Aller au contenu

tuttouno

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    1

  • Inscription

  • Dernière visite

 Type de contenu 

Tout ce qui a été posté par tuttouno

  1. tuttouno
    J'ai fait un scan avec VirusTotal: Mon lien J'ai fait un scan avec ZHPDiag dont voici le rapport ci-dessous. Y a t'il quelqu'un qui puisse aider? Merci par avance. Rapport de ZHPDiag v1.28.1346 par Nicolas Coolman, Update du 29/08/2011 Run by minella at 04/09/2011 12.06.48 Web site : ZHPDiag Outil de diagnostic ---\\ Web Browser MSIE: Internet Explorer v8.0.6001.18702 (Defaut) MFIE: Mozilla Firefox 6.0.1 v6.0.1 ---\\ Windows Product Information Windows XP Home Edition Service Pack 3 (Build 2600) Windows Automatic Updates : OK Windows Genuine Advantage : KO ---\\ System Information ~ Processor: x86 Family 15 Model 1 Stepping 2, GenuineIntel ~ Operating System: 32 Bits Boot mode: Normal (Normal boot) Total RAM: 511 MB (62% free) System Restore: Activé (Enable) System drive C: has 34 GB (68%) free of 49 GB ---\\ Logged in mode ~ Computer Name: OEM-9GJGWOTZVJX ~ User Name: minella ~ All Users Names: SUPPORT_388945a0, minella, HelpAssistant, Guest, Administrator, ~ Unselected Option: O45,O61,O62,O65,O66,O82 Logged in as Administrator ---\\ Environnement Variables ~ System Unit : C:\ ~ %AppData% : C:\Documents and Settings\minella\Dati applicazioni\ ~ %Desktop% : C:\Documents and Settings\minella\Desktop\ ~ %Favorites% : C:\Documents and Settings\minella\Preferiti\ ~ %LocalAppData% : C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\ ~ %StartMenu% : C:\Documents and Settings\minella\Menu Avvio\ ~ %Windir% : C:\WINDOWS\ ~ %System% : C:\WINDOWS\system32\ ---\\ DOS/Devices A:\ Floppy drive, Flash card reader, USB Key (Not Inserted) C:\ Hard drive, Flash drive, Thumb drive (Free 34 Go of 49 Go) D:\ Hard drive, Flash drive, Thumb drive (Free 14 Go of 26 Go) E:\ CD-ROM drive (Not Inserted) ---\\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK ~ Scan Security Center in 00mn 00s ---\\ Search Generic System Files [MD5.70D7F99D95615C3C278367756287DB71] - (.Microsoft Corporation - Esplora risorse.) (.04/09/2011 - 4.14.08.) -- C:\WINDOWS\Explorer.exe [1036288] [MD5.D51A4B912A90554B580A2401DFAB02A5] - (....) (.04/09/2011 - 4.14.18.) -- C:\WINDOWS\system32\rundll32.exe [33280] [MD5.0FCE3E748360B53853B26DC1CBDC4601] - (.Microsoft Corporation - Internet Extensions for Win32.) (.04/09/2011 - 20.30.26.) -- C:\WINDOWS\system32\wininet.dll [916480] [MD5.9259170D29B5A256735FCB8B80280857] - (.Microsoft Corporation - Applicazione Accesso a Windows NT.) (.04/09/2011 - 4.14.24.) -- C:\WINDOWS\system32\Winlogon.exe [510464] [MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.04/09/2011 - 20.40.30.) -- C:\WINDOWS\system32\drivers\atapi.sys [96512] [MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.04/09/2011 - 21.15.54.) -- C:\WINDOWS\system32\drivers\ntfs.sys [574976] ~ Scan Generic Processes in 00mn 00s ---\\ Hidden files state (Hidden/Total) ~ Mes images (My Pictures) : 10/583 ~ Mes Videos (My Videos) : 1/16 ~ Mes Favoris (My Favorites) : 4/712 ~ Mes Documents (My Documents) : 24/3584 ~ Mon Bureau (My Desktop) : 0/54 ~ Menu demarrer (Programs) : 4/94 ~ Scan Hidden Files in 00mn 01s ---\\ Processi correnti [MD5.CFCE43B70CA0CC4DCC8ADB62B792B173] - (.Microsoft Corporation - Antimalware Service Executable.) -- c:\Programmi\Microsoft Security Client\Antimalware\MsMpEng.exe [11736] [PID.] [MD5.1F1B50AF8022BE6FB300FB7C9678A0C6] - (.Dritek System Inc. - Compal ATR10 Easy Button ( Multi-Language ).) -- C:\PROGRAMMI\EzButton\CPATR10.EXE [143360] [PID.1572] [MD5.A40432BB46793F3A2AD42E6D23A8290F] - (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Programmi\File comuni\Java\Java Update\jusched.exe [252136] [PID.1588] [MD5.B684C82B0DD15B7193926BC1FDC888E1] - (...) -- C:\WINDOWS\System32\Ati2evxx.exe [102400] [PID.] [MD5.47197F67367B8BE7A9231F57E7BC22C7] - (.Microsoft Corporation - TCP/IP Services Application.) -- C:\WINDOWS\system32\tcpsvcs.exe [19456] [PID.] [MD5.8CD4ECCB1122EF3E41C520D6C3B9699D] - (.Microsoft Corporation - Servizio SNMP.) -- C:\WINDOWS\System32\snmp.exe [33280] [PID.] [MD5.0731C1C224668D011A7FD564CE58B825] - (.Google Inc. - Google Installer.) -- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Google\Update\1.3.21.65\GoogleCrashHandler.exe [140952] [PID.3308] [MD5.7914370AAC5CDE8DCAE1C674A6C90229] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Programmi\ZHPDiag\ZHPDiag.exe [669696] [PID.732] [MD5.79FE2E0D7859738225816658F0BB2A0D] - (.Microsoft Corporation - Application Layer Gateway Service.) -- C:\WINDOWS\System32\alg.exe [44544] [PID.] ~ Scan Processes Running in 00mn 00s ---\\ Mozilla Firefox, Plugins,Avviamento,Ricerca,Estensione (P2,M0,M1,M2,M3) P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Oracle Corporation - Next Generation Java Plug-in 10.0.0 for Mozilla browsers.) -- C:\Programmi\Java\jre7\bin\new_plugin\npjp2.dll P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.60531.0.) -- c:\Programmi\Microsoft Silverlight\4.0.60531.0\npctrl.dll P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Programmi\Google\Update\1.3.21.65\npGoogleUpdate3.dll P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Google\Update\1.3.21.65\npGoogleUpdate3.dll ~ Scan Firefox Browser in 00mn 00s ---\\ Internet Explorer, Avviamento,Ricerca,Estensione (R0,R1,R3,R4) R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R0 - HKUS\S-1-5-21-2230923689-4025279379-689279713-1005\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Microsoft Corporation R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Microsoft Corporation R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = Bing R1 - HKUS\S-1-5-21-2230923689-4025279379-689279713-1005\Software\Microsoft\Internet Explorer\Main,Search Page = Microsoft Corporation R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.19098 (longhorn_ie8_gdr.110617-1715)) -- C:\WINDOWS\system32\ieframe.dll R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2 ~ Scan IE Browser in 00mn 00s ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ~ Scan Proxy management in 00mn 00s ---\\ Changed inifile Value, Mapped to Registry (F2) F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe, F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl" ~ Scan Keys in 00mn 00s ---\\ Hosts file redirection (O1) ~ Scan Hosts File in 00mn 00s ---\\ Auto loading programs from Registry (O4) O4 - HKLM\..\Run: [CPATR10] . (.Dritek System Inc. - Compal ATR10 Easy Button ( Multi-Language ).) -- C:\PROGRAMMI\EzButton\CPATR10.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Programmi\File comuni\Java\Java Update\jusched.exe O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- c:\Programmi\Microsoft Security Client\msseces.exe O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] . (.Microsoft Corporation - Watson Subscriber for SENS Network Notifica.) -- c:\PROGRA~1\FILECO~1\MICROS~1\DW\dwtrig20.exe O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] . (.Microsoft Corporation - Watson Subscriber for SENS Network Notifica.) -- c:\PROGRA~1\FILECO~1\MICROS~1\DW\dwtrig20.exe O4 - HKUS\S-1-5-21-2230923689-4025279379-689279713-1005\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe ~ Scan Application in 00mn 00s ---\\ Other User Links (O4) O4 - Global Startup: C:\Documents And Settings\minella\Desktop\Auslogics Registry Cleaner.lnk . (.Auslogics.) -- C:\Programmi\Auslogics\Auslogics Registry Cleaner\RegCleaner.exe O4 - Global Startup: C:\Documents And Settings\minella\Desktop\Free Window Registry Repair.lnk . (...) -- C:\Programmi\Free Window Registry Repair\Regpair.exe O4 - Global Startup: C:\Documents And Settings\minella\Desktop\Security Task Manager.lnk . (.Neuber GmbH.) -- C:\Programmi\Security Task Manager\TaskMan.exe ~ Scan Global Startup in 00mn 00s ---\\ Extra buttons on main IE button toolbar, or extra items in IE 'Tools' menu (O9) O9 - Extra button: Inserisci &blog in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Programmi\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Programmi\Windows Live\Writer\WriterBrowserExtension.dll ~ Scan IE Extra Buttons in 00mn 00s ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Service Provider Microsoft Windows Sockets 2.0.) -- C:\WINDOWS\system32\mswsock.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Service Provider Microsoft Windows Sockets 2.0.) -- C:\WINDOWS\system32\mswsock.dll ~ Scan Winsock in 00mn 00s ---\\ Extra group in IE 'Advanced Options' window (O11) O11 - Options group: [java_sun] Java (Sun). (.Oracle Corporation - Java Deployment Library .) - C:\Programmi\Java\jre7\bin\deploy.dll ~ Scan IE Plugins in 00mn 00s ---\\ 'Reset Web Settings' hijack (O14) O14 - IERESET.INF: START_PAGE_URL=START_PAGE_URL="http://www.msn.com" O14 - IERESET.INF: SAFESITE_VALUE=SAFESITE_VALUE="ie.search.msn.com" ~ Scan IE Paramètres WEB in 00mn 00s ---\\ ActiveX Objects (Downloaded Program Files) (O16) O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - ~ Scan Objets ActiveX in 00mn 00s ---\\ Lop.com/Domain Hijackers (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{2FF68F22-DAF7-4014-BC8A-B16E67E725F8}: DhcpNameServer = 192.168.0.1 O17 - HKLM\System\CS2\Services\Tcpip\..\{2FF68F22-DAF7-4014-BC8A-B16E67E725F8}: DhcpNameServer = 192.168.0.1 ~ Scan Domain in 00mn 00s ---\\ Extra protocols (O18) O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft ® HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Controllo ActiveX per streaming video.) -- C:\WINDOWS\system32\msvidctl.dll O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll O18 - Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\System32\itss.dll O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft ® HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll O18 - Handler: lid - {5C135180-9973-46D9-ABF4-148267CBB8BF} . (.Microsoft Corporation - Controllo ActiveX per streaming video.) -- C:\WINDOWS\System32\msvidctl.dll O18 - Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft ® HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API.) -- C:\WINDOWS\System32\inetcomm.dll O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\System32\itss.dll O18 - Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft ® HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll O18 - Handler: sysimage - {76E67A63-06E9-11D2-A840-006008059382} . (.Microsoft Corporation - Microsoft ® HTML Viewer.) -- C:\WINDOWS\System32\mshtml.dll O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Controllo ActiveX per streaming video.) -- C:\WINDOWS\system32\msvidctl.dll O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft ® HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} . (.Microsoft Corporation - WIA Scripting Layer.) -- C:\WINDOWS\System32\wiascr.dll O18 - Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Programmi\Windows Live\Mail\mailcomm.dll O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll O18 - Filter: Class Install Handler - {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll O18 - Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll O18 - Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll O18 - Filter: lzdhtml - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll O18 - Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} . (.Microsoft Corporation - DLL comune della shell di Windows.) -- C:\WINDOWS\system32\SHELL32.dll ~ Scan Protocole Additionnel in 00mn 00s ---\\ AppInit_DLLs Registry value Autorun (O20) O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\WINDOWS\system32\crypt32.dll O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\WINDOWS\system32\cryptnet.dll O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agente rete disconnessa.) -- C:\WINDOWS\system32\cscdll.dll O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\System32\dimsntfy.dll O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL comune per ricevere le notifiche di Win.) -- C:\WINDOWS\system32\wlnotify.dll O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL comune per ricevere le notifiche di Win.) -- C:\WINDOWS\system32\wlnotify.dll O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL di notifica del Servizio di accesso sec.) -- C:\WINDOWS\system32\sclgntfy.dll O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL comune per ricevere le notifiche di Win.) -- C:\WINDOWS\system32\WlNotify.dll O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL comune per ricevere le notifiche di Win.) -- C:\WINDOWS\system32\wlnotify.dll O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL comune per ricevere le notifiche di Win.) -- C:\WINDOWS\system32\wlnotify.dll ~ Scan Winlogon in 00mn 00s ---\\ ShellServiceObjectDelayLoad (O21) O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL comune della shell di Windows.) -- C:\WINDOWS\system32\shell32.dll O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL comune della shell di Windows.) -- C:\WINDOWS\system32\SHELL32.dll O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Oggetto servizio shell Systray.) -- C:\WINDOWS\system32\stobject.dll O21 - SSODL: UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} . (.Microsoft Corporation - Cartella e monitor cassetto UPNP.) -- C:\WINDOWS\system32\upnpui.dll O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\WINDOWS\system32\WPDShServiceObj.dll ~ Scan SSODL in 00mn 00s ---\\ SharedTaskScheduler (O22) O22 - SharedTaskScheduler: (no name) - {438755C2-A8BA-11D1-B96B-00A0C90312E1} . (.Microsoft Corporation - Shell Browser UI Library.) -- C:\WINDOWS\System32\browseui.dll O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Shell Browser UI Library.) -- C:\WINDOWS\System32\browseui.dll ~ Scan STS/SSO in 00mn 00s ---\\ non Microsoft non disabled Windows XP/NT/2000 Services (O23) O23 - Service: (Ati HotKey Poller) . (...) - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: Google Update Service (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Programmi\Google\Update\GoogleUpdate.exe ~ Scan Services in 00mn 00s ---\\ Windows Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(...) - (.not file.) ~ Scan Desktop Component in 00mn 00s ---\\ Compiti progettati in automazione (O39) O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2230923689-4025279379-689279713-1005Core.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2230923689-4025279379-689279713-1005UA.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\MP Scheduled Scan.job ~ Scan Scheduled Task in 00mn 00s ---\\ Drivers lanciati all'avviamento (O41) O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys O41 - Driver: (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\WINDOWS\system32\DRIVERS\cdrom.sys O41 - Driver: (i8042prt) . (.Microsoft Corporation - Driver della porta i8042.) - C:\WINDOWS\system32\DRIVERS\i8042prt.sys O41 - Driver: (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\WINDOWS\system32\DRIVERS\imapi.sys O41 - Driver: (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\WINDOWS\system32\DRIVERS\ipsec.sys O41 - Driver: (Kbdclass) . (.Microsoft Corporation - Driver classe tastiera.) - C:\WINDOWS\system32\DRIVERS\kbdclass.sys O41 - Driver: (Mouclass) . (.Microsoft Corporation - Driver Mouse Class.) - C:\WINDOWS\system32\DRIVERS\mouclass.sys O41 - Driver: (MpFilter) . (.Microsoft Corporation - Microsoft antimalware file system filter dr.) - C:\WINDOWS\system32\DRIVERS\MpFilter.sys O41 - Driver: (MpKsl086dee10) . (. - .) - c:\Documents and Settings\All Users\Dati applicazioni\Microsoft\Microsoft Antimalware\Definition Updates\{7F3F0182-233E-4A4C-A481-78CA7613E537}\MpKsl086dee10.sys (.not file.) O41 - Driver: (MpKsl43b2535e) . (. - .) - c:\Documents and Settings\All Users\Dati applicazioni\Microsoft\Microsoft Antimalware\Definition Updates\{4A1FCCE8-E2CC-4A0C-A968-C9860D5A99B3}\MpKsl43b2535e.sys (.not file.) O41 - Driver: (MpKsl43fd4808) . (. - .) - c:\Documents and Settings\All Users\Dati applicazioni\Microsoft\Microsoft Antimalware\Definition Updates\{8F0B78E1-93C6-4D61-B847-11B4A03E919B}\MpKsl43fd4808.sys (.not file.) O41 - Driver: (MpKsl47a02c7a) . (.Microsoft Corporation - KSLDriver.) - c:\Documents and Settings\All Users\Dati applicazioni\Microsoft\Microsoft Antimalware\Definition Updates\{3D866697-C321-4337-8B26-3F986FAC3FFF}\MpKsl47a02c7a.sys O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\WINDOWS\system32\DRIVERS\netbt.sys O41 - Driver: (Processor) . (.Microsoft Corporation - Driver di periferica processore.) - C:\WINDOWS\system32\DRIVERS\processr.sys O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\WINDOWS\system32\DRIVERS\rasacd.sys O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\WINDOWS\system32\DRIVERS\RDPCDD.sys O41 - Driver: (redbook) . (.Microsoft Corporation - Driver del filtro audio Redbook.) - C:\WINDOWS\system32\DRIVERS\redbook.sys O41 - Driver: (swmidi) . (.Microsoft Corporation - Microsoft GS Wavetable Synthesizer.) - C:\WINDOWS\system32\drivers\swmidi.sys O41 - Driver: (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\WINDOWS\system32\DRIVERS\tcpip.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\WINDOWS\system32\DRIVERS\termdd.sys O41 - Driver: Controller video VGA. (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys O41 - Driver: (wdmaud) . (.Microsoft Corporation - MMSYSTEM Wave/Midi API mapper.) - C:\WINDOWS\system32\drivers\wdmaud.sys O41 - Driver: (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\WINDOWS\system32\DRIVERS\mrxsmb.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\WINDOWS\system32\DRIVERS\netbios.sys O41 - Driver: (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\WINDOWS\system32\DRIVERS\rdbss.sys O41 - Driver: (Tcpip6) . (.Microsoft Corporation - IPv6 driver.) - C:\WINDOWS\system32\DRIVERS\tcpip6.sys ~ Scan Drivers in 00mn 00s ---\\ Softwares installati (O42) O42 - Logiciel: ACDSee - (.Unknown owner.) [HKLM] -- ACDSee O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin O42 - Logiciel: Aggiornamento critico per Windows Media Player 11 (KB959772) - (.Microsoft Corporation.) [HKLM] -- KB959772_WM11 O42 - Logiciel: Aggiornamento della protezione per Windows Internet Explorer 8 (KB2482017) - (.Microsoft Corporation.) [HKLM] -- KB2482017-IE8 O42 - Logiciel: Aggiornamento della protezione per Windows Internet Explorer 8 (KB2497640) - (.Microsoft Corporation.) [HKLM] -- KB2497640-IE8 O42 - Logiciel: Aggiornamento della protezione per Windows Internet Explorer 8 (KB2510531) - (.Microsoft Corporation.) [HKLM] -- KB2510531-IE8 O42 - Logiciel: Aggiornamento della protezione per Windows Internet Explorer 8 (KB2530548) - (.Microsoft Corporation.) [HKLM] -- KB2530548-IE8 O42 - Logiciel: Aggiornamento della protezione per Windows Internet Explorer 8 (KB2544521) - (.Microsoft Corporation.) [HKLM] -- KB2544521-IE8 O42 - Logiciel: Aggiornamento della protezione per Windows Internet Explorer 8 (KB2559049) - (.Microsoft Corporation.) [HKLM] -- KB2559049-IE8 O42 - Logiciel: Aggiornamento della protezione per Windows Internet Explorer 8 (KB982381) - (.Microsoft Corporation.) [HKLM] -- KB982381-IE8 O42 - Logiciel: Aggiornamento della protezione per Windows Media Player (KB2378111) - (.Microsoft Corporation.) [HKLM] -- KB2378111_WM9 O42 - Logiciel: Aggiornamento della protezione per Windows Media Player (KB952069) - (.Microsoft Corporation.) [HKLM] -- KB952069_WM9 O42 - Logiciel: Aggiornamento della protezione per Windows Media Player (KB954155) - (.Microsoft Corporation.) [HKLM] -- KB954155_WM9 O42 - Logiciel: Aggiornamento della protezione per Windows Media Player (KB968816) - (.Microsoft Corporation.) [HKLM] -- KB968816_WM9 O42 - Logiciel: Aggiornamento della protezione per Windows Media Player (KB973540) - (.Microsoft Corporation.) [HKLM] -- KB973540_WM9 O42 - Logiciel: Aggiornamento della protezione per Windows Media Player (KB975558) - (.Microsoft Corporation.) [HKLM] -- KB975558_WM8 O42 - Logiciel: Aggiornamento della protezione per Windows Media Player (KB978695) - (.Microsoft Corporation.) [HKLM] -- KB978695_WM9 O42 - Logiciel: Aggiornamento della protezione per Windows Media Player 11 (KB936782) - (.Microsoft Corporation.) [HKLM] -- KB936782_WMP11 O42 - Logiciel: Aggiornamento della protezione per Windows Media Player 11 (KB954154) - (.Microsoft Corporation.) [HKLM] -- KB954154_WM11 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2079403) - (.Microsoft Corporation.) [HKLM] -- KB2079403 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2115168) - (.Microsoft Corporation.) [HKLM] -- KB2115168 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2121546) - (.Microsoft Corporation.) [HKLM] -- KB2121546 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2160329) - (.Microsoft Corporation.) [HKLM] -- KB2160329 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2229593) - (.Microsoft Corporation.) [HKLM] -- KB2229593 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2259922) - (.Microsoft Corporation.) [HKLM] -- KB2259922 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2279986) - (.Microsoft Corporation.) [HKLM] -- KB2279986 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2286198) - (.Microsoft Corporation.) [HKLM] -- KB2286198 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2296011) - (.Microsoft Corporation.) [HKLM] -- KB2296011 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2296199) - (.Microsoft Corporation.) [HKLM] -- KB2296199 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2347290) - (.Microsoft Corporation.) [HKLM] -- KB2347290 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2360937) - (.Microsoft Corporation.) [HKLM] -- KB2360937 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2387149) - (.Microsoft Corporation.) [HKLM] -- KB2387149 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2393802) - (.Microsoft Corporation.) [HKLM] -- KB2393802 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2412687) - (.Microsoft Corporation.) [HKLM] -- KB2412687 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2419632) - (.Microsoft Corporation.) [HKLM] -- KB2419632 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2423089) - (.Microsoft Corporation.) [HKLM] -- KB2423089 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2436673) - (.Microsoft Corporation.) [HKLM] -- KB2436673 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2440591) - (.Microsoft Corporation.) [HKLM] -- KB2440591 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2443105) - (.Microsoft Corporation.) [HKLM] -- KB2443105 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2476490) - (.Microsoft Corporation.) [HKLM] -- KB2476490 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2476687) - (.Microsoft Corporation.) [HKLM] -- KB2476687 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2478960) - (.Microsoft Corporation.) [HKLM] -- KB2478960 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2478971) - (.Microsoft Corporation.) [HKLM] -- KB2478971 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2479628) - (.Microsoft Corporation.) [HKLM] -- KB2479628 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2479943) - (.Microsoft Corporation.) [HKLM] -- KB2479943 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2481109) - (.Microsoft Corporation.) [HKLM] -- KB2481109 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2483185) - (.Microsoft Corporation.) [HKLM] -- KB2483185 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2485376) - (.Microsoft Corporation.) [HKLM] -- KB2485376 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2485663) - (.Microsoft Corporation.) [HKLM] -- KB2485663 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2491683) - (.Microsoft Corporation.) [HKLM] -- KB2491683 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2503658) - (.Microsoft Corporation.) [HKLM] -- KB2503658 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2503665) - (.Microsoft Corporation.) [HKLM] -- KB2503665 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2506212) - (.Microsoft Corporation.) [HKLM] -- KB2506212 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2506223) - (.Microsoft Corporation.) [HKLM] -- KB2506223 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2507618) - (.Microsoft Corporation.) [HKLM] -- KB2507618 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2507938) - (.Microsoft Corporation.) [HKLM] -- KB2507938 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2508272) - (.Microsoft Corporation.) [HKLM] -- KB2508272 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2508429) - (.Microsoft Corporation.) [HKLM] -- KB2508429 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2509553) - (.Microsoft Corporation.) [HKLM] -- KB2509553 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2511455) - (.Microsoft Corporation.) [HKLM] -- KB2511455 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2524375) - (.Microsoft Corporation.) [HKLM] -- KB2524375 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2535512) - (.Microsoft Corporation.) [HKLM] -- KB2535512 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2536276) - (.Microsoft Corporation.) [HKLM] -- KB2536276 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2536276-v2) - (.Microsoft Corporation.) [HKLM] -- KB2536276-v2 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2544893) - (.Microsoft Corporation.) [HKLM] -- KB2544893 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2555917) - (.Microsoft Corporation.) [HKLM] -- KB2555917 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2562937) - (.Microsoft Corporation.) [HKLM] -- KB2562937 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2566454) - (.Microsoft Corporation.) [HKLM] -- KB2566454 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2567680) - (.Microsoft Corporation.) [HKLM] -- KB2567680 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2570222) - (.Microsoft Corporation.) [HKLM] -- KB2570222 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB923561) - (.Microsoft Corporation.) [HKLM] -- KB923561 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB938464) - (.Microsoft Corporation.) [HKLM] -- KB938464 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB938464-v2) - (.Microsoft Corporation.) [HKLM] -- KB938464-v2 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB941569) - (.Microsoft Corporation.) [HKLM] -- KB941569 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB946648) - (.Microsoft Corporation.) [HKLM] -- KB946648 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB950762) - (.Microsoft Corporation.) [HKLM] -- KB950762 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB950974) - (.Microsoft Corporation.) [HKLM] -- KB950974 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB951066) - (.Microsoft Corporation.) [HKLM] -- KB951066 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB951376-v2) - (.Microsoft Corporation.) [HKLM] -- KB951376-v2 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB951698) - (.Microsoft Corporation.) [HKLM] -- KB951698 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB951748) - (.Microsoft Corporation.) [HKLM] -- KB951748 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB952004) - (.Microsoft Corporation.) [HKLM] -- KB952004 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB952954) - (.Microsoft Corporation.) [HKLM] -- KB952954 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB953838) - (.Microsoft Corporation.) [HKLM] -- KB953838 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB953839) - (.Microsoft Corporation.) [HKLM] -- KB953839 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB954211) - (.Microsoft Corporation.) [HKLM] -- KB954211 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB954459) - (.Microsoft Corporation.) [HKLM] -- KB954459 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB954600) - (.Microsoft Corporation.) [HKLM] -- KB954600 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB955069) - (.Microsoft Corporation.) [HKLM] -- KB955069 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB956391) - (.Microsoft Corporation.) [HKLM] -- KB956391 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB956572) - (.Microsoft Corporation.) [HKLM] -- KB956572 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB956744) - (.Microsoft Corporation.) [HKLM] -- KB956744 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB956802) - (.Microsoft Corporation.) [HKLM] -- KB956802 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB956803) - (.Microsoft Corporation.) [HKLM] -- KB956803 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB956841) - (.Microsoft Corporation.) [HKLM] -- KB956841 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB956844) - (.Microsoft Corporation.) [HKLM] -- KB956844 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB957095) - (.Microsoft Corporation.) [HKLM] -- KB957095 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB957097) - (.Microsoft Corporation.) [HKLM] -- KB957097 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB958644) - (.Microsoft Corporation.) [HKLM] -- KB958644 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB958687) - (.Microsoft Corporation.) [HKLM] -- KB958687 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB958690) - (.Microsoft Corporation.) [HKLM] -- KB958690 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB958869) - (.Microsoft Corporation.) [HKLM] -- KB958869 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB959426) - (.Microsoft Corporation.) [HKLM] -- KB959426 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB960225) - (.Microsoft Corporation.) [HKLM] -- KB960225 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB960715) - (.Microsoft Corporation.) [HKLM] -- KB960715 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB960803) - (.Microsoft Corporation.) [HKLM] -- KB960803 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB960859) - (.Microsoft Corporation.) [HKLM] -- KB960859 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB961371) - (.Microsoft Corporation.) [HKLM] -- KB961371 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB961373) - (.Microsoft Corporation.) [HKLM] -- KB961373 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB961501) - (.Microsoft Corporation.) [HKLM] -- KB961501 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB968537) - (.Microsoft Corporation.) [HKLM] -- KB968537 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB969059) - (.Microsoft Corporation.) [HKLM] -- KB969059 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB969898) - (.Microsoft Corporation.) [HKLM] -- KB969898 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB969947) - (.Microsoft Corporation.) [HKLM] -- KB969947 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB970238) - (.Microsoft Corporation.) [HKLM] -- KB970238 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB970430) - (.Microsoft Corporation.) [HKLM] -- KB970430 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB971468) - (.Microsoft Corporation.) [HKLM] -- KB971468 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB971486) - (.Microsoft Corporation.) [HKLM] -- KB971486 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB971557) - (.Microsoft Corporation.) [HKLM] -- KB971557 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB971633) - (.Microsoft Corporation.) [HKLM] -- KB971633 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB971657) - (.Microsoft Corporation.) [HKLM] -- KB971657 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB972270) - (.Microsoft Corporation.) [HKLM] -- KB972270 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB973346) - (.Microsoft Corporation.) [HKLM] -- KB973346 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB973354) - (.Microsoft Corporation.) [HKLM] -- KB973354 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB973507) - (.Microsoft Corporation.) [HKLM] -- KB973507 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB973525) - (.Microsoft Corporation.) [HKLM] -- KB973525 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB973869) - (.Microsoft Corporation.) [HKLM] -- KB973869 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB973904) - (.Microsoft Corporation.) [HKLM] -- KB973904 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB974112) - (.Microsoft Corporation.) [HKLM] -- KB974112 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB974318) - (.Microsoft Corporation.) [HKLM] -- KB974318 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB974392) - (.Microsoft Corporation.) [HKLM] -- KB974392 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB974571) - (.Microsoft Corporation.) [HKLM] -- KB974571 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB975025) - (.Microsoft Corporation.) [HKLM] -- KB975025 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB975467) - (.Microsoft Corporation.) [HKLM] -- KB975467 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB975560) - (.Microsoft Corporation.) [HKLM] -- KB975560 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB975561) - (.Microsoft Corporation.) [HKLM] -- KB975561 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB975562) - (.Microsoft Corporation.) [HKLM] -- KB975562 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB975713) - (.Microsoft Corporation.) [HKLM] -- KB975713 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB977165) - (.Microsoft Corporation.) [HKLM] -- KB977165 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB977816) - (.Microsoft Corporation.) [HKLM] -- KB977816 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB977914) - (.Microsoft Corporation.) [HKLM] -- KB977914 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB978037) - (.Microsoft Corporation.) [HKLM] -- KB978037 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB978251) - (.Microsoft Corporation.) [HKLM] -- KB978251 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB978262) - (.Microsoft Corporation.) [HKLM] -- KB978262 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB978338) - (.Microsoft Corporation.) [HKLM] -- KB978338 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB978542) - (.Microsoft Corporation.) [HKLM] -- KB978542 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB978601) - (.Microsoft Corporation.) [HKLM] -- KB978601 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB978706) - (.Microsoft Corporation.) [HKLM] -- KB978706 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB979309) - (.Microsoft Corporation.) [HKLM] -- KB979309 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB979482) - (.Microsoft Corporation.) [HKLM] -- KB979482 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB979559) - (.Microsoft Corporation.) [HKLM] -- KB979559 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB979683) - (.Microsoft Corporation.) [HKLM] -- KB979683 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB979687) - (.Microsoft Corporation.) [HKLM] -- KB979687 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB980195) - (.Microsoft Corporation.) [HKLM] -- KB980195 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB980218) - (.Microsoft Corporation.) [HKLM] -- KB980218 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB980232) - (.Microsoft Corporation.) [HKLM] -- KB980232 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB980436) - (.Microsoft Corporation.) [HKLM] -- KB980436 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB981322) - (.Microsoft Corporation.) [HKLM] -- KB981322 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB981852) - (.Microsoft Corporation.) [HKLM] -- KB981852 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB981957) - (.Microsoft Corporation.) [HKLM] -- KB981957 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB981997) - (.Microsoft Corporation.) [HKLM] -- KB981997 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB982132) - (.Microsoft Corporation.) [HKLM] -- KB982132 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB982214) - (.Microsoft Corporation.) [HKLM] -- KB982214 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB982665) - (.Microsoft Corporation.) [HKLM] -- KB982665 O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB982802) - (.Microsoft Corporation.) [HKLM] -- KB982802 O42 - Logiciel: Aggiornamento per Windows Internet Explorer 8 (KB2447568) - (.Microsoft Corporation.) [HKLM] -- KB2447568-IE8 O42 - Logiciel: Aggiornamento per Windows XP (KB2141007) - (.Microsoft Corporation.) [HKLM] -- KB2141007 O42 - Logiciel: Aggiornamento per Windows XP (KB2345886) - (.Microsoft Corporation.) [HKLM] -- KB2345886 O42 - Logiciel: Aggiornamento per Windows XP (KB2467659) - (.Microsoft Corporation.) [HKLM] -- KB2467659 O42 - Logiciel: Aggiornamento per Windows XP (KB2541763) - (.Microsoft Corporation.) [HKLM] -- KB2541763 O42 - Logiciel: Aggiornamento per Windows XP (KB951072-v2) - (.Microsoft Corporation.) [HKLM] -- KB951072-v2 O42 - Logiciel: Aggiornamento per Windows XP (KB951978) - (.Microsoft Corporation.) [HKLM] -- KB951978 O42 - Logiciel: Aggiornamento per Windows XP (KB955759) - (.Microsoft Corporation.) [HKLM] -- KB955759 O42 - Logiciel: Aggiornamento per Windows XP (KB955839) - (.Microsoft Corporation.) [HKLM] -- KB955839 O42 - Logiciel: Aggiornamento per Windows XP (KB961503) - (.Microsoft Corporation.) [HKLM] -- KB961503 O42 - Logiciel: Aggiornamento per Windows XP (KB967715) - (.Microsoft Corporation.) [HKLM] -- KB967715 O42 - Logiciel: Aggiornamento per Windows XP (KB968389) - (.Microsoft Corporation.) [HKLM] -- KB968389 O42 - Logiciel: Aggiornamento per Windows XP (KB971029) - (.Microsoft Corporation.) [HKLM] -- KB971029 O42 - Logiciel: Aggiornamento per Windows XP (KB971737) - (.Microsoft Corporation.) [HKLM] -- KB971737 O42 - Logiciel: Aggiornamento per Windows XP (KB973687) - (.Microsoft Corporation.) [HKLM] -- KB973687 O42 - Logiciel: Aggiornamento per Windows XP (KB973815) - (.Microsoft Corporation.) [HKLM] -- KB973815 O42 - Logiciel: Aggiornamento rapido per Windows Media Player 11 (KB939683) - (.Microsoft Corporation.) [HKLM] -- KB939683 O42 - Logiciel: Aggiornamento rapido per Windows XP (KB2158563) - (.Microsoft Corporation.) [HKLM] -- KB2158563 O42 - Logiciel: Aggiornamento rapido per Windows XP (KB2443685) - (.Microsoft Corporation.) [HKLM] -- KB2443685 O42 - Logiciel: Aggiornamento rapido per Windows XP (KB2570791) - (.Microsoft Corporation.) [HKLM] -- KB2570791 O42 - Logiciel: Aggiornamento rapido per Windows XP (KB952287) - (.Microsoft Corporation.) [HKLM] -- KB952287 O42 - Logiciel: Aggiornamento rapido per Windows XP (KB961118) - (.Microsoft Corporation.) [HKLM] -- KB961118 O42 - Logiciel: Aggiornamento rapido per Windows XP (KB970653-v3) - (.Microsoft Corporation.) [HKLM] -- KB970653-v3 O42 - Logiciel: Aggiornamento rapido per Windows XP (KB976098-v2) - (.Microsoft Corporation.) [HKLM] -- KB976098-v2 O42 - Logiciel: Aggiornamento rapido per Windows XP (KB979306) - (.Microsoft Corporation.) [HKLM] -- KB979306 O42 - Logiciel: Aggiornamento rapido per Windows XP (KB981793) - (.Microsoft Corporation.) [HKLM] -- KB981793 O42 - Logiciel: AnmanieSMP 2.4 i - (.Christoph Walter.) [HKLM] -- AnmanieSMP_is1 O42 - Logiciel: ArcSoft Panorama Maker 3 - (.ArcSoft.) [HKLM] -- {A5F68DC8-0278-4AD8-B413-861509B5F25B} O42 - Logiciel: Auslogics Registry Cleaner - (.Auslogics Software Pty Ltd.) [HKLM] -- {8D8024F1-2945-49A5-9B78-5AB7B11D7942}_is1 O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner O42 - Logiciel: CPUID HWMonitor 1.16 - (.Unknown owner.) [HKLM] -- CPUID HWMonitor_is1 O42 - Logiciel: Canon MP Navigator EX 1.2 - (.Unknown owner.) [HKLM] -- MP Navigator EX 1.2 O42 - Logiciel: Canon MP190 series MP Drivers - (.Unknown owner.) [HKLM] -- {1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP190_series O42 - Logiciel: Canon My Printer - (.Unknown owner.) [HKLM] -- CanonMyPrinter O42 - Logiciel: Canon Utilities Easy-PhotoPrint EX - (.Unknown owner.) [HKLM] -- Easy-PhotoPrint EX O42 - Logiciel: Canon Utilities Solution Menu - (.Unknown owner.) [HKLM] -- CanonSolutionMenu O42 - Logiciel: ConvertHelper 2.2 - (.DownloadHelper.) [HKLM] -- {27CC6AB1-E72B-4179-AF1A-EAE507EBAF51}_is1 O42 - Logiciel: Cretacarte - (.Unknown owner.) [HKLM] -- Cretacarte O42 - Logiciel: Cute Video Audio Merger Free Version 1.2.1.0 - (.Unknown owner.) [HKLM] -- Cute Video Audio Merger Free Version_is1 O42 - Logiciel: CutePDF Writer 2.8 - (.Unknown owner.) [HKLM] -- CutePDF Writer Installation O42 - Logiciel: DVDVideoSoftTB Toolbar - (.Unknown owner.) [HKLM] -- DVDVideoSoftTB Toolbar O42 - Logiciel: Defraggler - (.Piriform.) [HKLM] -- Defraggler O42 - Logiciel: Easy Button - (.Unknown owner.) [HKLM] -- CPATR10 O42 - Logiciel: FormatFactory 2.60 - (.Free Time.) [HKLM] -- FormatFactory O42 - Logiciel: Fortop SWF Resources Extractor 2.0 - (.Unknown owner.) [HKLM] -- {1DEE433C-F903-44b5-821A-1E10D5DD1B3C}_is1 O42 - Logiciel: Free Video to JPG Converter version 1.8.7 - (.DVDVideoSoft Limited..) [HKLM] -- Free Video to JPG Converter_is1 O42 - Logiciel: Free Window Registry Repair - (.Unknown owner.) [HKLM] -- Free Window Registry Repair O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU] -- Google Chrome O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595 O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484 O42 - Logiciel: Hotfix for Windows Media Format 11 SDK (KB929399) - (.Microsoft Corporation.) [HKLM] -- KB929399 O42 - Logiciel: IZArc 4.1.2 - (.Ivan Zahariev.) [HKLM] -- {97C82B44-D408-4F14-9252-47FC1636D23E}_is1 O42 - Logiciel: Inspic 2.5.2 - (.Miniwish Software..) [HKLM] -- Inspic_is1 O42 - Logiciel: Intel® PRO Ethernet Adapter and Software - (.Unknown owner.) [HKLM] -- PROSet O42 - Logiciel: Malwarebytes' Anti-Malware version 1.51.1.1800 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1 O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1 O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - Language Pack (ITA) - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile ITA Language Pack O42 - Logiciel: Microsoft Compression Client Pack 1.0 for Windows XP - (.Microsoft Corporation.) [HKLM] -- MSCompPackV1 O42 - Logiciel: Microsoft Internationalized Domain Names Mitigation APIs - (.Microsoft Corporation.) [HKLM] -- IDNMitigationAPIs O42 - Logiciel: Microsoft National Language Support Downlevel APIs - (.Microsoft Corporation.) [HKLM] -- NLSDownlevelMapping O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM] -- Microsoft Security Client O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- Wudf01000 O42 - Logiciel: Mozilla Firefox 6.0.1 (x86 it) - (.Mozilla.) [HKLM] -- Mozilla Firefox 6.0.1 (x86 it) O42 - Logiciel: NTI FileCD - (.Unknown owner.) [HKLM] -- FileCD O42 - Logiciel: PDF-Viewer - (.Tracker Software Products Ltd.) [HKLM] -- {8D273DE5-ABFA-4BD0-A9D7-EE9C971438C4}_is1 O42 - Logiciel: PhotoFiltre - (.Unknown owner.) [HKCU] -- PhotoFiltre O42 - Logiciel: PowerDVD - (.Unknown owner.) [HKLM] -- {6811CAA0-BF12-11D4-9EA1-0050BAE317E1} O42 - Logiciel: Ralink Wireless LAN Card - (.RALINK.) [HKLM] -- {E91E8912-769D-42F0-8408-0E329443BABC} O42 - Logiciel: Recuva - (.Piriform.) [HKLM] -- Recuva O42 - Logiciel: SWF Opener - (.UnH Solutions.) [HKLM] -- {01386D1F-ADE7-43B4-A4E9-312FC5BC726F}_is1 O42 - Logiciel: Security Task Manager 1.7h - (.Neuber GmbH.) [HKLM] -- Security Task Manager O42 - Logiciel: Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB2416473 O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2478663 O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2518870 O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2539636 O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile - Language Pack (ITA) (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {32714140-CBC5-3FAF-BFC2-3A7376C3EECF}.KB2478663 O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile - Language Pack (ITA) (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {32714140-CBC5-3FAF-BFC2-3A7376C3EECF}.KB2518870 O42 - Logiciel: Security Update for Windows XP (KB923789) - (.Microsoft Corporation.) [HKLM] -- KB923789 O42 - Logiciel: Smart Link 56K Modem - (.Unknown owner.) [HKLM] -- SLAMRNTO O42 - Logiciel: Some PDF Image Extractr 1.5 - (.SomePDF.com.) [HKLM] -- Some PDF Image Extract_is1 O42 - Logiciel: Speccy - (.Piriform.) [HKLM] -- Speccy O42 - Logiciel: Subtitle Workshop 2.51 - (.Unknown owner.) [HKLM] -- SubtitleWorkshop O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707 O42 - Logiciel: VLC media player 1.1.9 - (.VideoLAN.) [HKLM] -- VLC media player O42 - Logiciel: Visual C++ 2008 x86 Runtime - v9.0.30729.01 - (.Microsoft Corporation.) [HKLM] -- {F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01 O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) [HKLM] -- ie8 O42 - Logiciel: Windows Live Essentials - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite_Wave3 O42 - Logiciel: Windows Media Format 11 runtime - (.Microsoft Corporation.) [HKLM] -- WMFDist11 O42 - Logiciel: Windows Media Format 11 runtime - (.Unknown owner.) [HKLM] -- Windows Media Format Runtime O42 - Logiciel: Windows Media Player 11 - (.Microsoft Corporation.) [HKLM] -- wmp11 O42 - Logiciel: Windows Media Player 11 - (.Unknown owner.) [HKLM] -- Windows Media Player O42 - Logiciel: Windows PowerShell 1.0 - (.Microsoft Corporation.) [HKLM] -- KB926139-v2 O42 - Logiciel: Windows XP Service Pack 3 - (.Microsoft Corporation.) [HKLM] -- Windows XP Service Pack O42 - Logiciel: XML Paper Specification Shared Components Language Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- XPSEPSCLP O42 - Logiciel: ZebHelpProcess 2.50 - (.Nicolas Coolman.) [HKLM] -- Zeb Help Process_is1 O42 - Logiciel: ZikiTranslator 1.3.6a - (.Zikitrake Software.) [HKLM] -- ZikiTranslator O42 - Logiciel: devolo EasyShare - (.devolo AG.) [HKLM] -- easyshare O42 - Logiciel: devolo Informer - (.devolo AG.) [HKLM] -- dslmon O42 - Logiciel: devolo dLAN - Assistente di configurazione - (.devolo AG.) [HKLM] -- dlanconf O42 - Logiciel: doPDF 7.2 printer - (.Softland.) [HKLM] -- doPDF 7 printer_is1 ---\\ HKCU & HKLM Software Keys [HKCU\Software\ACD Systems] [HKCU\Software\Acro Software Inc] [HKCU\Software\Applications WinDev] [HKCU\Software\ArcSoft] [HKCU\Software\Auslogics] [HKCU\Software\Borland] [HKCU\Software\CanonBJ] [HKCU\Software\Canon] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\CrystalIdea Software] [HKCU\Software\CyberLink] [HKCU\Software\DVDVideoSoft] [HKCU\Software\EasyBits] [HKCU\Software\Enrico Ros] [HKCU\Software\FormatFactory] [HKCU\Software\Fortop Digital] [HKCU\Software\FreeTime] [HKCU\Software\GNU] [HKCU\Software\Gabest] [HKCU\Software\Google] [HKCU\Software\IM Providers] [HKCU\Software\IZSoftware] [HKCU\Software\Intel] [HKCU\Software\JavaSoft] [HKCU\Software\Macromedia] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\MozillaPlugins] [HKCU\Software\Mozilla] [HKCU\Software\Netscape] [HKCU\Software\Neuber GbR] [HKCU\Software\ODBC] [HKCU\Software\Piriform] [HKCU\Software\Policies] [HKCU\Software\Skype] [HKCU\Software\Softland] [HKCU\Software\Symantec] [HKCU\Software\Sysinternals] [HKCU\Software\Tracker Software] [HKCU\Software\TrendMicro] [HKCU\Software\UnH Solutions] [HKCU\Software\VirtualDub.org] [HKCU\Software\devolo] [HKCU\Software\freepdftoimage] [HKLM\Software\ACD Systems] [HKLM\Software\ATI Technologies] [HKLM\Software\Acro Software Inc] [HKLM\Software\Adobe] [HKLM\Software\Borland] [HKLM\Software\C07ft5Y] [HKLM\Software\Canon] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\CyberLink] [HKLM\Software\DVDVideoSoft] [HKLM\Software\Fortop Digital] [HKLM\Software\GNU] [HKLM\Software\GPL Ghostscript] [HKLM\Software\Google] [HKLM\Software\InstallShield] [HKLM\Software\InstalledOptions] [HKLM\Software\Intel] [HKLM\Software\JavaRa] [HKLM\Software\JavaSoft] [HKLM\Software\JreMetrics] [HKLM\Software\LCx] [HKLM\Software\Macromedia] [HKLM\Software\Malwarebytes' Anti-Malware] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\NewTech Infosystems] [HKLM\Software\ODBC] [HKLM\Software\PegasusImaging] [HKLM\Software\Piriform] [HKLM\Software\Policies] [HKLM\Software\Program Groups] [HKLM\Software\RALINK] [HKLM\Software\RegisteredApplications] [HKLM\Software\Saltybrine] [HKLM\Software\Skype] [HKLM\Software\SmartLink] [HKLM\Software\Softland] [HKLM\Software\Tracker Software] [HKLM\Software\TrendMicro] [HKLM\Software\URUSoft] [HKLM\Software\Uniblue] [HKLM\Software\VideoLAN] [HKLM\Software\Wow6432Node] [HKLM\Software\devolo] [HKLM\Software\iTinySoft] [HKLM\Software\mozilla.org] [HKLM\Software\rising] ~ Scan Softwares in 00mn 01s ---\\ Contenuto delle files comuni (O43) O43 - CFD: 31/10/2008 - 15.06.48 - [8041928] ----D- C:\Program Files\ACD Systems O43 - CFD: 31/10/2008 - 15.10.42 - [1528229] ----D- C:\Documents and Settings\minella\Dati applicazioni\ACD Systems O43 - CFD: 13/09/2010 - 14.42.38 - [6886426] ----D- C:\Documents and Settings\minella\Dati applicazioni\Adobe O43 - CFD: 13/10/2009 - 20.15.44 - [172881] ----D- C:\Documents and Settings\minella\Dati applicazioni\Ahead O43 - CFD: 06/04/2011 - 1.53.20 - [175007] ----D- C:\Documents and Settings\minella\Dati applicazioni\Apple Computer O43 - CFD: 06/04/2011 - 1.53.20 - [55] ----D- C:\Documents and Settings\minella\Dati applicazioni\ArcSoft O43 - CFD: 31/08/2011 - 11.19.06 - [165119] ----D- C:\Documents and Settings\minella\Dati applicazioni\Auslogics O43 - CFD: 03/05/2010 - 15.55.50 - [38219] ----D- C:\Documents and Settings\minella\Dati applicazioni\Avnex O43 - CFD: 16/05/2011 - 8.03.04 - [4173930] ----D- C:\Documents and Settings\minella\Dati applicazioni\Canon O43 - CFD: 13/09/2010 - 14.49.16 - [1249] ----D- C:\Documents and Settings\minella\Dati applicazioni\com.youneedabudget.YNAB3.Live.9C763150EFAB05FD2A2B78705C7A54E2FCDDE07D.1 O43 - CFD: 12/11/2008 - 2.23.52 - [5357] ----D- C:\Documents and Settings\minella\Dati applicazioni\DeepBurner O43 - CFD: 02/07/2009 - 9.09.14 - [52124] ----D- C:\Documents and Settings\minella\Dati applicazioni\Desktop3D O43 - CFD: 15/01/2009 - 13.22.32 - [16440] ----D- C:\Documents and Settings\minella\Dati applicazioni\DivX O43 - CFD: 06/04/2011 - 1.53.28 - [199] ----D- C:\Documents and Settings\minella\Dati applicazioni\dvdcss O43 - CFD: 18/04/2011 - 18.14.34 - [1777175] ----D- C:\Documents and Settings\minella\Dati applicazioni\ElevatedDiagnostics O43 - CFD: 19/10/2008 - 19.01.56 - [46182] ----D- C:\Documents and Settings\minella\Dati applicazioni\FastStone O43 - CFD: 20/09/2009 - 10.11.22 - [7406] ----D- C:\Documents and Settings\minella\Dati applicazioni\Foxit O43 - CFD: 30/08/2010 - 14.23.04 - [233] ----D- C:\Documents and Settings\minella\Dati applicazioni\FreeAudioPack O43 - CFD: 06/04/2011 - 1.53.30 - [435] ----D- C:\Documents and Settings\minella\Dati applicazioni\FreeCDRipper O43 - CFD: 10/10/2009 - 11.17.26 - [52378] ----D- C:\Documents and Settings\minella\Dati applicazioni\FreeFLVConverter O43 - CFD: 15/08/2011 - 19.05.10 - [4028] ----D- C:\Documents and Settings\minella\Dati applicazioni\FRISK Software O43 - CFD: 01/01/2009 - 14.14.38 - [13970] ----D- C:\Documents and Settings\minella\Dati applicazioni\GeoVid O43 - CFD: 24/08/2011 - 17.29.40 - [313969] ----D- C:\Documents and Settings\minella\Dati applicazioni\GlarySoft O43 - CFD: 30/08/2010 - 18.47.58 - [83] ----D- C:\Documents and Settings\minella\Dati applicazioni\gtk-2.0 O43 - CFD: 22/11/2008 - 19.34.44 - [63] ----D- C:\Documents and Settings\minella\Dati applicazioni\Help O43 - CFD: 19/02/2011 - 23.52.06 - [22] ----D- C:\Documents and Settings\minella\Dati applicazioni\HideIPEasy O43 - CFD: 10/02/2010 - 19.24.58 - [9480] ----D- C:\Documents and Settings\minella\Dati applicazioni\Inspic O43 - CFD: 25/09/2008 - 19.55.44 - [1556] ----D- C:\Documents and Settings\minella\Dati applicazioni\Macromedia O43 - CFD: 06/11/2008 - 21.44.34 - [32649] ----D- C:\Documents and Settings\minella\Dati applicazioni\Malwarebytes O43 - CFD: 03/02/2009 - 19.03.28 - [242] ----D- C:\Documents and Settings\minella\Dati applicazioni\Mc & RENOX O43 - CFD: 25/05/2011 - 18.38.46 - [6210777] -S--D- C:\Documents and Settings\minella\Dati applicazioni\Microsoft O43 - CFD: 06/05/2011 - 19.28.06 - [213542666] ----D- C:\Documents and Settings\minella\Dati applicazioni\Mozilla O43 - CFD: 11/01/2010 - 1.22.32 - [636] ----D- C:\Documents and Settings\minella\Dati applicazioni\MSN6 O43 - CFD: 03/04/2010 - 0.37.50 - [663552] ----D- C:\Documents and Settings\minella\Dati applicazioni\Nikon O43 - CFD: 06/04/2011 - 1.53.36 - [17150] ----D- C:\Documents and Settings\minella\Dati applicazioni\NoteTab Light O43 - CFD: 19/10/2008 - 19.30.38 - [4286260] ----D- C:\Documents and Settings\minella\Dati applicazioni\Participatory Culture Foundation O43 - CFD: 19/10/2008 - 19.34.52 - [313126] ----D- C:\Documents and Settings\minella\Dati applicazioni\PCF-VLC O43 - CFD: 10/02/2010 - 19.44.36 - [385] ----D- C:\Documents and Settings\minella\Dati applicazioni\PhotoFiltre O43 - CFD: 06/04/2011 - 2.14.04 - [6470] ----D- C:\Documents and Settings\minella\Dati applicazioni\Process Hacker 2 O43 - CFD: 23/01/2010 - 18.18.22 - [622] ----D- C:\Documents and Settings\minella\Dati applicazioni\Salty Brine O43 - CFD: 04/05/2010 - 18.36.08 - [1132895] ----D- C:\Documents and Settings\minella\Dati applicazioni\Screaming Bee O43 - CFD: 05/08/2011 - 12.36.18 - [6872796] ----D- C:\Documents and Settings\minella\Dati applicazioni\Skype O43 - CFD: 21/07/2011 - 10.03.30 - [10400] ----D- C:\Documents and Settings\minella\Dati applicazioni\skypePM O43 - CFD: 07/08/2011 - 21.41.12 - [757] ----D- C:\Documents and Settings\minella\Dati applicazioni\Softland O43 - CFD: 28/01/2010 - 18.49.56 - [12475] ----D- C:\Documents and Settings\minella\Dati applicazioni\SumatraPDF O43 - CFD: 21/10/2008 - 14.32.00 - [36716286] ----D- C:\Documents and Settings\minella\Dati applicazioni\Sun O43 - CFD: 24/04/2011 - 16.33.56 - [328060] ----D- C:\Documents and Settings\minella\Dati applicazioni\thecleaner O43 - CFD: 03/08/2011 - 17.29.54 - [728210] ----D- C:\Documents and Settings\minella\Dati applicazioni\vlc O43 - CFD: 15/01/2011 - 0.52.06 - [8701123] ----D- C:\Documents and Settings\minella\Dati applicazioni\Windows Live Writer O43 - CFD: 30/09/2008 - 13.41.28 - [1204] ----D- C:\Documents and Settings\minella\Dati applicazioni\zweitgeist O43 - CFD: 13/09/2010 - 14.38.06 - [8489] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Adobe O43 - CFD: 11/10/2009 - 8.40.12 - [5106466] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Ahead O43 - CFD: 10/09/2009 - 10.17.54 - [336935] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Apple Computer O43 - CFD: 16/08/2011 - 13.09.26 - [134] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Browser Guard O43 - CFD: 07/02/2009 - 11.58.42 - [14096] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Cooliris O43 - CFD: 07/08/2011 - 21.38.46 - [10282552] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\CutePDF Writer O43 - CFD: 25/05/2011 - 18.19.16 - [0] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Deployment O43 - CFD: 14/08/2011 - 16.50.34 - [38058496] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Downloaded Installations O43 - CFD: 25/05/2011 - 18.22.08 - [447284772] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Google O43 - CFD: 22/08/2011 - 15.28.56 - [0] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Help O43 - CFD: 27/09/2008 - 15.39.12 - [305426] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Identities O43 - CFD: 12/10/2009 - 15.27.16 - [1909] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\IsolatedStorage O43 - CFD: 29/08/2011 - 16.52.58 - [54248032] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Microsoft O43 - CFD: 26/09/2008 - 14.31.42 - [50003413] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Mozilla O43 - CFD: 03/06/2011 - 9.16.22 - [0] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\PackageAware O43 - CFD: 19/10/2008 - 19.30.38 - [2284708] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Participatory Culture Foundation O43 - CFD: 24/08/2011 - 14.52.00 - [0] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\PCHealth O43 - CFD: 30/08/2011 - 8.31.26 - [488] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Sun O43 - CFD: 16/08/2011 - 16.19.30 - [0] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Sunbelt Software O43 - CFD: 04/08/2011 - 10.24.40 - [0] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Temp O43 - CFD: 15/01/2011 - 0.07.04 - [703725] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Windows Live Writer O43 - CFD: 02/03/2011 - 19.11.02 - [168448] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\WMTools Downloaded Files ~ Scan Program Folder in 00mn 00s ---\\ Ultimi files modificati o creati sotto Windows e System32 (O44) O44 - LFC:[MD5.28C42458A0347B4922BFFF4F2ED34DA9] - 02/09/2011 - 9.45.10 ---A- . (...) -- C:\WINDOWS\system32\wpa.dbl [1158] O44 - LFC:[MD5.E185BDA84E5F03F4E1D8DCA30E209277] - 02/09/2011 - 9.46.22 ---A- . (...) -- C:\WINDOWS\epplauncher.mif [1912] O44 - LFC:[MD5.58C8D45C571AA9235FB296B383B89887] - 05/11/2009 - 7.39.40 ---A- . (...) -- C:\WINDOWS\system32\cpwmon2k.dll [87552] O44 - LFC:[MD5.4BC02BD73338C3A26265F5C64DBEC770] - 12/11/1999 - 4.11.00 ---A- . (...) -- C:\WINDOWS\system32\BDEADMIN.CPL [183808] O44 - LFC:[MD5.8C25E347F5E2C2BCA9B5258A68B72AE7] - 20/01/1999 - 4.01.00 ---A- . (...) -- C:\WINDOWS\system32\DBCLIENT.DLL [210032] O44 - LFC:[MD5.F61DF22835F390A718706EFAF02C55F9] - 25/08/2011 - 1.13.32 ---A- . (...) -- C:\Boot.bak [211] O44 - LFC:[MD5.6ADEFE2A279EC2F309C5FE0769354A1F] - 25/08/2011 - 1.13.32 ---A- . (...) -- C:\WINDOWS\win.ini [879] O44 - LFC:[MD5.01C706CEC9C95A6B764FBD6F350AF5D2] - 26/08/2011 - 8.53.05 ---A- . (...) -- C:\WINDOWS\system32\drivers\sfi.dat [1474832] O44 - LFC:[MD5.0CB7AF5CC01504A6863AD5357C1A0FDA] - 04/09/2011 - 11.06.39 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin [512] O44 - LFC:[MD5.1A320637F47288E75DC38368D942D4D1] - 04/09/2011 - 11.05.42 ---A- . (...) -- C:\PDOXUSRS.NET [13030] O44 - LFC:[MD5.6A2CB42966136854F4464516FBB4AE72] - 04/09/2011 - 10.08.34 -S-A- . (...) -- C:\WINDOWS\bootstat.dat [2048] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 31/08/2011 - 19.59.22 ---A- . (...) -- C:\WINDOWS\system.ini [0] O44 - LFC:[MD5.012058B1753F8A6C221D1884098FBD82] - 31/08/2011 - 13.12.32 RSHA- . (...) -- C:\boot.ini [327] O44 - LFC:[MD5.69CA82A7482A00D8EE063D2B97FC4338] - 31/08/2011 - 12.56.02 ---A- . (...) -- C:\RSIT.exe [781383] O44 - LFC:[MD5.A1DAAD6FED70F6F971925B7C4292F5D2] - 31/08/2011 - 10.01.10 ---A- . (...) -- C:\RegpairSetup.exe [799120] O44 - LFC:[MD5.5B7568FE34F77232BCC2B8E8D66173E0] - 29/08/2011 - 18.38.08 ---A- . (.Oracle Corporation - Java Control Panel.) -- C:\WINDOWS\system32\javacpl.cpl [128000] O44 - LFC:[MD5.51282DDB868A9F296248FCE97F560E66] - 29/08/2011 - 18.38.08 ---A- . (.Oracle Corporation - Java Platform SE binary.) -- C:\WINDOWS\system32\java.exe [173960] O44 - LFC:[MD5.BADA7311D82CFA73A7DB1D1EEC9214E1] - 29/08/2011 - 18.38.08 ---A- . (.Oracle Corporation - Java Platform SE binary.) -- C:\WINDOWS\system32\javaw.exe [173960] O44 - LFC:[MD5.44B125554D46809FCCF642B2D31749BA] - 29/08/2011 - 18.38.08 ---A- . (.Oracle Corporation - Java Web Start Launcher.) -- C:\WINDOWS\system32\javaws.exe [214408] O44 - LFC:[MD5.15DD43B041053EE102B61D83297BD2BF] - 29/08/2011 - 18.38.07 ---A- . (.Oracle Corporation - Java Platform SE binary.) -- C:\WINDOWS\system32\deployJava1.dll [544656] O44 - LFC:[MD5.F4232B4ECD5122E13C53DB7A44FBC166] - 29/08/2011 - 15.50.05 ---A- . (...) -- C:\WINDOWS\Papier-peint-PhotoFiltre.bmp [1440054] O44 - LFC:[MD5.A3CB152DC68D4105656F95C53D45F3E8] - 26/08/2011 - 16.39.41 ---A- . (...) -- C:\WINDOWS\system32\perfc010.dat [105814] O44 - LFC:[MD5.CA138127A513B6152AABF2F9CC668151] - 26/08/2011 - 16.39.41 ---A- . (...) -- C:\WINDOWS\system32\perfh009.dat [504610] O44 - LFC:[MD5.09651F2B8F66252343F3F76AC57151F7] - 26/08/2011 - 16.39.41 ---A- . (...) -- C:\WINDOWS\system32\perfh010.dat [555254] O44 - LFC:[MD5.A3B5B698EE2362F9049AB9D79E39207C] - 26/08/2011 - 16.39.40 ---A- . (...) -- C:\WINDOWS\system32\PerfStringBackup.INI [1267236] O44 - LFC:[MD5.9FB433404A6CB96915C2F1998248EE6F] - 26/08/2011 - 16.39.40 ---A- . (...) -- C:\WINDOWS\system32\perfc009.dat [89162] O44 - LFC:[MD5.B412A5393E9BF796D97B12E0BDD1E12A] - 25/08/2011 - 20.49.27 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\WINDOWS\system32\FlashPlayerCPLApp.cpl [404640] O44 - LFC:[MD5.F49A152A67AC7F809276235283CEC202] - 25/08/2011 - 15.12.40 ---A- . (...) -- C:\WINDOWS\system32\TZLog.log [460664] O44 - LFC:[MD5.9C6A0D4531B125429F846F7C43B66E0A] - 24/08/2011 - 13.22.55 ---A- . (...) -- C:\WINDOWS\system32\resetlog.txt [10385] O44 - LFC:[MD5.CB17A47D090938A02DACB066D6D5A124] - 18/08/2011 - 10.33.43 ---A- . (...) -- C:\WINDOWS\system32\rp_rules.dat [44] O44 - LFC:[MD5.8A3D5B46FF8C9CED46304F1EBB5F9AFE] - 18/08/2011 - 10.33.43 ---A- . (...) -- C:\WINDOWS\system32\rp_stats.dat [64] O44 - LFC:[MD5.0505DA5D357F18A5D42FC5DEDE6BC9A0] - 16/08/2011 - 15.30.21 ---A- . (.Sunbelt Software - Anti-Rootkit Engine.) -- C:\WINDOWS\system32\drivers\SBREDrv.sys [101720] O44 - LFC:[MD5.8E4A80648C4AA3F723CFCA2647BF4F2D] - 16/08/2011 - 11.57.31 ---A- . (...) -- C:\WINDOWS\system32\-1 [64] O44 - LFC:[MD5.4438404068196A602EA54F59DBEB8A1B] - 14/08/2011 - 21.44.18 ---A- . (.Inner Media, Inc. - DynaZIP Multi-Threading Zip DLL.) -- C:\WINDOWS\system32\dzip32.dll [172032] O44 - LFC:[MD5.2F8F3F17983222B2ACAB998B854616B7] - 14/08/2011 - 21.44.17 ---A- . (.Inner Media, Inc. - DynaZIP-32 Multi-Threading UnZIP DLL.) -- C:\WINDOWS\system32\dunzip32.dll [139264] O44 - LFC:[MD5.5D7BE7B19E827125E016325334E58FF1] - 09/08/2011 - 16.33.58 ---A- . (...) -- C:\WINDOWS\system32\drivers\BANTExt.sys [3840] O44 - LFC:[MD5.BEF352027F828FB3BBAADE4599BEAD4F] - 07/08/2011 - 20.40.49 ---A- . (.Softland - doPDF Port Monitor User Interface.) -- C:\WINDOWS\system32\dopdfmi7.dll [20816] O44 - LFC:[MD5.41904E9C53DF4B1A1CDE41AA1D6A2273] - 07/08/2011 - 20.40.48 ---A- . (.Softland - doPDF Port Monitor.) -- C:\WINDOWS\system32\dopdfmn7.dll [23376] O44 - LFC:[MD5.ED01633E2BEBC53446767093A7D8B6C0] - 25/11/2010 - 10.41.46 ---A- . (...) -- C:\WINDOWS\system32\dopdf7.ctm [7549] O44 - LFC:[MD5.77827C9554E2FF44053C3C82A526C5D6] - 03/08/2004 - 22.00.12 RSHA- . (...) -- C:\cmldr [261312] ~ Scan Files in 00mn 02s ---\\ Export di chiave d' applicazione autorizzata (O47) O47 - AAKE:Key Export SP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestione sessione di assistenza mediante desktop remoto Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestione sessione di assistenza mediante desktop remoto Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe ~ Scan Keys in 00mn 00s ---\\ Controllo del Safe Boot (O49) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmboot.sys . (.Microsoft Corp., Veritas Software - Driver di avvio di Gestione dischi di NT.) -- C:\WINDOWS\system32\Drivers\dmboot.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmio.sys . (.Microsoft Corp., Veritas Software - Driver di I/O di Gestione dischi di NT.) -- C:\WINDOWS\system32\Drivers\dmio.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\system32\Drivers\dmload.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (...) -- C:\WINDOWS\system32\Drivers\sermouse.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sr.sys . (.Microsoft Corporation - Driver filtro file system Ripristino configurazione di sistema.) -- C:\WINDOWS\system32\Drivers\sr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\system32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\WINDOWS\system32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmboot.sys . (.Microsoft Corp., Veritas Software - Driver di avvio di Gestione dischi di NT.) -- C:\WINDOWS\system32\Drivers\dmboot.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmio.sys . (.Microsoft Corp., Veritas Software - Driver di I/O di Gestione dischi di NT.) -- C:\WINDOWS\system32\Drivers\dmio.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\system32\Drivers\dmload.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ip6fw.sys . (.Microsoft Corporation - IPv6 Windows Firewall Driver.) -- C:\WINDOWS\system32\Drivers\ip6fw.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\system32\Drivers\ipnat.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpcdd.sys . (.Microsoft Corporation - RDP Miniport.) -- C:\WINDOWS\system32\Drivers\rdpcdd.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpdd.sys . (...) -- C:\WINDOWS\system32\Drivers\rdpdd.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpwd.sys . (.Microsoft Corporation - RDP Terminal Stack Driver (US/Canada Only, Not for Export).) -- C:\WINDOWS\system32\Drivers\rdpwd.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (...) -- C:\WINDOWS\system32\Drivers\sermouse.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sr.sys . (.Microsoft Corporation - Driver filtro file system Ripristino configurazione di sistema.) -- C:\WINDOWS\system32\Drivers\sr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdpipe.sys . (.Microsoft Corporation - Named Pipe Transport Driver.) -- C:\WINDOWS\system32\Drivers\tdpipe.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdtcp.sys . (.Microsoft Corporation - TCP Transport Driver.) -- C:\WINDOWS\system32\Drivers\tdtcp.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\system32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\WINDOWS\system32\Drivers\vgasave.sys (.not file.) ~ Scan CSB in 00mn 00s ---\\ Immagine files esecuzione opzioni (IFEO) (O50) O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d ~ Scan IFEO in 00mn 00s ---\\ Trojan Driver Search Data (HKLM)(TDSD) (O52) O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio DSP Group TrueSpeech per MSACM V3.50.) -- C:\WINDOWS\system32\tssoft32.acm O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\system32\iccvid.dll O52 - TDSD: \Drivers32\"vidc.iv31"="ir32_32.dll" . (...) -- C:\WINDOWS\system32\ir32_32.dll O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (...) -- C:\WINDOWS\system32\ir32_32.dll O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\system32\ir41_32.ax O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\system32\sl_anet.acm O52 - TDSD: \Drivers32\"msacm.iac2"="C:\WINDOWS\System32\iac25_32.ax" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\System32\iac25_32.ax O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo® video 5.10.) -- C:\WINDOWS\system32\ir50_32.dll O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\WINDOWS\system32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\system32\sl_anet.acm O52 - TDSD: \drivers.desc\"C:\WINDOWS\System32\iac25_32.ax"="Indeo® audio software" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\System32\iac25_32.ax O52 - TDSD: \drivers.desc\"ir50_32.dll"="Indeo® video 5.10" . (...) -- (.not file.) O52 - TDSD: \drivers.desc\"C:\WINDOWS\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\System32\l3codeca.acm O52 - TDSD: \drivers.desc\"tssoft32.acm"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio DSP Group TrueSpeech per MSACM V3.50.) -- C:\WINDOWS\system32\tssoft32.acm O52 - TDSD: \drivers.desc\"iccvid.dll"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\system32\iccvid.dll O52 - TDSD: \drivers.desc\"ir32_32.dll"="ir32_32.dll" . (...) -- C:\WINDOWS\system32\ir32_32.dll O52 - TDSD: \drivers.desc\"ir41_32.ax"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\system32\ir41_32.ax ~ Scan Keys in 00mn 00s ---\\ Microsoft Control Security Providers (MCSP) (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA per piattaforme a 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Pacchetto autenticazione SSPI Digest.) -- C:\WINDOWS\system32\digest.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA per piattaforme a 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Pacchetto autenticazione SSPI Digest.) -- C:\WINDOWS\system32\digest.dll ~ Scan Keys in 00mn 00s ---\\ Microsoft Windows Policies System (MWPS) (O55) O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"= O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"= O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "DisableRegistryTools"=0 O55 - MWPS:[HKCU\...\Policies\System] - "disableregistrytools"=0 ~ Scan Keys in 00mn 00s ---\\ Microsoft Windows Policies Explorer (MWPE) (O56) O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=323 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveAutoRun"=67108863 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDrives"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutoRunSetting"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveAutoRun"=67108863 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveTypeAutoRun"=323 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDrives"=0 ~ Scan Keys in 00mn 00s ---\\ Elenco dei drivers systema (SDL) (O58) O58 - SDL:[MD5.0F2D66D5F08EBE2F77BB904288DCF6F0] - 04/09/2011 - 19.20.04 ---A- . (.Intel Corporation - Intel® Integrated Controller Hub Audio Driver.) -- C:\WINDOWS\system32\drivers\ac97intc.sys [96256] O58 - SDL:[MD5.95B4FB835E28AA1336CEEB07FD5B9398] - 04/09/2011 - 20.36.40 ---A- . (.Advanced Micro Devices, Inc. - AMD Win2000 AGP Filter.) -- C:\WINDOWS\system32\drivers\amdagp.sys [43008] O58 - SDL:[MD5.476D8DAC41C45D75AE772DC67D84A314] - 04/09/2011 - 17.47.10 ---A- . (.Alps Electric Co., Ltd. - Alps Touch Pad Driver.) -- C:\WINDOWS\system32\drivers\Apfiltr.sys [50637] O58 - SDL:[MD5.19166026A93206F9C6A8CD3A1F010AE4] - 04/09/2011 - 8.22.04 ---A- . (...) -- C:\WINDOWS\system32\drivers\ASUSHWIO.SYS [10296] O58 - SDL:[MD5.D649C57DA6FA762C64013747E5D7D2D6] - 04/09/2011 - 7.29.30 ---A- . (.ATI Technologies Inc. - ATI WDM BT829 MiniDriver (A).) -- C:\WINDOWS\system32\drivers\ati1btxx.sys [56623] O58 - SDL:[MD5.60B6AA2DC1521DA343F781B70EB7895A] - 04/09/2011 - 7.29.30 ---A- . (.ATI Technologies Inc. - ATI Specialized MVD VBI Codec.) -- C:\WINDOWS\system32\drivers\ati1mdxx.sys [11615] O58 - SDL:[MD5.6FDC61E8E8E17F6ECC2D9A10FA8DF347] - 04/09/2011 - 7.29.30 ---A- . (.ATI Technologies Inc. - ATI Specialized PCD VBI Codec.) -- C:\WINDOWS\system32\drivers\ati1pdxx.sys [12047] O58 - SDL:[MD5.9D318099BF3876A4AF4BC75966D27603] - 04/09/2011 - 7.29.30 ---A- . (.ATI Technologies Inc. - ATI Rage Theater Audio WDM Minidriver.) -- C:\WINDOWS\system32\drivers\ati1raxx.sys [30671] O58 - SDL:[MD5.BCAF267B10620F8C93F6E87AB726E145] - 04/09/2011 - 7.29.30 ---A- . (.ATI Technologies Inc. - ATI WDM Rage Theater MiniDriver.) -- C:\WINDOWS\system32\drivers\ati1rvxx.sys [63663] O58 - SDL:[MD5.DAC7D785CF62F5BD41441E9D6F5A6EFE] - 04/09/2011 - 7.29.32 ---A- . (.ATI Technologies Inc. - ATI WDM TV Sound MiniDriver.) -- C:\WINDOWS\system32\drivers\ati1snxx.sys [26367] O58 - SDL:[MD5.F7706DAE7D101F1B19CE552D772EBFCE] - 04/09/2011 - 7.29.32 ---A- . (.ATI Technologies Inc. - ATI WDM Teletext Decoder.) -- C:\WINDOWS\system32\drivers\ati1ttxx.sys [21343] O58 - SDL:[MD5.6F714B4720DD80FFA9F8D2731594EA4C] - 04/09/2011 - 7.29.32 ---A- . (.ATI Technologies Inc. - ATI WDM TVTuner MiniDriver.) -- C:\WINDOWS\system32\drivers\ati1tuxx.sys [36463] O58 - SDL:[MD5.67FFBC158DD4D27BA3FC92C6ACD87F73] - 04/09/2011 - 7.29.32 ---A- . (.ATI Technologies Inc. - ATI WDM CrossBar MiniDriver.) -- C:\WINDOWS\system32\drivers\ati1xbxx.sys [29455] O58 - SDL:[MD5.0D8CAB1F08F7D3C4DE228B49E12E596A] - 04/09/2011 - 7.29.32 ---A- . (.ATI Technologies Inc. - ATI WDM TVAUDIO_CrossBar MiniDriver.) -- C:\WINDOWS\system32\drivers\ati1xsxx.sys [34735] O58 - SDL:[MD5.F1A3E136190B300499516E93BC621CA5] - 04/09/2011 - 0.23.36 ---A- . (.ATI Technologies Inc. - Driver miniport ATI RAGE 128.) -- C:\WINDOWS\system32\drivers\ati2mtaa.sys [327168] O58 - SDL:[MD5.629BF1F68B4B0417A1BC1F81D66D6288] - 04/09/2011 - 15.33.38 ---A- . (.ATI Technologies Inc. - ATI RAGE 6 Miniport Driver.) -- C:\WINDOWS\system32\drivers\ati2mtag.sys [372352] O58 - SDL:[MD5.993E7BD6438FE989E328C6B4BCA246A9] - 04/09/2011 - 7.29.28 ---A- . (.ATI Technologies Inc. - ATI WDM BT829 MiniDriver (A).) -- C:\WINDOWS\system32\drivers\atinbtxx.sys [57856] O58 - SDL:[MD5.ED4C2BF8403F4437987C0BA09CF48716] - 04/09/2011 - 7.29.28 ---A- . (.ATI Technologies Inc. - ATI Specialized MVD VBI Codec RT2.) -- C:\WINDOWS\system32\drivers\atinmdxx.sys [13824] O58 - SDL:[MD5.E90AC2B14E98F1A4372E5891B4278784] - 04/09/2011 - 7.29.30 ---A- . (.ATI Technologies Inc. - ATI Specialized PCD VBI Codec RT2.) -- C:\WINDOWS\system32\drivers\atinpdxx.sys [14336] O58 - SDL:[MD5.DA36687D701C833430605A298731410B] - 04/09/2011 - 7.29.30 ---A- . (.ATI Technologies Inc. - ATI Rage Theater Audio WDM Minidriver.) -- C:\WINDOWS\system32\drivers\atinraxx.sys [52224] O58 - SDL:[MD5.A7A01B907DB63898D40B0A14248FF9A2] - 04/09/2011 - 7.29.30 ---A- . (.ATI Technologies Inc. - ATI WDM Rage Theater MiniDriver RT2.) -- C:\WINDOWS\system32\drivers\atinrvxx.sys [104960] O58 - SDL:[MD5.CEDDEE2E0591894D19654D458FD3B9BE] - 04/09/2011 - 7.29.30 ---A- . (.ATI Technologies Inc. - ATI WDM TV Sound MiniDriver.) -- C:\WINDOWS\system32\drivers\atinsnxx.sys [28672] O58 - SDL:[MD5.D80A8F6C0A717446496C3A06D33B0D9C] - 04/09/2011 - 7.29.30 ---A- . (.ATI Technologies Inc. - ATI WDM Teletext Decoder.) -- C:\WINDOWS\system32\drivers\atinttxx.sys [13824] O58 - SDL:[MD5.EDD66332608D27F4FD5069BCD0BC5164] - 04/09/2011 - 7.29.32 ---A- . (.ATI Technologies Inc. - ATI WDM TVTuner MiniDriver.) -- C:\WINDOWS\system32\drivers\atintuxx.sys [73216] O58 - SDL:[MD5.3E7D485CBD0B0D9F6EA2AD9442411831] - 04/09/2011 - 7.29.32 ---A- . (.ATI Technologies Inc. - ATI WDM CrossBar MiniDriver.) -- C:\WINDOWS\system32\drivers\atinxbxx.sys [31744] O58 - SDL:[MD5.77B575D7AAB35D5908AE6CE681608D62] - 04/09/2011 - 7.29.32 ---A- . (.ATI Technologies Inc. - ATI WDM TVAUDIO_CrossBar MiniDriver RT2.) -- C:\WINDOWS\system32\drivers\atinxsxx.sys [63488] O58 - SDL:[MD5.5D7BE7B19E827125E016325334E58FF1] - 04/09/2011 - 16.33.58 ---A- . (...) -- C:\WINDOWS\system32\drivers\BANTExt.sys [3840] O58 - SDL:[MD5.438179ABE9B7A922A21B8D6369FF52FF] - 04/09/2011 - 18.18.38 ---A- . (.Broadcom Corporation - Broadcom iLine10 PCI Network Adapter Proxy Protocol Driver.) -- C:\WINDOWS\system32\drivers\bcm42rly.sys [17992] O58 - SDL:[MD5.0CCCBD6EF94910804921BF04A2107EF8] - 04/09/2011 - 11.00.00 ---A- . (.RAVISENT Technologies Inc. - Driver primario WDM CineMaster C 1.2.) -- C:\WINDOWS\system32\drivers\cinemst2.sys [262528] O58 - SDL:[MD5.9624293E55AD405415862B504CA95B73] - 04/09/2011 - 11.00.00 ---A- . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\system32\drivers\cpqdap01.sys [11776] O58 - SDL:[MD5.743C403D20A89DB5ED84C874768B7119] - 04/09/2011 - 11.00.34 ---A- . (.Windows ® Win 7 DDK provider - CPUID Driver.) -- C:\WINDOWS\system32\drivers\cpuz133_x32.sys [20072] O58 - SDL:[MD5.A0044C07C6F65D97DB2D6EF8B9A7BBC0] - 04/09/2011 - 22.52.50 ---A- . (.Cirrus Logic, Inc. - Crystal AC9x WDM Driver.) -- C:\WINDOWS\system32\drivers\cwawdm.sys [89088] O58 - SDL:[MD5.C990FC7CB07916ECE0779AA85F89E064] - 04/09/2011 - 12.51.44 ---A- . (.Dritek System Inc. - General Port I/O.) -- C:\WINDOWS\system32\drivers\DPORTIO.SYS [3674] O58 - SDL:[MD5.D33CFEB3404D47AD146040AF6916BEB6] - 04/09/2011 - 15.51.03 ---A- . (.Doctor Web, Ltd. - Dr.Web Protection for Windows.) -- C:\WINDOWS\system32\drivers\dwprot.sys [135032] O58 - SDL:[MD5.00F73B6B7B8E1783516360DE6F4360E4] - 04/09/2011 - 13.07.30 ---A- . (.Intel Corporation - NDIS 5 driver.) -- C:\WINDOWS\system32\drivers\e100b325.sys [119808] O58 - SDL:[MD5.809C53946BD6EC9F20CBBC8EBA2FB161] - 04/09/2011 - 13.07.36 ---A- . (.Intel Corporation - NDIS 5 driver.) -- C:\WINDOWS\system32\drivers\e100bnt5.sys [123152] O58 - SDL:[MD5.BF8BAD1FAC5C0C73AE97859A3EB428BC] - 04/09/2011 - 2.00.00 ---A- . (.MK Systems CO., LTD. - LPT I/O driver for EPSON PRINTER.) -- C:\WINDOWS\system32\drivers\EPLPDX02.SYS [66240] O58 - SDL:[MD5.573C7D0A32852B48F3058CFD8026F511] - 04/09/2011 - 18.36.06 ---A- . (.Windows ® Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\system32\drivers\hdaudbus.sys [144384] O58 - SDL:[MD5.970178E8E003EB1481293830069624B9] - 04/09/2011 - 7.41.46 ---A- . (.Conexant Systems, Inc. - HSF_HWB2 WDM driver.) -- C:\WINDOWS\system32\drivers\hsfbs2s2.sys [220032] O58 - SDL:[MD5.1225EBEA76AAC3C84DF6C54FE5E5D8BE] - 04/09/2011 - 7.41.48 ---A- . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\WINDOWS\system32\drivers\hsfcxts2.sys [685056] O58 - SDL:[MD5.EBB354438A4C5A3327FB97306260714A] - 04/09/2011 - 7.41.54 ---A- . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\WINDOWS\system32\drivers\hsfdpsp2.sys [1041536] O58 - SDL:[MD5.E126E392F71C5C6CAED03ECCC9EEA375] - 04/09/2011 - 12.51.44 ---A- . (.Dritek System Inc. - Dritek Keyboard Filter Driver.) -- C:\WINDOWS\system32\drivers\KBFILTR.SYS [14538] O58 - SDL:[MD5.ECA00EED9AB95489007B0EF84C7149DE] - 04/09/2011 - 18.52.42 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbam.sys [22712] O58 - SDL:[MD5.B18225739ED9CAA83BA2DF966E9F43E8] - 04/09/2011 - 18.52.42 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys [41272] O58 - SDL:[MD5.195741AEE20369980796B557358CD774] - 04/09/2011 - 7.41.56 ---A- . (.Conexant - Diagnostic Interface DRIVER.) -- C:\WINDOWS\system32\drivers\mdmxsdk.sys [11868] O58 - SDL:[MD5.3EF4701A2FBE3F766AC49FED4FDA2961] - 04/09/2011 - 7.56.00 ---A- . (.Smart Link - No comment.) -- C:\WINDOWS\system32\drivers\mtlmnt5.sys [126686] O58 - SDL:[MD5.6F3A2A524D46B0935D8CB99106BC4F6B] - 04/09/2011 - 14.46.22 ---A- . (.Smart Link - No comment.) -- C:\WINDOWS\system32\drivers\mtlstrm.sys [1309184] O58 - SDL:[MD5.6DDA78A0BE692B61B668FAB860F276CF] - 04/09/2011 - 7.29.36 ---A- . (.Matrox Graphics Inc. - Matrox Parhelia Miniport Driver.) -- C:\WINDOWS\system32\drivers\mtxparhm.sys [452736] O58 - SDL:[MD5.BE984D604D91C217355CDD3737AAD25D] - 04/09/2011 - 11.00.00 ---A- . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\nikedrv.sys [12032] O58 - SDL:[MD5.75AC610A7481CB1F343DC971249BCB19] - 04/09/2011 - 16.57.20 ---A- . (.CACE Technologies - npf.sys (NT5/6 x86) Kernel Driver.) -- C:\WINDOWS\system32\drivers\npf_devolo.sys [35840] O58 - SDL:[MD5.FAF9C47E3CEA3C3609E2FDEEAABFFDA2] - 04/09/2011 - 15.37.46 ---A- . (.Smart Link - No comment.) -- C:\WINDOWS\system32\drivers\ntmtlfax.sys [180360] O58 - SDL:[MD5.2B298519EDBFCF451D43E0F1E8F1006D] - 04/09/2011 - 7.29.54 ---A- . (.NVIDIA Corporation - NVIDIA Compatible Windows 2000 Miniport Driver, Version 56.73.) -- C:\WINDOWS\system32\drivers\nv4_mini.sys [1897408] O58 - SDL:[MD5.80D317BD1C3DBC5D4FE7B1678C60CADD] - 04/09/2011 - 11.00.00 ---A- . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Library.) -- C:\WINDOWS\system32\drivers\ptilink.sys [17792] O58 - SDL:[MD5.93F4513A9C7F0C5EC318E4B59C6A3E7C] - 04/09/2011 - 15.03.30 ---A- . (.Smart Link - No comment.) -- C:\WINDOWS\system32\drivers\RecAgent.sys [13776] O58 - SDL:[MD5.A56FE08EC7473E8580A390BB1081CDD7] - 04/09/2011 - 11.00.00 ---A- . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\system32\drivers\rio8drv.sys [12032] O58 - SDL:[MD5.0A854DF84C77A0BE205BFEAB2AE4F0EC] - 04/09/2011 - 11.00.00 ---A- . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\riodrv.sys [12032] O58 - SDL:[MD5.7436BFD3A542CF6FF55097200031B293] - 04/09/2011 - 19.51.38 ---A- . (.Ralink Technology, Corp. - Ralink 802.11 USB Wireless Adapter Driver.) -- C:\WINDOWS\system32\drivers\rt73.sys [245248] O58 - SDL:[MD5.0DBCC071A268E0340A2BA6BDD98BACE4] - 04/09/2011 - 7.29.52 ---A- . (.S3 Graphics, Inc. - S3 ProSavage(DDR) & Twister Miniport Driver.) -- C:\WINDOWS\system32\drivers\s3gnbm.sys [166912] O58 - SDL:[MD5.0505DA5D357F18A5D42FC5DEDE6BC9A0] - 04/09/2011 - 15.30.21 ---A- . (.Sunbelt Software - Anti-Rootkit Engine.) -- C:\WINDOWS\system32\drivers\SBREDrv.sys [101720] O58 - SDL:[MD5.A643D6DF1B7546256B11FB5D6B5D1375] - 04/09/2011 - 0.06.34 ---A- . (.Screaming Bee LLC - Screaming Bee Audio Driver.) -- C:\WINDOWS\system32\drivers\ScreamingBAudio.sys [34384] O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 04/09/2011 - 18.39.16 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\WINDOWS\system32\drivers\secdrv.sys [20480] O58 - SDL:[MD5.6B33D0EBD30DB32E27D1D78FE946A754] - 04/09/2011 - 20.36.40 ---A- . (.Silicon Integrated Systems Corporation - SiS NT AGP Filter.) -- C:\WINDOWS\system32\drivers\sisagp.sys [40960] O58 - SDL:[MD5.D9673011648A71ED1E1F77B831BC85E6] - 04/09/2011 - 7.41.40 ---A- . (.Smart Link - No comment.) -- C:\WINDOWS\system32\drivers\slnt7554.sys [129535] O58 - SDL:[MD5.3A3620316CA4A0E32B189B1446957FEE] - 04/09/2011 - 7.56.00 ---A- . (.Smart Link - No comment.) -- C:\WINDOWS\system32\drivers\slntamr.sys [404990] O58 - SDL:[MD5.0F49E0D7A870FA4BEC8FD71F8163DC89] - 04/09/2011 - 15.26.28 ---A- . (.Smart Link - No comment.) -- C:\WINDOWS\system32\drivers\slnthal.sys [95424] O58 - SDL:[MD5.5C7B0D9631A9FD21D443932804061444] - 04/09/2011 - 14.20.44 ---A- . (.Smart Link - No comment.) -- C:\WINDOWS\system32\drivers\slwdmsup.sys [13240] O58 - SDL:[MD5.D74A8EC75305F1D3CFDE7C7FC1BD62A9] - 04/09/2011 - 11.00.00 ---A- . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\system32\drivers\tsbvcap.sys [21376] O58 - SDL:[MD5.4A55BDD4A1FFE650C3C2F8687C2EA4C2] - 04/09/2011 - 15.09.32 ---A- . (.Unknown owner - NTV90drv driver.) -- C:\WINDOWS\system32\drivers\v90drv.sys [1432836] O58 - SDL:[MD5.B2ABAB4CA46BAD182E27763DC19C780F] - 04/09/2011 - 11.56.04 ---A- . (.Avnex - Avnex Ltd. Virtual Audio Device (WDM).) -- C:\WINDOWS\system32\drivers\vcsvad.sys [17792] O58 - SDL:[MD5.55E01061C74A8CEFFF58DC36114A8D3F] - 04/09/2011 - 11.00.00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\system32\drivers\vdmindvd.sys [58112] O58 - SDL:[MD5.0308AEF61941E4AF478FA1A0F83812F5] - 04/09/2011 - 7.29.38 ---A- . (.Intel® Corporation - Digital Display Minidriver for Intel® Graphics Driver.) -- C:\WINDOWS\system32\drivers\wadv07nt.sys [11807] O58 - SDL:[MD5.714038A8AA5DE08E12062202CD7EAEB5] - 04/09/2011 - 7.29.40 ---A- . (.Intel® Corporation - Digital Display Minidriver for Intel® Graphics Driver.) -- C:\WINDOWS\system32\drivers\wadv08nt.sys [11295] O58 - SDL:[MD5.7BB3AA595E4507A788DE1CDC63F4C8C4] - 04/09/2011 - 7.29.40 ---A- . (.Intel® Corporation - Digital Display Minidriver for Intel® Graphics Driver.) -- C:\WINDOWS\system32\drivers\wadv09nt.sys [11871] O58 - SDL:[MD5.36E6C405B6143D09687F4056FD9A0D10] - 04/09/2011 - 7.29.40 ---A- . (.Intel® Corporation - Digital Display Minidriver for Intel® Graphics Driver.) -- C:\WINDOWS\system32\drivers\wadv11nt.sys [11935] O58 - SDL:[MD5.352FA0E98BC461CE1CE5D41F64DB558D] - 04/09/2011 - 7.29.44 ---A- . (.Intel® Corporation - Digital Display Minidriver for Intel® Graphics Driver.) -- C:\WINDOWS\system32\drivers\watv06nt.sys [22271] O58 - SDL:[MD5.791CC45DE6E50445BE72E8AD6401FF45] - 04/09/2011 - 7.29.46 ---A- . (.Intel® Corporation - Digital Display Minidriver for Intel® Graphics Driver.) -- C:\WINDOWS\system32\drivers\watv10nt.sys [25471] O58 - SDL:[MD5.702708177648100A166B27BF0C9FAFF3] - 04/09/2011 - 11.00.00 ---A- . (...) -- C:\WINDOWS\system32\ansi.sys [9030] O58 - SDL:[MD5.50EDC3BC29FFE35A3604E0CF041FDF24] - 04/09/2011 - 16.39.12 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\WINDOWS\system32\athur.sys [1334784] O58 - SDL:[MD5.438179ABE9B7A922A21B8D6369FF52FF] - 04/09/2011 - 18.18.38 ---A- . (.Broadcom Corporation - Broadcom iLine10 PCI Network Adapter Proxy Protocol Driver.) -- C:\WINDOWS\system32\bcm42rly.sys [17992] O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 04/09/2011 - 11.00.00 ---A- . (...) -- C:\WINDOWS\system32\country.sys [27097] O58 - SDL:[MD5.FC80052194D5708254A346568F0E77C0] - 04/09/2011 - 22.15.32 ---A- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 Protocol Driver.) -- C:\WINDOWS\system32\GTNDIS5.sys [15872] O58 - SDL:[MD5.2FD74A6FBB71D7B9E632B4ADABB5C6A7] - 04/09/2011 - 11.00.00 ---A- . (...) -- C:\WINDOWS\system32\himem.sys [4800] O58 - SDL:[MD5.582BCDD47CF4B68B5CB528F18E3CB808] - 04/09/2011 - 11.00.00 ---A- . (...) -- C:\WINDOWS\system32\key01.sys [42809] O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 04/09/2011 - 7.46.54 ---A- . (...) -- C:\WINDOWS\system32\keyboard.sys [42537] O58 - SDL:[MD5.0F2EC3370ACA9FC0E670796B12DAB26C] - 04/09/2011 - 11.00.00 ---A- . (...) -- C:\WINDOWS\system32\ntdos.sys [27898] O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 04/09/2011 - 11.00.00 ---A- . (...) -- C:\WINDOWS\system32\ntdos404.sys [29146] O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 04/09/2011 - 11.00.00 ---A- . (...) -- C:\WINDOWS\system32\ntdos411.sys [29370] O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 04/09/2011 - 11.00.00 ---A- . (...) -- C:\WINDOWS\system32\ntdos412.sys [29274] O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 04/09/2011 - 11.00.00 ---A- . (...) -- C:\WINDOWS\system32\ntdos804.sys [29146] O58 - SDL:[MD5.9E0E171211C47A13E1296FF707AA1F12] - 04/09/2011 - 7.45.30 ---A- . (...) -- C:\WINDOWS\system32\ntio.sys [33968] O58 - SDL:[MD5.6F73F50162DEF60C84B725C18CD9140F] - 04/09/2011 - 7.45.14 ---A- . (...) -- C:\WINDOWS\system32\ntio404.sys [34560] O58 - SDL:[MD5.0FDD5E69C1FF3B58043D44F2CC743D45] - 04/09/2011 - 7.45.10 ---A- . (...) -- C:\WINDOWS\system32\ntio411.sys [35648] O58 - SDL:[MD5.8842837C4D8311BF8E72BEE8CCC42217] - 04/09/2011 - 7.45.16 ---A- . (...) -- C:\WINDOWS\system32\ntio412.sys [35424] O58 - SDL:[MD5.6B56CEB3C6F9D5CD7293DBD9FE23B311] - 04/09/2011 - 7.45.12 ---A- . (...) -- C:\WINDOWS\system32\ntio804.sys [34560] O58 - SDL:[MD5.9BFCB3AB45A748FFD570F4D472C45939] - 04/09/2011 - 15.09.32 ---A- . (.Smart Link Ltd. - WINDDX.) -- C:\WINDOWS\system32\winddx.sys [42296] ~ Scan Drivers in 00mn 01s ---\\ List all tools cleaner (LATC) (O63) O63 - Logiciel: ZHPDiag 1.28 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 ~ Scan ADS in 00mn 00s ---\\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (.Smart Link Ltd. - WINDDX.) -- "%1" %* O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL comune della shell di Windows.) -- C:\WINDOWS\system32\shell32.dll O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (.Microsoft Corporation - DLL comune della shell di Windows.) -- "%1" %* O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (.Microsoft Corporation - DLL comune della shell di Windows.) -- "%1" %* O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> <FirefoxHTML>[HKLM\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Programmi\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.js> <jsfile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Editor del Registro di sistema.) -- C:\WINDOWS\regedit.exe O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Programmi\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - DLL comune della shell di Windows.) -- C:\WINDOWS\system32\shell32.dll O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (.Microsoft Corporation - DLL comune della shell di Windows.) -- "%1" %* O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (.Microsoft Corporation - DLL comune della shell di Windows.) -- "%1" %* O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Programmi\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.js> <jsfile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Editor del Registro di sistema.) -- C:\WINDOWS\regedit.exe ~ Scan Keys in 00mn 00s ---\\ Start Menu Internet (SMI) (O68) O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Programmi\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Programmi\Internet Explorer\iexplore.exe O68 - StartMenuInternet: <MSN Explorer> <>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - MSN.) -- C:\Programmi\MSN\MSNCoreFiles\MSN6.exe ~ Scan Keys in 00mn 00s ---\\ Search Browser Infection (SBI) (O69) O69 - SBI: SearchScopes [HKCU] ${searchCLSID} - (@ieframe.dll,-12512) - Bing O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (@ieframe.dll,-12512) - Bing O69 - SBI: SearchScopes [HKCU] {7943AC88-2202-4910-85BD-2A0437ACEAA0} [DefaultScope] - (Casella di ricerca Secure) - Yahoo! Search - Web Search ~ Scan Keys in 00mn 00s ---\\ Search Particular Root Folder (SPRF) (O84) [MD5.72D6C19F0568473A2B80D296E0C09E57] [sPRF][07/08/2011] (...) -- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\DelUnist.bat [293] [MD5.90FDC57C750CD790FB4B73DDD73B0CE9] [sPRF][03/09/2011] (.Softland - doPDF 7 printer Setup.) -- C:\Documents and Settings\minella\Desktop\dopdf-7.exe [4186384] [MD5.D92FADB393E56E6725CFD993C6DE6CBD] [sPRF][06/08/2008] (...) -- C:\Documents and Settings\minella\Desktop\Snippy.exe [102400] [MD5.A19C9781CF20F4C293FE6CBF6DD2A26A] [sPRF][19/08/2011] (.ESET - ESET SysInspector - System Analyzer Tool.) -- C:\Documents and Settings\minella\Desktop\SysInspector.exe [2676504] [MD5.DD3975246D8928C04549B31B6B49434F] [sPRF][24/03/2008] (.Adobe Systems Incorporated - Adobe® Flash® Player ActiveX Installer.) -- C:\WINDOWS\Downloaded Program Files\FP_AX_CAB_INSTALLER.exe [1527056] ~ Scan Files in 00mn 00s ---\\ Router Hijack DNS (O89) Server: UnKnown Address: 192.168.0.1 Nome: www.l.google.com Addresses: 209.85.148.99, 209.85.148.103, 209.85.148.104, 209.85.148.105 209.85.148.106, 209.85.148.147 Aliases: www.google.fr, www.google.com ~ Scan DNS in 00mn 02s ---\\ General States of Services not Microsoft (EGS) (SR=Running, SS=Stopped) SR - | Auto 102400 | (Ati HotKey Poller) . (...) - C:\WINDOWS\System32\Ati2evxx.exe SS - | Demand 04/09/2011 225280 | (dmadmin) . (.Microsoft Corp., Veritas Software.) - C:\WINDOWS\System32\dmadmin.exe SS - | Auto 04/09/2011 136176 | (gupdate) . (.Google Inc..) - C:\Programmi\Google\Update\GoogleUpdate.exe SS - | Demand 04/09/2011 136176 | (gupdatem) . (.Google Inc..) - C:\Programmi\Google\Update\GoogleUpdate.exe SS - | Demand 04/09/2011 69632 | (IDriverT) . (.Macrovision Corporation.) - C:\Programmi\File comuni\InstallShield\Driver\11\Intel 32\IDriverT.exe ~ Scan Services in 00mn 02s ---\\ Ricerca d'infezione MBR (MBR) (O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover Run by minella at 04/09/2011 12.07.31 device: opened successfully user: MBR read successfully Disk trace: called modules: ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys intelide.sys PCIIDEX.SYS 1 nt!IofCallDriver[0x804E37D5] -> \Device\Harddisk0\DR0[0x82F92AB8] 3 CLASSPNP[0xF8676FD7] -> nt!IofCallDriver[0x804E37D5] -> \Device\00000080[0x82FAA5B0] 5 ACPI[0xF85ED620] -> nt!IofCallDriver[0x804E37D5] -> \Device\Ide\IdeDeviceP0T0L0-3[0x82FAB030] kernel: MBR read successfully user & kernel MBR OK ~ Scan MBR in 00mn 04s ---\\ Search Master Boot Record Infection (MBRCheck)(O80) Written by ad13, Run by minella at 04/09/2011 12.07.33 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin ~ Scan MBR in 00mn 06s End of the scan (1124 lines in 00mn 45s)(0)
×
×
  • Créer...