 1463,810,048 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\Argo.2012.iTALiAN.MD.R6.XviD-BmA.avi [2013/02/18 08.29.35 | 000,015,416 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Impostazioni locali\Dati applicazioni\recently-used.xbel [2013/02/15 14.55.09 | 000,018,169 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\CALGIO-INPS.pdf [2013/02/14 17.20.52 | 000,370,203 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\F24.pdf [2013/02/12 17.38.21 | 000,099,748 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\PESARE-MENNILLO.pdf [2013/02/11 15.54.09 | 000,153,070 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\Visura.pdf [2013/02/11 15.48.38 | 000,077,680 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\ELENCO FORNITORI-CLIENTI.pdf [2013/02/11 15.26.37 | 000,038,410 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Documenti\BILANCIO.pdf [2013/02/11 10.24.38 | 000,044,925 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\prova1.pdf [2013/02/11 09.12.43 | 000,262,905 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\MUAZ04-2012-BANCA.pdf [2013/02/07 11.44.15 | 000,053,466 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\documento.zip [2013/02/07 11.36.47 | 000,014,465 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\VERS-12.pdf [2013/02/07 10.26.56 | 000,088,117 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\michea.pdf [2013/02/07 10.13.09 | 000,080,902 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\RICEVUTA.pdf [2013/02/05 15.03.19 | 002,490,088 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\image.jpeg [2013/02/04 11.17.52 | 000,058,071 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\lautoliquida.pdf [2013/01/31 09.56.13 | 000,029,176 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\Ricevuta-2011.pdf [2013/01/31 09.47.31 | 000,031,285 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\Ricevuta-2010.pdf [2013/01/31 09.12.28 | 000,000,028 | ---- | C] () -- C:\WINDOWS\pdf995.ini [2013/01/31 09.11.19 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\pdf995mon.dll [2013/01/31 09.11.19 | 000,000,060 | ---- | C] () -- C:\WINDOWS\wpd99.drv [2013/01/31 08.52.33 | 000,025,642 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\ConsumeWS.pdf [2013/01/31 08.51.48 | 000,095,442 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\Senza titolo.pdf [2013/01/29 17.37.20 | 000,044,394 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\idp=7515.pdf [2013/01/28 10.55.18 | 000,547,447 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\OEView_en.zip [2013/01/28 08.54.21 | 000,822,534 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Documenti\RSORNN71C48L219P_DSU.pdf [2013/01/24 16.05.55 | 000,062,165 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Documenti\parcella n..pdf [2013/01/23 16.47.47 | 000,255,878 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\SISATU-BIL12.pdf [2013/01/22 11.46.03 | 000,557,933 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\pec.pdf [2013/01/22 11.44.22 | 000,623,737 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\Modulo di Login.pdf [2013/01/22 11.36.22 | 000,533,442 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Desktop\- WebMail PEC -.pdf [2013/01/22 10.39.06 | 000,013,753 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Documenti\Rendiconto 2012.pdf [2013/01/22 09.34.50 | 000,001,729 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Adobe Acrobat 9 Pro Extended.lnk [2013/01/22 09.34.49 | 000,001,920 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Adobe 3D Reviewer.lnk [2013/01/22 09.34.48 | 000,001,814 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Adobe Acrobat 9 Pro Extended.lnk [2013/01/22 09.34.47 | 000,001,812 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Acrobat Distiller 9.lnk [2013/01/21 15.45.33 | 000,242,802 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Documenti\Senzanome.pdf [2013/01/03 11.19.56 | 006,397,138 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\crlCache [2013/01/03 11.19.04 | 000,222,850 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\caCertsList [2013/01/03 11.19.04 | 000,000,447 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\dike.ini [2013/01/03 10.29.58 | 000,000,185 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\dikeutil.ini [2012/12/21 11.08.47 | 000,134,144 | ---- | C] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Impostazioni locali\Dati applicazioni\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012/12/20 09.26.02 | 000,000,424 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2012/12/19 18.52.58 | 000,000,036 | ---- | C] () -- C:\WINDOWS\sispac.ini [2012/12/19 18.49.00 | 000,155,136 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2012/12/19 18.48.58 | 000,018,944 | ---- | C] ( ) -- C:\WINDOWS\System32\implode.dll [2012/12/19 16.12.53 | 000,528,384 | ---- | C] () -- C:\WINDOWS\System32 x32.dll [2012/12/19 16.12.53 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\skeylink.dll [2012/12/19 16.12.50 | 000,000,466 | ---- | C] () -- C:\WINDOWS\System32\ic32.ini [2012/12/19 16.12.49 | 000,748,160 | ---- | C] () -- C:\WINDOWS\System32\co2c40en.dll [2012/12/19 16.12.49 | 000,031,232 | ---- | C] () -- C:\WINDOWS\System32\bcfont32.dll [2012/12/19 16.11.39 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\wkiconf.dll [2012/12/19 11.27.24 | 000,000,420 | ---- | C] () -- C:\WINDOWS\BRWMARK.INI [2012/12/19 09.41.00 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll [2012/12/19 09.24.49 | 000,004,984 | R--- | C] () -- C:\WINDOWS\System32\drivers\nvphy.bin [2012/12/19 07.38.53 | 000,000,253 | ---- | C] () -- C:\WINDOWS\Brpfx04a.ini [2012/12/19 07.38.53 | 000,000,093 | ---- | C] () -- C:\WINDOWS\brpcfx.ini [2012/12/19 07.38.53 | 000,000,065 | ---- | C] () -- C:\WINDOWS\System32\bd7320.dat [2012/12/19 07.37.59 | 000,000,009 | ---- | C] () -- C:\WINDOWS\Brfaxrx.ini [2012/12/19 07.37.57 | 000,106,496 | ---- | C] () -- C:\WINDOWS\System32\BrMuSNMP.dll [2012/12/19 07.36.01 | 000,031,652 | ---- | C] () -- C:\WINDOWS\maxlink.ini [2012/12/18 18.22.33 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys [2012/12/18 18.22.26 | 000,001,769 | ---- | C] () -- C:\WINDOWS\Language_trs.ini [2012/12/18 18.22.25 | 000,049,152 | R--- | C] () -- C:\WINDOWS\DAOD.exe [2012/12/18 18.22.20 | 000,025,937 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini [2012/12/18 18.22.20 | 000,010,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS [2012/12/18 17.54.05 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2012/12/18 17.53.00 | 000,302,824 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2012/12/18 17.43.30 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin [2012/12/18 17.37.00 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll [2012/12/18 17.33.47 | 000,593,920 | ---- | C] () -- C:\WINDOWS\System32\ati2sgag.exe [2012/12/18 17.33.39 | 000,887,724 | R--- | C] () -- C:\WINDOWS\System32\ativva6x.dat [2012/12/18 17.33.36 | 003,107,788 | R--- | C] () -- C:\WINDOWS\System32\ativva5x.dat [2012/12/18 17.33.34 | 003,107,788 | R--- | C] () -- C:\WINDOWS\System32\ativvaxx.dat [2012/12/18 17.33.34 | 000,168,883 | R--- | C] () -- C:\WINDOWS\System32\atiicdxx.dat [2012/12/18 17.07.16 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2012/12/18 17.02.45 | 000,021,840 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2012/07/19 07.50.11 | 000,176,480 | ---- | C] () -- C:\Documents and Settings\LocalService\Impostazioni locali\Dati applicazioni\FontCache3.0.0.0.dat [2011/05/12 16.57.38 | 000,148,195 | ---- | C] () -- C:\Programmi\File comuni\BookViewer.xap ========== ZeroAccess Check ========== [2012/12/18 17.35.33 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shdocvw.dll -- [2012/10/31 12.33.16 | 001,510,912 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2009/02/09 11.51.43 | 000,473,600 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] "" = %systemroot%\system32\wbem\wbemess.dll -- [2008/04/14 13.00.00 | 000,273,920 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both ========== LOP Check ========== [2013/01/23 07.44.01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\AVG January 2013 Campaign [2012/12/19 11.59.23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\AVG2013 [2012/12/19 10.32.59 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Common Files [2012/12/19 11.07.51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Connectify [2012/12/20 10.17.44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\DAEMON Tools Lite [2013/02/19 17.58.31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\MFAData [2013/02/01 08.35.53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\pdf995 [2012/12/19 11.43.37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\regid.1986-12.com.adobe [2012/12/19 07.36.00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\ScanSoft [2012/12/27 11.20.36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\SweetIM [2012/12/20 10.09.52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\TuneUp Software [2012/12/20 10.09.11 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} [2012/12/19 10.40.48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\AVG2013 [2012/12/19 18.48.39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\CyberInstaller Studio 2011 [2012/12/20 10.17.44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\DAEMON Tools Lite [2013/01/25 11.01.09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\ntr [2012/12/20 10.07.54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\OpenCandy [2012/12/20 08.57.09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\OpenOffice.org [2013/01/31 09.12.28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\pdf995 [2012/12/19 11.57.18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\PriceGong [2012/12/19 16.05.48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\ScanSoft [2013/02/19 13.37.46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\TeamViewer [2012/12/20 10.09.35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\TuneUp Software [2013/02/13 12.57.17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\uTorrent [2013/01/07 12.53.25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\WinZip ========== Purity Check ========== ========== Custom Scans ========== < %SYSTEMDRIVE%\*.* > [2008/04/14 13.00.00 | 000,261,328 | R--- | M] () -- C:\$LDR$ [2009/11/25 17.14.06 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2012/12/18 10.28.31 | 000,000,213 | -HS- | M] () -- C:\BOOT.BAK [2013/02/20 08.19.10 | 000,000,242 | RHS- | M] () -- C:\boot.ini [2008/04/14 13.00.00 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin [2012/12/18 09.45.13 | 000,000,016 | ---- | M] () -- C:\chdir.bat [2009/11/25 17.14.06 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2011/10/05 09.03.12 | 000,015,737 | ---- | M] () -- C:\Contratti_di_Locazione_-_Pagamenti_successivi_alla_registrazione_vers._4.4.0_InstallLog.log [2012/01/12 09.29.00 | 000,015,964 | ---- | M] () -- C:\Contratti_di_Locazione_-_Pagamenti_successivi_alla_registrazione_vers._4.4.1_InstallLog.log [2013/01/16 16.57.00 | 000,013,317 | ---- | M] () -- C:\Contratti_di_Locazione_-_Pagamenti_successivi_alla_registrazione_vers._4.4.2_InstallLog.log [2011/10/05 09.02.46 | 000,045,217 | ---- | M] () -- C:\Contratti_di_Locazione_vers._9.5.0_InstallLog.log [2012/04/24 08.32.54 | 000,046,030 | ---- | M] () -- C:\Contratti_di_Locazione_vers._9.5.1_InstallLog.log [2013/01/16 16.56.38 | 000,027,990 | ---- | M] () -- C:\Contratti_di_Locazione_vers._9.5.2_InstallLog.log [2013/01/28 12.32.44 | 000,000,000 | ---- | M] () -- C:\ctapi_out_gr.txt [2010/07/07 11.28.28 | 000,000,207 | ---- | M] () -- C:\DelIndex.bat [2012/12/27 11.11.25 | 000,000,000 | ---- | M] () -- C:\extensions.sqlite [2009/11/25 17.14.06 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010/07/12 12.24.08 | 000,152,282 | ---- | M] () -- C:\ModuliControlloStudi2010_InstallLog.log [2011/09/27 13.26.46 | 002,123,797 | ---- | M] () -- C:\ModuliControlloStudi2011_InstallLog.log [2012/07/19 08.34.07 | 000,010,455 | ---- | M] () -- C:\ModuliControlloStudi2012_InstallLog.log [2009/11/25 17.14.06 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2008/04/14 13.00.00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2008/04/14 13.00.00 | 000,251,600 | RHS- | M] () -- C:\ntldr [2013/02/20 08.18.19 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys [2010/10/25 13.38.16 | 000,013,030 | ---- | M] () -- C:\PDOXUSRS.NET [2009/12/01 10.05.44 | 000,000,055 | ---- | M] () -- C:\sis2002.bat [2009/12/01 10.05.44 | 000,000,055 | ---- | M] () -- C:\sis2003.bat [2009/12/01 10.05.45 | 000,000,055 | ---- | M] () -- C:\sis2004.bat [2009/12/01 10.05.45 | 000,000,055 | ---- | M] () -- C:\sis2005.bat [2009/12/01 10.05.45 | 000,000,055 | ---- | M] () -- C:\sis2006.bat [2009/12/01 10.05.45 | 000,000,055 | ---- | M] () -- C:\sis2007.bat [2009/12/01 10.05.46 | 000,000,055 | ---- | M] () -- C:\sis2008.bat [2010/02/15 10.16.37 | 000,000,055 | ---- | M] () -- C:\sis2009.bat [2009/12/01 09.30.24 | 000,000,042 | ---- | M] () -- C:\sispac.bat [2011/06/15 10.10.03 | 000,000,493 | ---- | M] () -- C:\Tol2009.ini [2011/06/15 10.15.07 | 000,001,159 | ---- | M] () -- C:\Tol2010.ini [2011/06/15 10.08.54 | 000,007,385 | ---- | M] () -- C:\Tol2011.ini [2011/06/15 10.21.30 | 000,006,312 | ---- | M] () -- C:\TolGestionali.Ini [2008/04/14 13.00.00 | 000,475,370 | R--- | M] () -- C: xtsetup.sif [2009/11/26 10.24.50 | 027,262,976 | ---- | M] () -- C:\VIRTPART.DAT [2 C:\*.tmp files -> C:\*.tmp -> ] < %systemroot%\Fonts\*.com > < %systemroot%\Fonts\*.dll > < %systemroot%\Fonts\*.ini > [2012/12/18 17.05.05 | 000,000,067 | -HS- | M] () -- C:\WINDOWS\Fonts\desktop.ini < %systemroot%\Fonts\*.ini2 > < %systemroot%\Fonts\*.exe > < %systemroot%\system32\spool\prtprocs\w32x86\*.* > [2008/07/06 13.06.10 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll [2006/10/26 19.56.12 | 000,033,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\msonpppr.dll [2008/07/06 11.50.03 | 000,597,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\printfilterpipelinesvc.exe < %systemroot%\REPAIR\*.bak1 > < %systemroot%\REPAIR\*.ini > < %systemroot%\system32\*.jpg > < %systemroot%\*.jpg > < %systemroot%\*.png > < %systemroot%\*.scr > < %systemroot%\*._sy > < %APPDATA%\Adobe\Update\*.* > < %ALLUSERSPROFILE%\Favorites\*.* > < %APPDATA%\Microsoft\*.* > < %PROGRAMFILES%\*.* > < %APPDATA%\Update\*.* > < %systemroot%\*. /mp /s > < %systemroot%\System32\config\*.sav > [2012/12/18 17.51.38 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav [2012/12/18 17.51.38 | 001,093,632 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav [2012/12/18 17.51.38 | 000,479,232 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav < %PROGRAMFILES%\bak. /s > < %systemroot%\system32\bak. /s > < %ALLUSERSPROFILE%\Start Menu\*.lnk /x > < %systemroot%\system32\config\systemprofile\*.dat /x > < %systemroot%\*.config > < %systemroot%\system32\*.db > < %PROGRAMFILES%\Internet Explorer\*.dat > < %APPDATA%\Microsoft\Internet Explorer\Quick Launch\*.lnk /x > [2012/12/18 17.09.57 | 000,000,123 | -HS- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\Microsoft\Internet Explorer\Quick Launch\desktop.ini [2012/12/18 17.09.56 | 000,000,079 | ---- | M] () -- C:\Documents and Settings\Luigi.STUDIO-8BAE2A6B\Dati applicazioni\Microsoft\Internet Explorer\Quick Launch\Mostra Desktop.scf < %USERPROFILE%\Desktop\*.exe > < %PROGRAMFILES%\Common Files\*.* > < %systemroot%\*.src > < %systemroot%\install\*.* > < %systemroot%\system32\DLL\*.* > < %systemroot%\system32\HelpFiles\*.* > < %systemroot%\system32\rundll\*.* > < %systemroot%\winn32\*.* > < %systemroot%\Java\*.* > < %systemroot%\system32 est\*.* > < %systemroot%\system32\Rundll32\*.* > < %systemroot%\AppPatch\Custom\*.* > < HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU > < HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs > HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2013-02-13 17:59:25 < End of report >
  3. OTL Extras logfile created on: 20/02/2013 10.31.45 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = J:\ Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000410 | Country: Italia | Language: ITA | Date Format: dd/MM/yyyy 2,00 Gb Total Physical Memory | 1,35 Gb Available Physical Memory | 67,71% Memory free 3,85 Gb Paging File | 3,45 Gb Available in Paging File | 89,51% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programmi Drive C: | 97,65 Gb Total Space | 3,82 Gb Free Space | 3,91% Space Free | Partition Type: NTFS Drive D: | 232,88 Gb Total Space | 231,20 Gb Free Space | 99,28% Space Free | Partition Type: NTFS Drive E: | 465,76 Gb Total Space | 342,69 Gb Free Space | 73,58% Space Free | Partition Type: NTFS Drive F: | 195,31 Gb Total Space | 193,72 Gb Free Space | 99,19% Space Free | Partition Type: NTFS Drive G: | 172,79 Gb Total Space | 172,62 Gb Free Space | 99,90% Space Free | Partition Type: NTFS Drive H: | 232,88 Gb Total Space | 227,81 Gb Free Space | 97,83% Space Free | Partition Type: NTFS Drive J: | 971,61 Mb Total Space | 664,63 Mb Free Space | 68,40% Space Free | Partition Type: FAT Drive K: | 3,64 Gb Total Space | 0,68 Gb Free Space | 18,66% Space Free | Partition Type: FAT32 Computer Name: STUDIO-8BAE2A6B | User Name: Luigi | Logged in as Administrator. Boot Mode: SafeMode | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Extra Registry (SafeList) ========== ========== File Associations ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* ========== Shell Spawning ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* exefile [open] -- "%1" %* piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [AddToPlaylistVLC] -- "C:\Programmi\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Programmi\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) ========== Security Center Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] ========== System Restore Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 ========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 "DoNotAllowExceptions" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List] "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007 "2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008 "3587:TCP" = 3587:TCP:*:Enabled:Gruppi peer-to-peer Windows "3540:UDP" = 3540:UDP:*:Enabled:Peer Name Resolution Protocol (PNRP) "139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004 "445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005 "137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001 "138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 "DoNotAllowExceptions" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007 "2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008 "3587:TCP" = 3587:TCP:*:Enabled:Gruppi peer-to-peer Windows "3540:UDP" = 3540:UDP:*:Enabled:Peer Name Resolution Protocol (PNRP) "139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004 "445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005 "137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001 "138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002 ========== Authorized Applications List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] "%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation) "%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation) "%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation) "C:\Programmi\uTorrent\uTorrent.exe" = C:\Programmi\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.) "C:\Programmi\AVG\AVG2013\avgmfapx.exe" = C:\Programmi\AVG\AVG2013\avgmfapx.exe:*:Enabled:Installazione di AVG -- (AVG Technologies CZ, s.r.o.) "C:\Programmi\Microsoft Office\Office12\OUTLOOK.EXE" = C:\Programmi\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook -- (Microsoft Corporation) "C:\Programmi\Microsoft Office\Office12\GROOVE.EXE" = C:\Programmi\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove -- (Microsoft Corporation) "C:\Programmi\Microsoft Office\Office12\ONENOTE.EXE" = C:\Programmi\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote -- (Microsoft Corporation) "C:\WINDOWS\system32\msiexec.exe" = C:\WINDOWS\system32\msiexec.exe:*:Enabled:UpdateManagerSetup -- (Microsoft Corporation) "C:\Programmi\SweetIM\Communicator\SweetPacksUpdateManager.exe" = C:\Programmi\SweetIM\Communicator\SweetPacksUpdateManager.exe:*:Enabled:SweetPacksUpdateManager -- (SweetIM Technologies Ltd.) "C:\Programmi\TeamViewer\Version8\TeamViewer.exe" = C:\Programmi\TeamViewer\Version8\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application -- (TeamViewer GmbH) "C:\Programmi\TeamViewer\Version8\TeamViewer_Service.exe" = C:\Programmi\TeamViewer\Version8\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service -- (TeamViewer GmbH) "C:\Programmi\AVG\AVG2013\avgnsx.exe" = C:\Programmi\AVG\AVG2013\avgnsx.exe:*:Enabled:Online Shield -- (AVG Technologies CZ, s.r.o.) "C:\Programmi\AVG\AVG2013\avgdiagex.exe" = C:\Programmi\AVG\AVG2013\avgdiagex.exe:*:Enabled:Diagnostica AVG 2013 -- (AVG Technologies CZ, s.r.o.) "C:\Programmi\AVG\AVG2013\avgemcx.exe" = C:\Programmi\AVG\AVG2013\avgemcx.exe:*:Enabled:Scansione e-mail personale -- (AVG Technologies CZ, s.r.o.) ========== HKEY_LOCAL_MACHINE Uninstall List ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center "{0669D3C5-8CE7-A442-ADCD-2A64EB770A92}" = Catalyst Control Center Localization Chinese Standard "{073FF7B5-3146-D772-0B64-F785E806579C}" = CCC Help French "{076086B0-478A-4380-B965-8AB5F8ABE8D0}" = DiKe 5.3.0 "{0D41AA1A-C1AF-377C-1187-853B685933F6}" = Catalyst Control Center Localization Thai "{13BAE4FB-9686-4DA7-A76A-7B34C21DEDD5}" = Catalyst Control Center Localization Spanish "{162EA8FB-0278-DC20-1005-7A3BA4150C1E}" = ccc-core-static "{1ADB558F-1E50-43F2-8EAC-E7D75294C1D8}" = OpenOffice.org 3.4.1 "{1E04D0BC-E0F6-4392-8EB2-CF5B30966A86}" = DiKe Util 2.2.1 "{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform "{22644FC4-9EA9-4F67-A76C-91C51E9E0963}" = AVG 2013 "{24151875-0CBF-0CB6-550D-D3E448FC648B}" = Catalyst Control Center Localization Turkish "{2488CF04-78E7-2602-0A2A-302BA1353610}" = CCC Help Thai "{26A24AE4-039D-4CA4-87B4-2F83216038FF}" = Java 6 Update 38 "{26A24AE4-039D-4CA4-87B4-2F83217013FF}" = Java 7 Update 13 "{2BC2781A-F7F6-452E-95EB-018A522F1B2C}" = PaperPort Image Printer "{2CCC5C78-20FF-478E-8B65-46B58CC5781B}" = AVG 2013 "{2D705A49-46E0-9932-EF9C-101FE0765DD0}" = CCC Help Swedish "{2E7D11C7-614D-7EC6-C8B7-31D0FE7B1C8B}" = Catalyst Control Center Graphics Light "{2E8AC436-A019-8A22-4D49-86C933FE26EB}" = Catalyst Control Center Graphics Full Existing "{3248F0A8-6813-11D6-A77B-00B0D0150160}" = J2SE Runtime Environment 5.0 Update 16 "{33483DFE-9B7C-7BE3-0757-E2DDBF93D4C3}" = CCC Help Japanese "{350C9410-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{36CDA33B-909B-4719-97D1-C4B99309BDC7}" = ATI Parental Control & Encoder "{3EA9D975-BFDC-4E8E-B88B-0446FBC8CA66}" = ATI HYDRAVISION "{446FD200-A20E-C432-4251-C51FE4D565D3}" = Catalyst Control Center Localization Swedish "{46CD025D-CFAE-5C2B-6676-D67B1815B055}" = Catalyst Control Center Graphics Full New "{46E1B1F2-A279-4356-9B17-029F9CC72EAE}" = Brother MFL-Pro Suite "{479291EF-4939-D71A-731C-355DF19F09FA}" = Catalyst Control Center Localization Dutch "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4E93FE2D-AEDB-534F-349E-EB37C915F6E4}" = CCC Help Hungarian "{50CF64ED-4742-43B3-B455-3D6801E8677A}" = B.Point Solution Platform "{52FE4D31-0975-B1BC-A3FE-461EF9205068}" = CCC Help Norwegian "{531A39A0-081A-4ABB-51CB-16C715762EAA}" = CCC Help Greek "{5AD4193A-A8E4-365F-2E80-24156325DDF1}" = Catalyst Control Center Localization Italian "{5D412B61-F3A7-42C6-9C07-29BBD3D442B1}" = AVG 2013 "{5DA3B539-4F89-4EB4-AC35-1ED7E8732897}" = Editoria_seac "{5DA6F06A-B389-407B-BF8C-1548767914D8}" = ATI Problem Report Wizard "{5EC7BCD4-1AAD-FF35-6781-D3B27C17897A}" = CCC Help German "{62B5E921-968C-C306-4501-684DFE6E9FD1}" = CCC Help Portuguese "{631164A5-3CC8-75A6-EFC4-C8293D47B1F5}" = CCC Help Spanish "{64C98D2D-2850-26E6-9EDA-D0AEC7AEA3EE}" = ccc-core-preinstall "{6B7CEA03-2AEE-F4C2-12D1-952049C144AE}" = Catalyst Control Center Localization Korean "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable "{7236672F-6430-439E-9B27-27EDEAF1D676}" = Diagnostic Utility "{731E713B-C13E-4527-B624-8A6DF2D33DAF}" = AVG 2013 "{76103A13-EB5E-93DE-5EE0-26ED0663DEE7}" = CCC Help Chinese Standard "{7683B745-6060-41FD-AA75-0BBB383FEAD4}" = SweetIM for Messenger 3.7 "{7A8FF745-BBC5-482B-88E4-18D3178249A9}" = ScanSoft PaperPort 11 "{7BF50B0D-7D67-66FB-0D6A-83AD08AC31F7}" = Catalyst Control Center Graphics Previews Common "{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}" = NVIDIA ForceWare Network Access Manager "{7E66D448-7E4E-BF0F-95CF-CB753B2B62BD}" = Catalyst Control Center Localization Japanese "{7FD093C2-3493-4B17-BB15-B129A7D1DC51}" = AVG 2013 "{84974D55-E43F-5C75-EE0F-85DD4964B5C1}" = CCC Help Czech "{89DE67AD-08B8-4699-A55D-CA5C0AF82BF3}" = ATI AVIVO Codecs "{8D5088A9-4376-4765-B5E4-695AFFBA4F7A}" = TuneUp Utilities Language Pack (it-IT) "{8D6181F3-CACB-4B48-8B08-981F3A7F318B}" = SAP Crystal Reports runtime engine for .NET Framework 4 (32-bit) "{8F582872-E137-9B32-0297-26A322492D76}" = Catalyst Control Center Localization Czech "{90120000-0010-0410-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Italian) 12 "{90120000-0015-0410-0000-0000000FF1CE}" = Microsoft Office Access MUI (Italian) 2007 "{90120000-0015-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0016-0410-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Italian) 2007 "{90120000-0016-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0018-0410-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Italian) 2007 "{90120000-0018-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0019-0410-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Italian) 2007 "{90120000-0019-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-001A-0410-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Italian) 2007 "{90120000-001A-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-001B-0410-0000-0000000FF1CE}" = Microsoft Office Word MUI (Italian) 2007 "{90120000-001B-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007 "{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007 "{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) "{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007 "{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) "{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007 "{90120000-001F-0410-0000-0000000FF1CE}_ENTERPRISE_{A23BFC95-4A73-410F-9248-4C2B48E38C49}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) "{90120000-002C-0410-0000-0000000FF1CE}" = Microsoft Office Proofing (Italian) 2007 "{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007 "{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0044-0410-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Italian) 2007 "{90120000-0044-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-006E-0410-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Italian) 2007 "{90120000-006E-0410-0000-0000000FF1CE}_ENTERPRISE_{C0C7E58F-D0A1-4102-855B-0B7AA2E8F1C1}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-00A1-0410-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Italian) 2007 "{90120000-00A1-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-00BA-0410-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Italian) 2007 "{90120000-00BA-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In "{9436F92D-78C9-D586-29DC-7D31067C1E59}" = Catalyst Control Center Localization Danish "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting "{98EABC7F-B1A1-43A5-B505-5B4EC3908DCD}" = Microsoft Security Client "{9B4E116C-C887-24C2-1FDB-4123E627C23D}" = Catalyst Control Center Localization Norwegian "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 "{A0F857A0-9FC6-32B5-E422-3B36BB815D3D}" = Catalyst Control Center Localization Polish "{A142E531-C598-4C74-895B-7EEACF0D571E}" = QuickShare "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{A5712DE7-F7EE-3DA6-7ED2-1C469F249FCF}" = Catalyst Control Center Localization Portuguese "{AC76BA86-1040-7D70-7761-000000000004}" = Adobe Acrobat 9 Pro Extended - Italiano, Español, Nederlands, Português "{AC76BA86-1040-7D70-7761-000000000004}{AC76BA86-1040-7D70-7761-000000000004}" = Adobe Acrobat 9 Pro Extended - Italiano, Español, Nederlands, Português "{AC76BA86-7AD7-1040-7B44-AB0000000001}" = Adobe Reader XI (11.0.01) - Italiano "{ACCA20B0-C4D1-4BF5-BF21-0A0EB5EF9730}" = REALTEK GbE & FE Ethernet PCI NIC Driver "{B2322A74-EB33-75BB-6572-A9E0DD77A314}" = CCC Help Russian "{B623975B-36C3-6DCA-02D3-E29E1AF90A27}" = Catalyst Control Center Localization French "{B863E98C-4BA0-E793-2942-916297A2B39E}" = CCC Help Finnish "{BD091A58-5BDA-E978-FD48-5BD89452F68D}" = CCC Help Dutch "{BF9053A3-9D54-2A33-BDCD-343496F4C0E2}" = CCC Help Chinese Traditional "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{C11AE6D7-E4C9-F268-3087-9F3B4129146C}" = Catalyst Control Center Localization Greek "{C1335BCD-78AD-0120-025B-F29FDA97F226}" = Catalyst Control Center Localization German "{C151CE54-E7EA-4804-854B-F515368B0798}" = AMD Processor Driver "{C2ED9B4E-1600-DAA0-1756-8CBD02DFD7A0}" = CCC Help English "{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}" = Internet Explorer Toolbar 4.6 by SweetPacks "{C4A8F596-7CA5-0EEB-64DD-C776FC3825D0}" = Catalyst Control Center Core Implementation "{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}" = TuneUp Utilities 2013 "{C6BEE1F0-CFC4-3EFA-8C02-F30F5B154CF6}" = ccc-utility "{C9BED750-1211-4480-B1A5-718A3BE15525}" = REALTEK GbE & FE Ethernet PCI-E NIC Driver "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{DB4A0243-F8DE-E620-7612-0A12A3FCE8EF}" = CCC Help Korean "{DB4DA2B2-FABF-F40E-0C33-38C58E44D4BF}" = CCC Help Turkish "{DD2F0D22-938B-6254-A342-3AB53DB4300D}" = CCC Help Danish "{DDC6D344-7279-983D-208C-A32F40F3FCBE}" = CCC Help Italian "{E061DCC9-C052-F723-C3FE-C7EEC2E069D3}" = CCC Help Polish "{E1C12CC6-2DFA-90EF-A8C5-68BA7F7FDF26}" = Catalyst Control Center Localization Hungarian "{E22E8C17-DBD3-89ED-F533-B2A6BB552339}" = Catalyst Control Center Localization Chinese Traditional "{EA8FA6BE-29BE-4AF2-9352-841F83215EB0}" = Update Manager for SweetPacks 1.1 "{ECEE5531-9C6E-9941-B79F-304CCF5EAE54}" = Skins "{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 "{FBA5EE6B-6D52-FA65-CA02-6D7F3E128A06}" = Catalyst Control Center Localization Finnish "{FBA8A045-5889-80B9-6598-D187B3F677C6}" = Catalyst Control Center Localization Russian "435403D41CB143EFFFCE801AFA6A0778EBC1DB1F" = Pacchetto driver Windows - Microsoft (USBCCID) SmartCardReader (08/01/2006 5.2.3790.2724) "Adobe Digital Editions 2.0" = Adobe Digital Editions 2.0 "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX "All ATI Software" = ATI - Programma di disinstallazione "Anagrafico - Attribuzione P.IVA Ditta 2.2.1" = Anagrafico - Attribuzione P.IVA Ditta 2.2.1 "Anagrafico - Cessazione Partita IVA 2.0.0" = Anagrafico - Cessazione Partita IVA 2.0.0 "Anagrafico - Controlli_AA7_AA9 1.8.1" = Anagrafico - Controlli_AA7_AA9 1.8.1 "Anagrafico -Variazione P.IVA Ditta 2.0.1" = Anagrafico -Variazione P.IVA Ditta 2.0.1 "ATI Display Driver" = ATI Display Driver "aTube Catcher" = aTube Catcher "AVG" = AVG 2013 "Contratti di Locazione - Pagamenti successivi alla registrazione vers. 4.4.2" = Contratti di Locazione - Pagamenti successivi alla registrazione vers. 4.4.2 "Contratti di Locazione 9.4.6" = Contratti di Locazione 9.4.6 "Contratti di Locazione vers. 9.5.2" = Contratti di Locazione vers. 9.5.2 "ENTERPRISE" = Microsoft Office Enterprise 2007 "Entratel" = Entratel "GIMP-2_is1" = GIMP 2.8.2 "Google Desktop" = Google Desktop "ie8" = Windows Internet Explorer 8 "InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Manager Piattaforma "InstallShield_{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}" = NVIDIA ForceWare Network Access Manager "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Microsoft Security Client" = Microsoft Security Essentials "ModuliControlloOCS2011" = ModuliControlloOCS2011 "mySudokuEngine Free 1.0_is1" = mySudokuEngine Free 1.0 "Nero - Burning Rom!UninstallKey" = Nero OEM "NVIDIA Drivers" = NVIDIA Drivers "Parcella Facile Plus" = Parcella Facile Plus "Pdf995" = Pdf995 "Servizio Telematico" = Entratel - Servizio Telematico 5.0.4 "TeamViewer 8" = TeamViewer 8 "TuneUp Utilities 2013" = TuneUp Utilities 2013 "uTorrent" = µTorrent "Validazione_F24" = Validazione_F24 "VLC media player" = VLC media player 2.0.4 ========== HKEY_CURRENT_USER Uninstall List ========== [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Comunicazione Dichiarazioni di intento 2010" = Comunicazione Dichiarazioni di intento 2010 "I.R.I.S" = I.R.I.S ========== Last 20 Event Log Errors ========== [ Application Events ] Error - 24/12/2012 5.30.12 | Computer Name = STUDIO-8BAE2A6B | Source = MsiInstaller | ID = 1024 Description = Prodotto Microsoft Office Professional Edition 2003: impossibile installare aggiornamento "Update for Office 2003 (KB907417): OTKLOADR". Codice errore 1603. È possibile impostare Windows Installer per la creazione di log, che possono facilitare la risoluzione di problemi di installazione dei pacchetti software. Istruzioni per l'attivazione del supporto della registrazione sono disponibili tramite il seguente collegamento: http://go.microsoft.com/fwlink/?LinkId=23127 Error - 24/12/2012 7.00.34 | Computer Name = STUDIO-8BAE2A6B | Source = MsiInstaller | ID = 10005 Description = Prodotto: Microsoft Office Professional Edition 2003 -- Errore 25090. Si è verificato un problema con Office Source Engine, errore di sistema: -2147023836. Per informazioni sulla risoluzione del problema, aprire C:\Programmi\Microsoft Office\OFFICE11\1040\SETUP.CHM, quindi cercare "Office Source Engine". Error - 24/12/2012 7.00.34 | Computer Name = STUDIO-8BAE2A6B | Source = MsiInstaller | ID = 1024 Description = Prodotto Microsoft Office Professional Edition 2003: impossibile installare aggiornamento "Office 2003 - Service Pack 3 (SP3): MAINSP3". Codice errore 1603. È possibile impostare Windows Installer per la creazione di log, che possono facilitare la risoluzione di problemi di installazione dei pacchetti software. Istruzioni per l'attivazione del supporto della registrazione sono disponibili tramite il seguente collegamento: http://go.microsoft.com/fwlink/?LinkId=23127 Error - 24/12/2012 7.00.37 | Computer Name = STUDIO-8BAE2A6B | Source = MsiInstaller | ID = 10005 Description = Prodotto: Microsoft Office Professional Edition 2003 -- Errore 25090. Si è verificato un problema con Office Source Engine, errore di sistema: -2147023836. Per informazioni sulla risoluzione del problema, aprire C:\Programmi\Microsoft Office\OFFICE11\1040\SETUP.CHM, quindi cercare "Office Source Engine". Error - 24/12/2012 7.00.37 | Computer Name = STUDIO-8BAE2A6B | Source = MsiInstaller | ID = 1024 Description = Prodotto Microsoft Office Professional Edition 2003: impossibile installare aggiornamento "Update for Outlook 2003 Junk E-mail Filter (KB2760582): OUTLFLTR". Codice errore 1603. È possibile impostare Windows Installer per la creazione di log, che possono facilitare la risoluzione di problemi di installazione dei pacchetti software. Istruzioni per l'attivazione del supporto della registrazione sono disponibili tramite il seguente collegamento: http://go.microsoft.com/fwlink/?LinkId=23127 Error - 24/12/2012 7.00.41 | Computer Name = STUDIO-8BAE2A6B | Source = MsiInstaller | ID = 10005 Description = Prodotto: Microsoft Office Professional Edition 2003 -- Errore 25090. Si è verificato un problema con Office Source Engine, errore di sistema: -2147023836. Per informazioni sulla risoluzione del problema, aprire C:\Programmi\Microsoft Office\OFFICE11\1040\SETUP.CHM, quindi cercare "Office Source Engine". Error - 24/12/2012 7.00.41 | Computer Name = STUDIO-8BAE2A6B | Source = MsiInstaller | ID = 1024 Description = Prodotto Microsoft Office Professional Edition 2003: impossibile installare aggiornamento "Update for Office 2003 (KB907417): OTKLOADR". Codice errore 1603. È possibile impostare Windows Installer per la creazione di log, che possono facilitare la risoluzione di problemi di installazione dei pacchetti software. Istruzioni per l'attivazione del supporto della registrazione sono disponibili tramite il seguente collegamento: http://go.microsoft.com/fwlink/?LinkId=23127 Error - 27/12/2012 3.30.26 | Computer Name = STUDIO-8BAE2A6B | Source = MsiInstaller | ID = 11719 Description = Prodotto: Microsoft Office Enterprise 2007 -- Errore 1719.Impossibile accedere al servizio Windows Installer. Ciò può verificarsi se Windows è in esecuzione in modalità provvisoria o se Windows Installer non è stato installato correttamente. Contattare il personale di supporto. Error - 27/12/2012 6.53.26 | Computer Name = STUDIO-8BAE2A6B | Source = Application Hang | ID = 1002 Description = Applicazione in stallo rundll32.exe, versione 5.1.2600.5512, modulo in stallo hungapp, versione 0.0.0.0, indirizzo stallo 0x00000000. Error - 27/12/2012 6.58.27 | Computer Name = STUDIO-8BAE2A6B | Source = Application Hang | ID = 1002 Description = Applicazione in stallo soffice.bin, versione 3.4.9593.500, modulo in stallo hungapp, versione 0.0.0.0, indirizzo stallo 0x00000000. [ OSession Events ] Error - 31/01/2013 3.33.41 | Computer Name = STUDIO-8BAE2A6B | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 394 seconds with 360 seconds of active time. This session ended with a crash. [ System Events ] Error - 20/02/2013 2.53.27 | Computer Name = STUDIO-8BAE2A6B | Source = DCOM | ID = 10005 Description = DCOM ha ricevuto l'errore "%1084" durante il tentativo di avviare il servizio EventSystem con gli argomenti "" per eseguire il server {1BE1F766-5536-11D1-B726-00C04FB926AF} Error - 20/02/2013 2.55.42 | Computer Name = STUDIO-8BAE2A6B | Source = DCOM | ID = 10005 Description = DCOM ha ricevuto l'errore "%1084" durante il tentativo di avviare il servizio netman con gli argomenti "" per eseguire il server {BA126AE5-2166-11D1-B1D0-00805FC1270E} Error - 20/02/2013 2.55.47 | Computer Name = STUDIO-8BAE2A6B | Source = DCOM | ID = 10005 Description = DCOM ha ricevuto l'errore "%1084" durante il tentativo di avviare il servizio EventSystem con gli argomenti "" per eseguire il server {1BE1F766-5536-11D1-B726-00C04FB926AF} Error - 20/02/2013 3.18.54 | Computer Name = STUDIO-8BAE2A6B | Source = DCOM | ID = 10005 Description = DCOM ha ricevuto l'errore "%1084" durante il tentativo di avviare il servizio StiSvc con gli argomenti "" per eseguire il server {A1F4E726-8CF1-11D1-BF92-0060081ED811} Error - 20/02/2013 3.19.45 | Computer Name = STUDIO-8BAE2A6B | Source = DCOM | ID = 10010 Description = Il server {8BC3F05E-D86B-11D0-A075-00C04FB68820} non si è registrato con DCOM entro il tempo d'attesa richiesto. Error - 20/02/2013 4.46.53 | Computer Name = STUDIO-8BAE2A6B | Source = DCOM | ID = 10005 Description = DCOM ha ricevuto l'errore "%1084" durante il tentativo di avviare il servizio StiSvc con gli argomenti "" per eseguire il server {A1F4E726-8CF1-11D1-BF92-0060081ED811} Error - 20/02/2013 4.47.00 | Computer Name = STUDIO-8BAE2A6B | Source = DCOM | ID = 10005 Description = DCOM ha ricevuto l'errore "%1084" durante il tentativo di avviare il servizio StiSvc con gli argomenti "" per eseguire il server {A1F4E726-8CF1-11D1-BF92-0060081ED811} Error - 20/02/2013 5.27.17 | Computer Name = STUDIO-8BAE2A6B | Source = DCOM | ID = 10005 Description = DCOM ha ricevuto l'errore "%1084" durante il tentativo di avviare il servizio StiSvc con gli argomenti "" per eseguire il server {A1F4E726-8CF1-11D1-BF92-0060081ED811} Error - 20/02/2013 5.29.53 | Computer Name = STUDIO-8BAE2A6B | Source = DCOM | ID = 10005 Description = DCOM ha ricevuto l'errore "%1084" durante il tentativo di avviare il servizio StiSvc con gli argomenti "" per eseguire il server {A1F4E726-8CF1-11D1-BF92-0060081ED811} Error - 20/02/2013 5.33.03 | Computer Name = STUDIO-8BAE2A6B | Source = DCOM | ID = 10010 Description = Il server {8BC3F05E-D86B-11D0-A075-00C04FB68820} non si è registrato con DCOM entro il tempo d'attesa richiesto. < End of report >
  4. grazie.....parto....a dopo!
  5. Ciao a tutti, dopo svariati tentativi sono riuscito a far partire il pc in modalità provvisoria e ho fatto partire la scansione con AVG, che ovviamente ha già rilevato dei virus, finita la scansione, cosa mi consigliate di fare? Grazie a tutti.
  6. Ok grazie e buona giornata
  7. ok anche la stampante è ripartita. Attendo le "operazioni finali"
  8. Rimosso ComboFix e anche FSS
  9. brothers multifunzione. Nella gestione periferiche la vedo con ?
  10. Nessu errore specifico, faccio partire il cd di installazione...mi dice di inserire il cavo USB e di accendere la stampante ma non rileva nulla e il programma di installazione si impianta.
  11. Unico probelma rimasto è che non riesco a installare la stampante per il resto adesso funziona tutto!
  12. Avete perfettamente ragione su tutto. Purtroppo preso dal panico ho pensato di provare a ripristinare xp, visto che non vedeva più stampanti, scheda di rete e via dicendo.....nel mezzo del ripristino si è inchiodato e per le mie scarsissime conoscenze l'unica cosa che potevo fare e mi lasciava fare era reinstallare xp. Adesso il messaggio di errore non viene più fuori ma in compenso continua a non vedere scheda di rete e stampante.....sono riuscito a far partire combofix, mentre prima di ripristinare xp si bloccava. Allego il report e ringrazio tutti per la pazienza e la disponibilità. log.txt
  13. Ti ringrazio per la risposta ma quando ho postato stavo reinstallando xp, risultato....si è inchiodato anche xp!!!