Rapport ZHPDiag

tuttouno · le 4 septembre 2011

J'ai fait un scan avec VirusTotal:

Mon lien

J'ai fait un scan avec ZHPDiag dont voici le rapport ci-dessous. Y a t'il quelqu'un qui puisse aider? Merci par avance.

Rapport de ZHPDiag v1.28.1346 par Nicolas Coolman, Update du 29/08/2011

Run by minella at 04/09/2011 12.06.48

Web site : ZHPDiag Outil de diagnostic

---\\ Web Browser

MSIE: Internet Explorer v8.0.6001.18702 (Defaut)

MFIE: Mozilla Firefox 6.0.1 v6.0.1

---\\ Windows Product Information

Windows XP Home Edition Service Pack 3 (Build 2600)

Windows Automatic Updates : OK

Windows Genuine Advantage : KO

---\\ System Information

~ Processor: x86 Family 15 Model 1 Stepping 2, GenuineIntel

~ Operating System: 32 Bits

Boot mode: Normal (Normal boot)

Total RAM: 511 MB (62% free)

System Restore: Activé (Enable)

System drive C: has 34 GB (68%) free of 49 GB

---\\ Logged in mode

~ Computer Name: OEM-9GJGWOTZVJX

~ User Name: minella

~ All Users Names: SUPPORT_388945a0, minella, HelpAssistant, Guest, Administrator,

~ Unselected Option: O45,O61,O62,O65,O66,O82

Logged in as Administrator

---\\ Environnement Variables

~ System Unit : C:\

~ %AppData% : C:\Documents and Settings\minella\Dati applicazioni\

~ %Desktop% : C:\Documents and Settings\minella\Desktop\

~ %Favorites% : C:\Documents and Settings\minella\Preferiti\

~ %LocalAppData% : C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\

~ %StartMenu% : C:\Documents and Settings\minella\Menu Avvio\

~ %Windir% : C:\WINDOWS\

~ %System% : C:\WINDOWS\system32\

---\\ DOS/Devices

A:\ Floppy drive, Flash card reader, USB Key (Not Inserted)

C:\ Hard drive, Flash drive, Thumb drive (Free 34 Go of 49 Go)

D:\ Hard drive, Flash drive, Thumb drive (Free 14 Go of 26 Go)

E:\ CD-ROM drive (Not Inserted)

---\\ Security Center & Tools Informations

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK

[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK

[HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK

~ Scan Security Center in 00mn 00s

---\\ Search Generic System Files

[MD5.70D7F99D95615C3C278367756287DB71] - (.Microsoft Corporation - Esplora risorse.) (.04/09/2011 - 4.14.08.) -- C:\WINDOWS\Explorer.exe [1036288]

[MD5.D51A4B912A90554B580A2401DFAB02A5] - (....) (.04/09/2011 - 4.14.18.) -- C:\WINDOWS\system32\rundll32.exe [33280]

[MD5.0FCE3E748360B53853B26DC1CBDC4601] - (.Microsoft Corporation - Internet Extensions for Win32.) (.04/09/2011 - 20.30.26.) -- C:\WINDOWS\system32\wininet.dll [916480]

[MD5.9259170D29B5A256735FCB8B80280857] - (.Microsoft Corporation - Applicazione Accesso a Windows NT.) (.04/09/2011 - 4.14.24.) -- C:\WINDOWS\system32\Winlogon.exe [510464]

[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.04/09/2011 - 20.40.30.) -- C:\WINDOWS\system32\drivers\atapi.sys [96512]

[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.04/09/2011 - 21.15.54.) -- C:\WINDOWS\system32\drivers\ntfs.sys [574976]

~ Scan Generic Processes in 00mn 00s

---\\ Hidden files state (Hidden/Total)

~ Mes images (My Pictures) : 10/583

~ Mes Videos (My Videos) : 1/16

~ Mes Favoris (My Favorites) : 4/712

~ Mes Documents (My Documents) : 24/3584

~ Mon Bureau (My Desktop) : 0/54

~ Menu demarrer (Programs) : 4/94

~ Scan Hidden Files in 00mn 01s

---\\ Processi correnti

[MD5.CFCE43B70CA0CC4DCC8ADB62B792B173] - (.Microsoft Corporation - Antimalware Service Executable.) -- c:\Programmi\Microsoft Security Client\Antimalware\MsMpEng.exe [11736] [PID.]

[MD5.1F1B50AF8022BE6FB300FB7C9678A0C6] - (.Dritek System Inc. - Compal ATR10 Easy Button ( Multi-Language ).) -- C:\PROGRAMMI\EzButton\CPATR10.EXE [143360] [PID.1572]

[MD5.A40432BB46793F3A2AD42E6D23A8290F] - (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Programmi\File comuni\Java\Java Update\jusched.exe [252136] [PID.1588]

[MD5.B684C82B0DD15B7193926BC1FDC888E1] - (...) -- C:\WINDOWS\System32\Ati2evxx.exe [102400] [PID.]

[MD5.47197F67367B8BE7A9231F57E7BC22C7] - (.Microsoft Corporation - TCP/IP Services Application.) -- C:\WINDOWS\system32\tcpsvcs.exe [19456] [PID.]

[MD5.8CD4ECCB1122EF3E41C520D6C3B9699D] - (.Microsoft Corporation - Servizio SNMP.) -- C:\WINDOWS\System32\snmp.exe [33280] [PID.]

[MD5.0731C1C224668D011A7FD564CE58B825] - (.Google Inc. - Google Installer.) -- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Google\Update\1.3.21.65\GoogleCrashHandler.exe [140952] [PID.3308]

[MD5.7914370AAC5CDE8DCAE1C674A6C90229] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Programmi\ZHPDiag\ZHPDiag.exe [669696] [PID.732]

[MD5.79FE2E0D7859738225816658F0BB2A0D] - (.Microsoft Corporation - Application Layer Gateway Service.) -- C:\WINDOWS\System32\alg.exe [44544] [PID.]

~ Scan Processes Running in 00mn 00s

---\\ Mozilla Firefox, Plugins,Avviamento,Ricerca,Estensione (P2,M0,M1,M2,M3)

P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Oracle Corporation - Next Generation Java Plug-in 10.0.0 for Mozilla browsers.) -- C:\Programmi\Java\jre7\bin\new_plugin\npjp2.dll

P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.60531.0.) -- c:\Programmi\Microsoft Silverlight\4.0.60531.0\npctrl.dll

P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Programmi\Google\Update\1.3.21.65\npGoogleUpdate3.dll

P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Google\Update\1.3.21.65\npGoogleUpdate3.dll

~ Scan Firefox Browser in 00mn 00s

---\\ Internet Explorer, Avviamento,Ricerca,Estensione (R0,R1,R3,R4)

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R0 - HKUS\S-1-5-21-2230923689-4025279379-689279713-1005\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Microsoft Corporation

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Microsoft Corporation

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = Bing

R1 - HKUS\S-1-5-21-2230923689-4025279379-689279713-1005\Software\Microsoft\Internet Explorer\Main,Search Page = Microsoft Corporation

R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.19098 (longhorn_ie8_gdr.110617-1715)) -- C:\WINDOWS\system32\ieframe.dll

R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2

~ Scan IE Browser in 00mn 00s

---\\ Internet Explorer, Proxy Management (R5)

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

~ Scan Proxy management in 00mn 00s

---\\ Changed inifile Value, Mapped to Registry (F2)

F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,

F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"

~ Scan Keys in 00mn 00s

---\\ Hosts file redirection (O1)

~ Scan Hosts File in 00mn 00s

---\\ Auto loading programs from Registry (O4)

O4 - HKLM\..\Run: [CPATR10] . (.Dritek System Inc. - Compal ATR10 Easy Button ( Multi-Language ).) -- C:\PROGRAMMI\EzButton\CPATR10.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Programmi\File comuni\Java\Java Update\jusched.exe

O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- c:\Programmi\Microsoft Security Client\msseces.exe

O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe

O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] . (.Microsoft Corporation - Watson Subscriber for SENS Network Notifica.) -- c:\PROGRA~1\FILECO~1\MICROS~1\DW\dwtrig20.exe

O4 - HKUS\S-1-5-21-2230923689-4025279379-689279713-1005\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe

~ Scan Application in 00mn 00s

---\\ Other User Links (O4)

O4 - Global Startup: C:\Documents And Settings\minella\Desktop\Auslogics Registry Cleaner.lnk . (.Auslogics.) -- C:\Programmi\Auslogics\Auslogics Registry Cleaner\RegCleaner.exe

O4 - Global Startup: C:\Documents And Settings\minella\Desktop\Free Window Registry Repair.lnk . (...) -- C:\Programmi\Free Window Registry Repair\Regpair.exe

O4 - Global Startup: C:\Documents And Settings\minella\Desktop\Security Task Manager.lnk . (.Neuber GmbH.) -- C:\Programmi\Security Task Manager\TaskMan.exe

~ Scan Global Startup in 00mn 00s

---\\ Extra buttons on main IE button toolbar, or extra items in IE 'Tools' menu (O9)

O9 - Extra button: Inserisci &blog in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Programmi\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Programmi\Windows Live\Writer\WriterBrowserExtension.dll

~ Scan IE Extra Buttons in 00mn 00s

---\\ Winsock hijacker (Layered Service Provider) (O10)

O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Service Provider Microsoft Windows Sockets 2.0.) -- C:\WINDOWS\system32\mswsock.dll

O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll

O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Service Provider Microsoft Windows Sockets 2.0.) -- C:\WINDOWS\system32\mswsock.dll

~ Scan Winsock in 00mn 00s

---\\ Extra group in IE 'Advanced Options' window (O11)

O11 - Options group: [java_sun] Java (Sun). (.Oracle Corporation - Java Deployment Library .) - C:\Programmi\Java\jre7\bin\deploy.dll

~ Scan IE Plugins in 00mn 00s

---\\ 'Reset Web Settings' hijack (O14)

O14 - IERESET.INF: START_PAGE_URL=START_PAGE_URL="http://www.msn.com"

O14 - IERESET.INF: SAFESITE_VALUE=SAFESITE_VALUE="ie.search.msn.com"

~ Scan IE Paramètres WEB in 00mn 00s

---\\ ActiveX Objects (Downloaded Program Files) (O16)

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) -

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) -

~ Scan Objets ActiveX in 00mn 00s

---\\ Lop.com/Domain Hijackers (O17)

O17 - HKLM\System\CCS\Services\Tcpip\..\{2FF68F22-DAF7-4014-BC8A-B16E67E725F8}: DhcpNameServer = 192.168.0.1

O17 - HKLM\System\CS2\Services\Tcpip\..\{2FF68F22-DAF7-4014-BC8A-B16E67E725F8}: DhcpNameServer = 192.168.0.1

~ Scan Domain in 00mn 00s

---\\ Extra protocols (O18)

O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft ® HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll

O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll

O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Controllo ActiveX per streaming video.) -- C:\WINDOWS\system32\msvidctl.dll

O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll

O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll

O18 - Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll

O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll

O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll

O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\System32\itss.dll

O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft ® HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll

O18 - Handler: lid - {5C135180-9973-46D9-ABF4-148267CBB8BF} . (.Microsoft Corporation - Controllo ActiveX per streaming video.) -- C:\WINDOWS\System32\msvidctl.dll

O18 - Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL

O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll

O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft ® HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll

O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API.) -- C:\WINDOWS\System32\inetcomm.dll

O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll

O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\System32\itss.dll

O18 - Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL

O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft ® HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll

O18 - Handler: sysimage - {76E67A63-06E9-11D2-A840-006008059382} . (.Microsoft Corporation - Microsoft ® HTML Viewer.) -- C:\WINDOWS\System32\mshtml.dll

O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Controllo ActiveX per streaming video.) -- C:\WINDOWS\system32\msvidctl.dll

O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft ® HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll

O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} . (.Microsoft Corporation - WIA Scripting Layer.) -- C:\WINDOWS\System32\wiascr.dll

O18 - Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Programmi\Windows Live\Mail\mailcomm.dll

O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll

O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll

O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll

O18 - Filter: Class Install Handler - {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll

O18 - Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll

O18 - Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll

O18 - Filter: lzdhtml - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll

O18 - Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} . (.Microsoft Corporation - DLL comune della shell di Windows.) -- C:\WINDOWS\system32\SHELL32.dll

~ Scan Protocole Additionnel in 00mn 00s

---\\ AppInit_DLLs Registry value Autorun (O20)

O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\WINDOWS\system32\crypt32.dll

O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\WINDOWS\system32\cryptnet.dll

O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agente rete disconnessa.) -- C:\WINDOWS\system32\cscdll.dll

O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\System32\dimsntfy.dll

O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL comune per ricevere le notifiche di Win.) -- C:\WINDOWS\system32\wlnotify.dll

O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL comune per ricevere le notifiche di Win.) -- C:\WINDOWS\system32\wlnotify.dll

O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL di notifica del Servizio di accesso sec.) -- C:\WINDOWS\system32\sclgntfy.dll

O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL comune per ricevere le notifiche di Win.) -- C:\WINDOWS\system32\WlNotify.dll

O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL comune per ricevere le notifiche di Win.) -- C:\WINDOWS\system32\wlnotify.dll

O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL comune per ricevere le notifiche di Win.) -- C:\WINDOWS\system32\wlnotify.dll

~ Scan Winlogon in 00mn 00s

---\\ ShellServiceObjectDelayLoad (O21)

O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL comune della shell di Windows.) -- C:\WINDOWS\system32\shell32.dll

O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL comune della shell di Windows.) -- C:\WINDOWS\system32\SHELL32.dll

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll

O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Oggetto servizio shell Systray.) -- C:\WINDOWS\system32\stobject.dll

O21 - SSODL: UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} . (.Microsoft Corporation - Cartella e monitor cassetto UPNP.) -- C:\WINDOWS\system32\upnpui.dll

O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\WINDOWS\system32\WPDShServiceObj.dll

~ Scan SSODL in 00mn 00s

---\\ SharedTaskScheduler (O22)

O22 - SharedTaskScheduler: (no name) - {438755C2-A8BA-11D1-B96B-00A0C90312E1} . (.Microsoft Corporation - Shell Browser UI Library.) -- C:\WINDOWS\System32\browseui.dll

O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Shell Browser UI Library.) -- C:\WINDOWS\System32\browseui.dll

~ Scan STS/SSO in 00mn 00s

---\\ non Microsoft non disabled Windows XP/NT/2000 Services (O23)

O23 - Service: (Ati HotKey Poller) . (...) - C:\WINDOWS\System32\Ati2evxx.exe

O23 - Service: Google Update Service (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Programmi\Google\Update\GoogleUpdate.exe

~ Scan Services in 00mn 00s

---\\ Windows Active Desktop & MHTML Editor (O24)

O24 - Default MHTML Editor: Last - .(...) - (.not file.)

~ Scan Desktop Component in 00mn 00s

---\\ Compiti progettati in automazione (O39)

O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job

O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job

O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2230923689-4025279379-689279713-1005Core.job

O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2230923689-4025279379-689279713-1005UA.job

O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\MP Scheduled Scan.job

~ Scan Scheduled Task in 00mn 00s

---\\ Drivers lanciati all'avviamento (O41)

O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys

O41 - Driver: (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\WINDOWS\system32\DRIVERS\cdrom.sys

O41 - Driver: (i8042prt) . (.Microsoft Corporation - Driver della porta i8042.) - C:\WINDOWS\system32\DRIVERS\i8042prt.sys

O41 - Driver: (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\WINDOWS\system32\DRIVERS\imapi.sys

O41 - Driver: (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\WINDOWS\system32\DRIVERS\ipsec.sys

O41 - Driver: (Kbdclass) . (.Microsoft Corporation - Driver classe tastiera.) - C:\WINDOWS\system32\DRIVERS\kbdclass.sys

O41 - Driver: (Mouclass) . (.Microsoft Corporation - Driver Mouse Class.) - C:\WINDOWS\system32\DRIVERS\mouclass.sys

O41 - Driver: (MpFilter) . (.Microsoft Corporation - Microsoft antimalware file system filter dr.) - C:\WINDOWS\system32\DRIVERS\MpFilter.sys

O41 - Driver: (MpKsl086dee10) . (. - .) - c:\Documents and Settings\All Users\Dati applicazioni\Microsoft\Microsoft Antimalware\Definition Updates\{7F3F0182-233E-4A4C-A481-78CA7613E537}\MpKsl086dee10.sys (.not file.)

O41 - Driver: (MpKsl43b2535e) . (. - .) - c:\Documents and Settings\All Users\Dati applicazioni\Microsoft\Microsoft Antimalware\Definition Updates\{4A1FCCE8-E2CC-4A0C-A968-C9860D5A99B3}\MpKsl43b2535e.sys (.not file.)

O41 - Driver: (MpKsl43fd4808) . (. - .) - c:\Documents and Settings\All Users\Dati applicazioni\Microsoft\Microsoft Antimalware\Definition Updates\{8F0B78E1-93C6-4D61-B847-11B4A03E919B}\MpKsl43fd4808.sys (.not file.)

O41 - Driver: (MpKsl47a02c7a) . (.Microsoft Corporation - KSLDriver.) - c:\Documents and Settings\All Users\Dati applicazioni\Microsoft\Microsoft Antimalware\Definition Updates\{3D866697-C321-4337-8B26-3F986FAC3FFF}\MpKsl47a02c7a.sys

O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\WINDOWS\system32\DRIVERS\netbt.sys

O41 - Driver: (Processor) . (.Microsoft Corporation - Driver di periferica processore.) - C:\WINDOWS\system32\DRIVERS\processr.sys

O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\WINDOWS\system32\DRIVERS\rasacd.sys

O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\WINDOWS\system32\DRIVERS\RDPCDD.sys

O41 - Driver: (redbook) . (.Microsoft Corporation - Driver del filtro audio Redbook.) - C:\WINDOWS\system32\DRIVERS\redbook.sys

O41 - Driver: (swmidi) . (.Microsoft Corporation - Microsoft GS Wavetable Synthesizer.) - C:\WINDOWS\system32\drivers\swmidi.sys

O41 - Driver: (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\WINDOWS\system32\DRIVERS\tcpip.sys

O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\WINDOWS\system32\DRIVERS\termdd.sys

O41 - Driver: Controller video VGA. (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys

O41 - Driver: (wdmaud) . (.Microsoft Corporation - MMSYSTEM Wave/Midi API mapper.) - C:\WINDOWS\system32\drivers\wdmaud.sys

O41 - Driver: (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\WINDOWS\system32\DRIVERS\mrxsmb.sys

O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\WINDOWS\system32\DRIVERS\netbios.sys

O41 - Driver: (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\WINDOWS\system32\DRIVERS\rdbss.sys

O41 - Driver: (Tcpip6) . (.Microsoft Corporation - IPv6 driver.) - C:\WINDOWS\system32\DRIVERS\tcpip6.sys

~ Scan Drivers in 00mn 00s

---\\ Softwares installati (O42)

O42 - Logiciel: ACDSee - (.Unknown owner.) [HKLM] -- ACDSee

O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin

O42 - Logiciel: Aggiornamento critico per Windows Media Player 11 (KB959772) - (.Microsoft Corporation.) [HKLM] -- KB959772_WM11

O42 - Logiciel: Aggiornamento della protezione per Windows Internet Explorer 8 (KB2482017) - (.Microsoft Corporation.) [HKLM] -- KB2482017-IE8

O42 - Logiciel: Aggiornamento della protezione per Windows Internet Explorer 8 (KB2497640) - (.Microsoft Corporation.) [HKLM] -- KB2497640-IE8

O42 - Logiciel: Aggiornamento della protezione per Windows Internet Explorer 8 (KB2510531) - (.Microsoft Corporation.) [HKLM] -- KB2510531-IE8

O42 - Logiciel: Aggiornamento della protezione per Windows Internet Explorer 8 (KB2530548) - (.Microsoft Corporation.) [HKLM] -- KB2530548-IE8

O42 - Logiciel: Aggiornamento della protezione per Windows Internet Explorer 8 (KB2544521) - (.Microsoft Corporation.) [HKLM] -- KB2544521-IE8

O42 - Logiciel: Aggiornamento della protezione per Windows Internet Explorer 8 (KB2559049) - (.Microsoft Corporation.) [HKLM] -- KB2559049-IE8

O42 - Logiciel: Aggiornamento della protezione per Windows Internet Explorer 8 (KB982381) - (.Microsoft Corporation.) [HKLM] -- KB982381-IE8

O42 - Logiciel: Aggiornamento della protezione per Windows Media Player (KB2378111) - (.Microsoft Corporation.) [HKLM] -- KB2378111_WM9

O42 - Logiciel: Aggiornamento della protezione per Windows Media Player (KB952069) - (.Microsoft Corporation.) [HKLM] -- KB952069_WM9

O42 - Logiciel: Aggiornamento della protezione per Windows Media Player (KB954155) - (.Microsoft Corporation.) [HKLM] -- KB954155_WM9

O42 - Logiciel: Aggiornamento della protezione per Windows Media Player (KB968816) - (.Microsoft Corporation.) [HKLM] -- KB968816_WM9

O42 - Logiciel: Aggiornamento della protezione per Windows Media Player (KB973540) - (.Microsoft Corporation.) [HKLM] -- KB973540_WM9

O42 - Logiciel: Aggiornamento della protezione per Windows Media Player (KB975558) - (.Microsoft Corporation.) [HKLM] -- KB975558_WM8

O42 - Logiciel: Aggiornamento della protezione per Windows Media Player (KB978695) - (.Microsoft Corporation.) [HKLM] -- KB978695_WM9

O42 - Logiciel: Aggiornamento della protezione per Windows Media Player 11 (KB936782) - (.Microsoft Corporation.) [HKLM] -- KB936782_WMP11

O42 - Logiciel: Aggiornamento della protezione per Windows Media Player 11 (KB954154) - (.Microsoft Corporation.) [HKLM] -- KB954154_WM11

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2079403) - (.Microsoft Corporation.) [HKLM] -- KB2079403

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2115168) - (.Microsoft Corporation.) [HKLM] -- KB2115168

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2121546) - (.Microsoft Corporation.) [HKLM] -- KB2121546

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2160329) - (.Microsoft Corporation.) [HKLM] -- KB2160329

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2229593) - (.Microsoft Corporation.) [HKLM] -- KB2229593

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2259922) - (.Microsoft Corporation.) [HKLM] -- KB2259922

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2279986) - (.Microsoft Corporation.) [HKLM] -- KB2279986

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2286198) - (.Microsoft Corporation.) [HKLM] -- KB2286198

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2296011) - (.Microsoft Corporation.) [HKLM] -- KB2296011

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2296199) - (.Microsoft Corporation.) [HKLM] -- KB2296199

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2347290) - (.Microsoft Corporation.) [HKLM] -- KB2347290

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2360937) - (.Microsoft Corporation.) [HKLM] -- KB2360937

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2387149) - (.Microsoft Corporation.) [HKLM] -- KB2387149

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2393802) - (.Microsoft Corporation.) [HKLM] -- KB2393802

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2412687) - (.Microsoft Corporation.) [HKLM] -- KB2412687

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2419632) - (.Microsoft Corporation.) [HKLM] -- KB2419632

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2423089) - (.Microsoft Corporation.) [HKLM] -- KB2423089

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2436673) - (.Microsoft Corporation.) [HKLM] -- KB2436673

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2440591) - (.Microsoft Corporation.) [HKLM] -- KB2440591

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2443105) - (.Microsoft Corporation.) [HKLM] -- KB2443105

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2476490) - (.Microsoft Corporation.) [HKLM] -- KB2476490

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2476687) - (.Microsoft Corporation.) [HKLM] -- KB2476687

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2478960) - (.Microsoft Corporation.) [HKLM] -- KB2478960

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2478971) - (.Microsoft Corporation.) [HKLM] -- KB2478971

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2479628) - (.Microsoft Corporation.) [HKLM] -- KB2479628

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2479943) - (.Microsoft Corporation.) [HKLM] -- KB2479943

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2481109) - (.Microsoft Corporation.) [HKLM] -- KB2481109

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2483185) - (.Microsoft Corporation.) [HKLM] -- KB2483185

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2485376) - (.Microsoft Corporation.) [HKLM] -- KB2485376

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2485663) - (.Microsoft Corporation.) [HKLM] -- KB2485663

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2491683) - (.Microsoft Corporation.) [HKLM] -- KB2491683

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2503658) - (.Microsoft Corporation.) [HKLM] -- KB2503658

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2503665) - (.Microsoft Corporation.) [HKLM] -- KB2503665

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2506212) - (.Microsoft Corporation.) [HKLM] -- KB2506212

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2506223) - (.Microsoft Corporation.) [HKLM] -- KB2506223

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2507618) - (.Microsoft Corporation.) [HKLM] -- KB2507618

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2507938) - (.Microsoft Corporation.) [HKLM] -- KB2507938

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2508272) - (.Microsoft Corporation.) [HKLM] -- KB2508272

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2508429) - (.Microsoft Corporation.) [HKLM] -- KB2508429

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2509553) - (.Microsoft Corporation.) [HKLM] -- KB2509553

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2511455) - (.Microsoft Corporation.) [HKLM] -- KB2511455

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2524375) - (.Microsoft Corporation.) [HKLM] -- KB2524375

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2535512) - (.Microsoft Corporation.) [HKLM] -- KB2535512

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2536276) - (.Microsoft Corporation.) [HKLM] -- KB2536276

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2536276-v2) - (.Microsoft Corporation.) [HKLM] -- KB2536276-v2

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2544893) - (.Microsoft Corporation.) [HKLM] -- KB2544893

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2555917) - (.Microsoft Corporation.) [HKLM] -- KB2555917

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2562937) - (.Microsoft Corporation.) [HKLM] -- KB2562937

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2566454) - (.Microsoft Corporation.) [HKLM] -- KB2566454

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2567680) - (.Microsoft Corporation.) [HKLM] -- KB2567680

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB2570222) - (.Microsoft Corporation.) [HKLM] -- KB2570222

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB923561) - (.Microsoft Corporation.) [HKLM] -- KB923561

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB938464) - (.Microsoft Corporation.) [HKLM] -- KB938464

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB938464-v2) - (.Microsoft Corporation.) [HKLM] -- KB938464-v2

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB941569) - (.Microsoft Corporation.) [HKLM] -- KB941569

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB946648) - (.Microsoft Corporation.) [HKLM] -- KB946648

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB950762) - (.Microsoft Corporation.) [HKLM] -- KB950762

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB950974) - (.Microsoft Corporation.) [HKLM] -- KB950974

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB951066) - (.Microsoft Corporation.) [HKLM] -- KB951066

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB951376-v2) - (.Microsoft Corporation.) [HKLM] -- KB951376-v2

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB951698) - (.Microsoft Corporation.) [HKLM] -- KB951698

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB951748) - (.Microsoft Corporation.) [HKLM] -- KB951748

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB952004) - (.Microsoft Corporation.) [HKLM] -- KB952004

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB952954) - (.Microsoft Corporation.) [HKLM] -- KB952954

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB953838) - (.Microsoft Corporation.) [HKLM] -- KB953838

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB953839) - (.Microsoft Corporation.) [HKLM] -- KB953839

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB954211) - (.Microsoft Corporation.) [HKLM] -- KB954211

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB954459) - (.Microsoft Corporation.) [HKLM] -- KB954459

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB954600) - (.Microsoft Corporation.) [HKLM] -- KB954600

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB955069) - (.Microsoft Corporation.) [HKLM] -- KB955069

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB956391) - (.Microsoft Corporation.) [HKLM] -- KB956391

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB956572) - (.Microsoft Corporation.) [HKLM] -- KB956572

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB956744) - (.Microsoft Corporation.) [HKLM] -- KB956744

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB956802) - (.Microsoft Corporation.) [HKLM] -- KB956802

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB956803) - (.Microsoft Corporation.) [HKLM] -- KB956803

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB956841) - (.Microsoft Corporation.) [HKLM] -- KB956841

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB956844) - (.Microsoft Corporation.) [HKLM] -- KB956844

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB957095) - (.Microsoft Corporation.) [HKLM] -- KB957095

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB957097) - (.Microsoft Corporation.) [HKLM] -- KB957097

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB958644) - (.Microsoft Corporation.) [HKLM] -- KB958644

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB958687) - (.Microsoft Corporation.) [HKLM] -- KB958687

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB958690) - (.Microsoft Corporation.) [HKLM] -- KB958690

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB958869) - (.Microsoft Corporation.) [HKLM] -- KB958869

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB959426) - (.Microsoft Corporation.) [HKLM] -- KB959426

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB960225) - (.Microsoft Corporation.) [HKLM] -- KB960225

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB960715) - (.Microsoft Corporation.) [HKLM] -- KB960715

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB960803) - (.Microsoft Corporation.) [HKLM] -- KB960803

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB960859) - (.Microsoft Corporation.) [HKLM] -- KB960859

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB961371) - (.Microsoft Corporation.) [HKLM] -- KB961371

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB961373) - (.Microsoft Corporation.) [HKLM] -- KB961373

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB961501) - (.Microsoft Corporation.) [HKLM] -- KB961501

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB968537) - (.Microsoft Corporation.) [HKLM] -- KB968537

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB969059) - (.Microsoft Corporation.) [HKLM] -- KB969059

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB969898) - (.Microsoft Corporation.) [HKLM] -- KB969898

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB969947) - (.Microsoft Corporation.) [HKLM] -- KB969947

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB970238) - (.Microsoft Corporation.) [HKLM] -- KB970238

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB970430) - (.Microsoft Corporation.) [HKLM] -- KB970430

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB971468) - (.Microsoft Corporation.) [HKLM] -- KB971468

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB971486) - (.Microsoft Corporation.) [HKLM] -- KB971486

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB971557) - (.Microsoft Corporation.) [HKLM] -- KB971557

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB971633) - (.Microsoft Corporation.) [HKLM] -- KB971633

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB971657) - (.Microsoft Corporation.) [HKLM] -- KB971657

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB972270) - (.Microsoft Corporation.) [HKLM] -- KB972270

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB973346) - (.Microsoft Corporation.) [HKLM] -- KB973346

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB973354) - (.Microsoft Corporation.) [HKLM] -- KB973354

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB973507) - (.Microsoft Corporation.) [HKLM] -- KB973507

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB973525) - (.Microsoft Corporation.) [HKLM] -- KB973525

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB973869) - (.Microsoft Corporation.) [HKLM] -- KB973869

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB973904) - (.Microsoft Corporation.) [HKLM] -- KB973904

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB974112) - (.Microsoft Corporation.) [HKLM] -- KB974112

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB974318) - (.Microsoft Corporation.) [HKLM] -- KB974318

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB974392) - (.Microsoft Corporation.) [HKLM] -- KB974392

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB974571) - (.Microsoft Corporation.) [HKLM] -- KB974571

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB975025) - (.Microsoft Corporation.) [HKLM] -- KB975025

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB975467) - (.Microsoft Corporation.) [HKLM] -- KB975467

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB975560) - (.Microsoft Corporation.) [HKLM] -- KB975560

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB975561) - (.Microsoft Corporation.) [HKLM] -- KB975561

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB975562) - (.Microsoft Corporation.) [HKLM] -- KB975562

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB975713) - (.Microsoft Corporation.) [HKLM] -- KB975713

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB977165) - (.Microsoft Corporation.) [HKLM] -- KB977165

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB977816) - (.Microsoft Corporation.) [HKLM] -- KB977816

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB977914) - (.Microsoft Corporation.) [HKLM] -- KB977914

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB978037) - (.Microsoft Corporation.) [HKLM] -- KB978037

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB978251) - (.Microsoft Corporation.) [HKLM] -- KB978251

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB978262) - (.Microsoft Corporation.) [HKLM] -- KB978262

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB978338) - (.Microsoft Corporation.) [HKLM] -- KB978338

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB978542) - (.Microsoft Corporation.) [HKLM] -- KB978542

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB978601) - (.Microsoft Corporation.) [HKLM] -- KB978601

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB978706) - (.Microsoft Corporation.) [HKLM] -- KB978706

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB979309) - (.Microsoft Corporation.) [HKLM] -- KB979309

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB979482) - (.Microsoft Corporation.) [HKLM] -- KB979482

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB979559) - (.Microsoft Corporation.) [HKLM] -- KB979559

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB979683) - (.Microsoft Corporation.) [HKLM] -- KB979683

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB979687) - (.Microsoft Corporation.) [HKLM] -- KB979687

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB980195) - (.Microsoft Corporation.) [HKLM] -- KB980195

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB980218) - (.Microsoft Corporation.) [HKLM] -- KB980218

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB980232) - (.Microsoft Corporation.) [HKLM] -- KB980232

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB980436) - (.Microsoft Corporation.) [HKLM] -- KB980436

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB981322) - (.Microsoft Corporation.) [HKLM] -- KB981322

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB981852) - (.Microsoft Corporation.) [HKLM] -- KB981852

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB981957) - (.Microsoft Corporation.) [HKLM] -- KB981957

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB981997) - (.Microsoft Corporation.) [HKLM] -- KB981997

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB982132) - (.Microsoft Corporation.) [HKLM] -- KB982132

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB982214) - (.Microsoft Corporation.) [HKLM] -- KB982214

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB982665) - (.Microsoft Corporation.) [HKLM] -- KB982665

O42 - Logiciel: Aggiornamento della protezione per Windows XP (KB982802) - (.Microsoft Corporation.) [HKLM] -- KB982802

O42 - Logiciel: Aggiornamento per Windows Internet Explorer 8 (KB2447568) - (.Microsoft Corporation.) [HKLM] -- KB2447568-IE8

O42 - Logiciel: Aggiornamento per Windows XP (KB2141007) - (.Microsoft Corporation.) [HKLM] -- KB2141007

O42 - Logiciel: Aggiornamento per Windows XP (KB2345886) - (.Microsoft Corporation.) [HKLM] -- KB2345886

O42 - Logiciel: Aggiornamento per Windows XP (KB2467659) - (.Microsoft Corporation.) [HKLM] -- KB2467659

O42 - Logiciel: Aggiornamento per Windows XP (KB2541763) - (.Microsoft Corporation.) [HKLM] -- KB2541763

O42 - Logiciel: Aggiornamento per Windows XP (KB951072-v2) - (.Microsoft Corporation.) [HKLM] -- KB951072-v2

O42 - Logiciel: Aggiornamento per Windows XP (KB951978) - (.Microsoft Corporation.) [HKLM] -- KB951978

O42 - Logiciel: Aggiornamento per Windows XP (KB955759) - (.Microsoft Corporation.) [HKLM] -- KB955759

O42 - Logiciel: Aggiornamento per Windows XP (KB955839) - (.Microsoft Corporation.) [HKLM] -- KB955839

O42 - Logiciel: Aggiornamento per Windows XP (KB961503) - (.Microsoft Corporation.) [HKLM] -- KB961503

O42 - Logiciel: Aggiornamento per Windows XP (KB967715) - (.Microsoft Corporation.) [HKLM] -- KB967715

O42 - Logiciel: Aggiornamento per Windows XP (KB968389) - (.Microsoft Corporation.) [HKLM] -- KB968389

O42 - Logiciel: Aggiornamento per Windows XP (KB971029) - (.Microsoft Corporation.) [HKLM] -- KB971029

O42 - Logiciel: Aggiornamento per Windows XP (KB971737) - (.Microsoft Corporation.) [HKLM] -- KB971737

O42 - Logiciel: Aggiornamento per Windows XP (KB973687) - (.Microsoft Corporation.) [HKLM] -- KB973687

O42 - Logiciel: Aggiornamento per Windows XP (KB973815) - (.Microsoft Corporation.) [HKLM] -- KB973815

O42 - Logiciel: Aggiornamento rapido per Windows Media Player 11 (KB939683) - (.Microsoft Corporation.) [HKLM] -- KB939683

O42 - Logiciel: Aggiornamento rapido per Windows XP (KB2158563) - (.Microsoft Corporation.) [HKLM] -- KB2158563

O42 - Logiciel: Aggiornamento rapido per Windows XP (KB2443685) - (.Microsoft Corporation.) [HKLM] -- KB2443685

O42 - Logiciel: Aggiornamento rapido per Windows XP (KB2570791) - (.Microsoft Corporation.) [HKLM] -- KB2570791

O42 - Logiciel: Aggiornamento rapido per Windows XP (KB952287) - (.Microsoft Corporation.) [HKLM] -- KB952287

O42 - Logiciel: Aggiornamento rapido per Windows XP (KB961118) - (.Microsoft Corporation.) [HKLM] -- KB961118

O42 - Logiciel: Aggiornamento rapido per Windows XP (KB970653-v3) - (.Microsoft Corporation.) [HKLM] -- KB970653-v3

O42 - Logiciel: Aggiornamento rapido per Windows XP (KB976098-v2) - (.Microsoft Corporation.) [HKLM] -- KB976098-v2

O42 - Logiciel: Aggiornamento rapido per Windows XP (KB979306) - (.Microsoft Corporation.) [HKLM] -- KB979306

O42 - Logiciel: Aggiornamento rapido per Windows XP (KB981793) - (.Microsoft Corporation.) [HKLM] -- KB981793

O42 - Logiciel: AnmanieSMP 2.4 i - (.Christoph Walter.) [HKLM] -- AnmanieSMP_is1

O42 - Logiciel: ArcSoft Panorama Maker 3 - (.ArcSoft.) [HKLM] -- {A5F68DC8-0278-4AD8-B413-861509B5F25B}

O42 - Logiciel: Auslogics Registry Cleaner - (.Auslogics Software Pty Ltd.) [HKLM] -- {8D8024F1-2945-49A5-9B78-5AB7B11D7942}_is1

O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner

O42 - Logiciel: CPUID HWMonitor 1.16 - (.Unknown owner.) [HKLM] -- CPUID HWMonitor_is1

O42 - Logiciel: Canon MP Navigator EX 1.2 - (.Unknown owner.) [HKLM] -- MP Navigator EX 1.2

O42 - Logiciel: Canon MP190 series MP Drivers - (.Unknown owner.) [HKLM] -- {1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP190_series

O42 - Logiciel: Canon My Printer - (.Unknown owner.) [HKLM] -- CanonMyPrinter

O42 - Logiciel: Canon Utilities Easy-PhotoPrint EX - (.Unknown owner.) [HKLM] -- Easy-PhotoPrint EX

O42 - Logiciel: Canon Utilities Solution Menu - (.Unknown owner.) [HKLM] -- CanonSolutionMenu

O42 - Logiciel: ConvertHelper 2.2 - (.DownloadHelper.) [HKLM] -- {27CC6AB1-E72B-4179-AF1A-EAE507EBAF51}_is1

O42 - Logiciel: Cretacarte - (.Unknown owner.) [HKLM] -- Cretacarte

O42 - Logiciel: Cute Video Audio Merger Free Version 1.2.1.0 - (.Unknown owner.) [HKLM] -- Cute Video Audio Merger Free Version_is1

O42 - Logiciel: CutePDF Writer 2.8 - (.Unknown owner.) [HKLM] -- CutePDF Writer Installation

O42 - Logiciel: DVDVideoSoftTB Toolbar - (.Unknown owner.) [HKLM] -- DVDVideoSoftTB Toolbar

O42 - Logiciel: Defraggler - (.Piriform.) [HKLM] -- Defraggler

O42 - Logiciel: Easy Button - (.Unknown owner.) [HKLM] -- CPATR10

O42 - Logiciel: FormatFactory 2.60 - (.Free Time.) [HKLM] -- FormatFactory

O42 - Logiciel: Fortop SWF Resources Extractor 2.0 - (.Unknown owner.) [HKLM] -- {1DEE433C-F903-44b5-821A-1E10D5DD1B3C}_is1

O42 - Logiciel: Free Video to JPG Converter version 1.8.7 - (.DVDVideoSoft Limited..) [HKLM] -- Free Video to JPG Converter_is1

O42 - Logiciel: Free Window Registry Repair - (.Unknown owner.) [HKLM] -- Free Window Registry Repair

O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU] -- Google Chrome

O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595

O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484

O42 - Logiciel: Hotfix for Windows Media Format 11 SDK (KB929399) - (.Microsoft Corporation.) [HKLM] -- KB929399

O42 - Logiciel: IZArc 4.1.2 - (.Ivan Zahariev.) [HKLM] -- {97C82B44-D408-4F14-9252-47FC1636D23E}_is1

O42 - Logiciel: Inspic 2.5.2 - (.Miniwish Software..) [HKLM] -- Inspic_is1

O42 - Logiciel: Intel® PRO Ethernet Adapter and Software - (.Unknown owner.) [HKLM] -- PROSet

O42 - Logiciel: Malwarebytes' Anti-Malware version 1.51.1.1800 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1

O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - Language Pack (ITA) - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile ITA Language Pack

O42 - Logiciel: Microsoft Compression Client Pack 1.0 for Windows XP - (.Microsoft Corporation.) [HKLM] -- MSCompPackV1

O42 - Logiciel: Microsoft Internationalized Domain Names Mitigation APIs - (.Microsoft Corporation.) [HKLM] -- IDNMitigationAPIs

O42 - Logiciel: Microsoft National Language Support Downlevel APIs - (.Microsoft Corporation.) [HKLM] -- NLSDownlevelMapping

O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM] -- Microsoft Security Client

O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- Wudf01000

O42 - Logiciel: Mozilla Firefox 6.0.1 (x86 it) - (.Mozilla.) [HKLM] -- Mozilla Firefox 6.0.1 (x86 it)

O42 - Logiciel: NTI FileCD - (.Unknown owner.) [HKLM] -- FileCD

O42 - Logiciel: PDF-Viewer - (.Tracker Software Products Ltd.) [HKLM] -- {8D273DE5-ABFA-4BD0-A9D7-EE9C971438C4}_is1

O42 - Logiciel: PhotoFiltre - (.Unknown owner.) [HKCU] -- PhotoFiltre

O42 - Logiciel: PowerDVD - (.Unknown owner.) [HKLM] -- {6811CAA0-BF12-11D4-9EA1-0050BAE317E1}

O42 - Logiciel: Ralink Wireless LAN Card - (.RALINK.) [HKLM] -- {E91E8912-769D-42F0-8408-0E329443BABC}

O42 - Logiciel: Recuva - (.Piriform.) [HKLM] -- Recuva

O42 - Logiciel: SWF Opener - (.UnH Solutions.) [HKLM] -- {01386D1F-ADE7-43B4-A4E9-312FC5BC726F}_is1

O42 - Logiciel: Security Task Manager 1.7h - (.Neuber GmbH.) [HKLM] -- Security Task Manager

O42 - Logiciel: Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB2416473

O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2478663

O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2518870

O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2539636

O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile - Language Pack (ITA) (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {32714140-CBC5-3FAF-BFC2-3A7376C3EECF}.KB2478663

O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile - Language Pack (ITA) (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {32714140-CBC5-3FAF-BFC2-3A7376C3EECF}.KB2518870

O42 - Logiciel: Security Update for Windows XP (KB923789) - (.Microsoft Corporation.) [HKLM] -- KB923789

O42 - Logiciel: Smart Link 56K Modem - (.Unknown owner.) [HKLM] -- SLAMRNTO

O42 - Logiciel: Some PDF Image Extractr 1.5 - (.SomePDF.com.) [HKLM] -- Some PDF Image Extract_is1

O42 - Logiciel: Speccy - (.Piriform.) [HKLM] -- Speccy

O42 - Logiciel: Subtitle Workshop 2.51 - (.Unknown owner.) [HKLM] -- SubtitleWorkshop

O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707

O42 - Logiciel: VLC media player 1.1.9 - (.VideoLAN.) [HKLM] -- VLC media player

O42 - Logiciel: Visual C++ 2008 x86 Runtime - v9.0.30729.01 - (.Microsoft Corporation.) [HKLM] -- {F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01

O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) [HKLM] -- ie8

O42 - Logiciel: Windows Live Essentials - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite_Wave3

O42 - Logiciel: Windows Media Format 11 runtime - (.Microsoft Corporation.) [HKLM] -- WMFDist11

O42 - Logiciel: Windows Media Format 11 runtime - (.Unknown owner.) [HKLM] -- Windows Media Format Runtime

O42 - Logiciel: Windows Media Player 11 - (.Microsoft Corporation.) [HKLM] -- wmp11

O42 - Logiciel: Windows Media Player 11 - (.Unknown owner.) [HKLM] -- Windows Media Player

O42 - Logiciel: Windows PowerShell 1.0 - (.Microsoft Corporation.) [HKLM] -- KB926139-v2

O42 - Logiciel: Windows XP Service Pack 3 - (.Microsoft Corporation.) [HKLM] -- Windows XP Service Pack

O42 - Logiciel: XML Paper Specification Shared Components Language Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- XPSEPSCLP

O42 - Logiciel: ZebHelpProcess 2.50 - (.Nicolas Coolman.) [HKLM] -- Zeb Help Process_is1

O42 - Logiciel: ZikiTranslator 1.3.6a - (.Zikitrake Software.) [HKLM] -- ZikiTranslator

O42 - Logiciel: devolo EasyShare - (.devolo AG.) [HKLM] -- easyshare

O42 - Logiciel: devolo Informer - (.devolo AG.) [HKLM] -- dslmon

O42 - Logiciel: devolo dLAN - Assistente di configurazione - (.devolo AG.) [HKLM] -- dlanconf

O42 - Logiciel: doPDF 7.2 printer - (.Softland.) [HKLM] -- doPDF 7 printer_is1

---\\ HKCU & HKLM Software Keys

[HKCU\Software\ACD Systems]

[HKCU\Software\Acro Software Inc]

[HKCU\Software\Applications WinDev]

[HKCU\Software\ArcSoft]

[HKCU\Software\Auslogics]

[HKCU\Software\Borland]

[HKCU\Software\CanonBJ]

[HKCU\Software\Canon]

[HKCU\Software\Classes]

[HKCU\Software\Clients]

[HKCU\Software\CrystalIdea Software]

[HKCU\Software\CyberLink]

[HKCU\Software\DVDVideoSoft]

[HKCU\Software\EasyBits]

[HKCU\Software\Enrico Ros]

[HKCU\Software\FormatFactory]

[HKCU\Software\Fortop Digital]

[HKCU\Software\FreeTime]

[HKCU\Software\GNU]

[HKCU\Software\Gabest]

[HKCU\Software\Google]

[HKCU\Software\IM Providers]

[HKCU\Software\IZSoftware]

[HKCU\Software\Intel]

[HKCU\Software\JavaSoft]

[HKCU\Software\Macromedia]

[HKCU\Software\Malwarebytes' Anti-Malware]

[HKCU\Software\MozillaPlugins]

[HKCU\Software\Mozilla]

[HKCU\Software\Netscape]

[HKCU\Software\Neuber GbR]

[HKCU\Software\ODBC]

[HKCU\Software\Piriform]

[HKCU\Software\Policies]

[HKCU\Software\Skype]

[HKCU\Software\Softland]

[HKCU\Software\Symantec]

[HKCU\Software\Sysinternals]

[HKCU\Software\Tracker Software]

[HKCU\Software\TrendMicro]

[HKCU\Software\UnH Solutions]

[HKCU\Software\VirtualDub.org]

[HKCU\Software\devolo]

[HKCU\Software\freepdftoimage]

[HKLM\Software\ACD Systems]

[HKLM\Software\ATI Technologies]

[HKLM\Software\Acro Software Inc]

[HKLM\Software\Adobe]

[HKLM\Software\Borland]

[HKLM\Software\C07ft5Y]

[HKLM\Software\Canon]

[HKLM\Software\Classes]

[HKLM\Software\Clients]

[HKLM\Software\CyberLink]

[HKLM\Software\DVDVideoSoft]

[HKLM\Software\Fortop Digital]

[HKLM\Software\GNU]

[HKLM\Software\GPL Ghostscript]

[HKLM\Software\Google]

[HKLM\Software\InstallShield]

[HKLM\Software\InstalledOptions]

[HKLM\Software\Intel]

[HKLM\Software\JavaRa]

[HKLM\Software\JavaSoft]

[HKLM\Software\JreMetrics]

[HKLM\Software\LCx]

[HKLM\Software\Macromedia]

[HKLM\Software\Malwarebytes' Anti-Malware]

[HKLM\Software\MozillaPlugins]

[HKLM\Software\Mozilla]

[HKLM\Software\NewTech Infosystems]

[HKLM\Software\ODBC]

[HKLM\Software\PegasusImaging]

[HKLM\Software\Piriform]

[HKLM\Software\Policies]

[HKLM\Software\Program Groups]

[HKLM\Software\RALINK]

[HKLM\Software\RegisteredApplications]

[HKLM\Software\Saltybrine]

[HKLM\Software\Skype]

[HKLM\Software\SmartLink]

[HKLM\Software\Softland]

[HKLM\Software\Tracker Software]

[HKLM\Software\TrendMicro]

[HKLM\Software\URUSoft]

[HKLM\Software\Uniblue]

[HKLM\Software\VideoLAN]

[HKLM\Software\Wow6432Node]

[HKLM\Software\devolo]

[HKLM\Software\iTinySoft]

[HKLM\Software\mozilla.org]

[HKLM\Software\rising]

~ Scan Softwares in 00mn 01s

---\\ Contenuto delle files comuni (O43)

O43 - CFD: 31/10/2008 - 15.06.48 - [8041928] ----D- C:\Program Files\ACD Systems

O43 - CFD: 31/10/2008 - 15.10.42 - [1528229] ----D- C:\Documents and Settings\minella\Dati applicazioni\ACD Systems

O43 - CFD: 13/09/2010 - 14.42.38 - [6886426] ----D- C:\Documents and Settings\minella\Dati applicazioni\Adobe

O43 - CFD: 13/10/2009 - 20.15.44 - [172881] ----D- C:\Documents and Settings\minella\Dati applicazioni\Ahead

O43 - CFD: 06/04/2011 - 1.53.20 - [175007] ----D- C:\Documents and Settings\minella\Dati applicazioni\Apple Computer

O43 - CFD: 06/04/2011 - 1.53.20 - [55] ----D- C:\Documents and Settings\minella\Dati applicazioni\ArcSoft

O43 - CFD: 31/08/2011 - 11.19.06 - [165119] ----D- C:\Documents and Settings\minella\Dati applicazioni\Auslogics

O43 - CFD: 03/05/2010 - 15.55.50 - [38219] ----D- C:\Documents and Settings\minella\Dati applicazioni\Avnex

O43 - CFD: 16/05/2011 - 8.03.04 - [4173930] ----D- C:\Documents and Settings\minella\Dati applicazioni\Canon

O43 - CFD: 13/09/2010 - 14.49.16 - [1249] ----D- C:\Documents and Settings\minella\Dati applicazioni\com.youneedabudget.YNAB3.Live.9C763150EFAB05FD2A2B78705C7A54E2FCDDE07D.1

O43 - CFD: 12/11/2008 - 2.23.52 - [5357] ----D- C:\Documents and Settings\minella\Dati applicazioni\DeepBurner

O43 - CFD: 02/07/2009 - 9.09.14 - [52124] ----D- C:\Documents and Settings\minella\Dati applicazioni\Desktop3D

O43 - CFD: 15/01/2009 - 13.22.32 - [16440] ----D- C:\Documents and Settings\minella\Dati applicazioni\DivX

O43 - CFD: 06/04/2011 - 1.53.28 - [199] ----D- C:\Documents and Settings\minella\Dati applicazioni\dvdcss

O43 - CFD: 18/04/2011 - 18.14.34 - [1777175] ----D- C:\Documents and Settings\minella\Dati applicazioni\ElevatedDiagnostics

O43 - CFD: 19/10/2008 - 19.01.56 - [46182] ----D- C:\Documents and Settings\minella\Dati applicazioni\FastStone

O43 - CFD: 20/09/2009 - 10.11.22 - [7406] ----D- C:\Documents and Settings\minella\Dati applicazioni\Foxit

O43 - CFD: 30/08/2010 - 14.23.04 - [233] ----D- C:\Documents and Settings\minella\Dati applicazioni\FreeAudioPack

O43 - CFD: 06/04/2011 - 1.53.30 - [435] ----D- C:\Documents and Settings\minella\Dati applicazioni\FreeCDRipper

O43 - CFD: 10/10/2009 - 11.17.26 - [52378] ----D- C:\Documents and Settings\minella\Dati applicazioni\FreeFLVConverter

O43 - CFD: 15/08/2011 - 19.05.10 - [4028] ----D- C:\Documents and Settings\minella\Dati applicazioni\FRISK Software

O43 - CFD: 01/01/2009 - 14.14.38 - [13970] ----D- C:\Documents and Settings\minella\Dati applicazioni\GeoVid

O43 - CFD: 24/08/2011 - 17.29.40 - [313969] ----D- C:\Documents and Settings\minella\Dati applicazioni\GlarySoft

O43 - CFD: 30/08/2010 - 18.47.58 - [83] ----D- C:\Documents and Settings\minella\Dati applicazioni\gtk-2.0

O43 - CFD: 22/11/2008 - 19.34.44 - [63] ----D- C:\Documents and Settings\minella\Dati applicazioni\Help

O43 - CFD: 19/02/2011 - 23.52.06 - [22] ----D- C:\Documents and Settings\minella\Dati applicazioni\HideIPEasy

O43 - CFD: 10/02/2010 - 19.24.58 - [9480] ----D- C:\Documents and Settings\minella\Dati applicazioni\Inspic

O43 - CFD: 25/09/2008 - 19.55.44 - [1556] ----D- C:\Documents and Settings\minella\Dati applicazioni\Macromedia

O43 - CFD: 06/11/2008 - 21.44.34 - [32649] ----D- C:\Documents and Settings\minella\Dati applicazioni\Malwarebytes

O43 - CFD: 03/02/2009 - 19.03.28 - [242] ----D- C:\Documents and Settings\minella\Dati applicazioni\Mc & RENOX

O43 - CFD: 25/05/2011 - 18.38.46 - [6210777] -S--D- C:\Documents and Settings\minella\Dati applicazioni\Microsoft

O43 - CFD: 06/05/2011 - 19.28.06 - [213542666] ----D- C:\Documents and Settings\minella\Dati applicazioni\Mozilla

O43 - CFD: 11/01/2010 - 1.22.32 - [636] ----D- C:\Documents and Settings\minella\Dati applicazioni\MSN6

O43 - CFD: 03/04/2010 - 0.37.50 - [663552] ----D- C:\Documents and Settings\minella\Dati applicazioni\Nikon

O43 - CFD: 06/04/2011 - 1.53.36 - [17150] ----D- C:\Documents and Settings\minella\Dati applicazioni\NoteTab Light

O43 - CFD: 19/10/2008 - 19.30.38 - [4286260] ----D- C:\Documents and Settings\minella\Dati applicazioni\Participatory Culture Foundation

O43 - CFD: 19/10/2008 - 19.34.52 - [313126] ----D- C:\Documents and Settings\minella\Dati applicazioni\PCF-VLC

O43 - CFD: 10/02/2010 - 19.44.36 - [385] ----D- C:\Documents and Settings\minella\Dati applicazioni\PhotoFiltre

O43 - CFD: 06/04/2011 - 2.14.04 - [6470] ----D- C:\Documents and Settings\minella\Dati applicazioni\Process Hacker 2

O43 - CFD: 23/01/2010 - 18.18.22 - [622] ----D- C:\Documents and Settings\minella\Dati applicazioni\Salty Brine

O43 - CFD: 04/05/2010 - 18.36.08 - [1132895] ----D- C:\Documents and Settings\minella\Dati applicazioni\Screaming Bee

O43 - CFD: 05/08/2011 - 12.36.18 - [6872796] ----D- C:\Documents and Settings\minella\Dati applicazioni\Skype

O43 - CFD: 21/07/2011 - 10.03.30 - [10400] ----D- C:\Documents and Settings\minella\Dati applicazioni\skypePM

O43 - CFD: 07/08/2011 - 21.41.12 - [757] ----D- C:\Documents and Settings\minella\Dati applicazioni\Softland

O43 - CFD: 28/01/2010 - 18.49.56 - [12475] ----D- C:\Documents and Settings\minella\Dati applicazioni\SumatraPDF

O43 - CFD: 21/10/2008 - 14.32.00 - [36716286] ----D- C:\Documents and Settings\minella\Dati applicazioni\Sun

O43 - CFD: 24/04/2011 - 16.33.56 - [328060] ----D- C:\Documents and Settings\minella\Dati applicazioni\thecleaner

O43 - CFD: 03/08/2011 - 17.29.54 - [728210] ----D- C:\Documents and Settings\minella\Dati applicazioni\vlc

O43 - CFD: 15/01/2011 - 0.52.06 - [8701123] ----D- C:\Documents and Settings\minella\Dati applicazioni\Windows Live Writer

O43 - CFD: 30/09/2008 - 13.41.28 - [1204] ----D- C:\Documents and Settings\minella\Dati applicazioni\zweitgeist

O43 - CFD: 13/09/2010 - 14.38.06 - [8489] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Adobe

O43 - CFD: 11/10/2009 - 8.40.12 - [5106466] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Ahead

O43 - CFD: 10/09/2009 - 10.17.54 - [336935] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Apple Computer

O43 - CFD: 16/08/2011 - 13.09.26 - [134] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Browser Guard

O43 - CFD: 07/02/2009 - 11.58.42 - [14096] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Cooliris

O43 - CFD: 07/08/2011 - 21.38.46 - [10282552] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\CutePDF Writer

O43 - CFD: 25/05/2011 - 18.19.16 - [0] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Deployment

O43 - CFD: 14/08/2011 - 16.50.34 - [38058496] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Downloaded Installations

O43 - CFD: 25/05/2011 - 18.22.08 - [447284772] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Google

O43 - CFD: 22/08/2011 - 15.28.56 - [0] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Help

O43 - CFD: 27/09/2008 - 15.39.12 - [305426] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Identities

O43 - CFD: 12/10/2009 - 15.27.16 - [1909] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\IsolatedStorage

O43 - CFD: 29/08/2011 - 16.52.58 - [54248032] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Microsoft

O43 - CFD: 26/09/2008 - 14.31.42 - [50003413] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Mozilla

O43 - CFD: 03/06/2011 - 9.16.22 - [0] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\PackageAware

O43 - CFD: 19/10/2008 - 19.30.38 - [2284708] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Participatory Culture Foundation

O43 - CFD: 24/08/2011 - 14.52.00 - [0] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\PCHealth

O43 - CFD: 30/08/2011 - 8.31.26 - [488] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Sun

O43 - CFD: 16/08/2011 - 16.19.30 - [0] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Sunbelt Software

O43 - CFD: 04/08/2011 - 10.24.40 - [0] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Temp

O43 - CFD: 15/01/2011 - 0.07.04 - [703725] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Windows Live Writer

O43 - CFD: 02/03/2011 - 19.11.02 - [168448] ----D- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\WMTools Downloaded Files

~ Scan Program Folder in 00mn 00s

---\\ Ultimi files modificati o creati sotto Windows e System32 (O44)

O44 - LFC:[MD5.28C42458A0347B4922BFFF4F2ED34DA9] - 02/09/2011 - 9.45.10 ---A- . (...) -- C:\WINDOWS\system32\wpa.dbl [1158]

O44 - LFC:[MD5.E185BDA84E5F03F4E1D8DCA30E209277] - 02/09/2011 - 9.46.22 ---A- . (...) -- C:\WINDOWS\epplauncher.mif [1912]

O44 - LFC:[MD5.58C8D45C571AA9235FB296B383B89887] - 05/11/2009 - 7.39.40 ---A- . (...) -- C:\WINDOWS\system32\cpwmon2k.dll [87552]

O44 - LFC:[MD5.4BC02BD73338C3A26265F5C64DBEC770] - 12/11/1999 - 4.11.00 ---A- . (...) -- C:\WINDOWS\system32\BDEADMIN.CPL [183808]

O44 - LFC:[MD5.8C25E347F5E2C2BCA9B5258A68B72AE7] - 20/01/1999 - 4.01.00 ---A- . (...) -- C:\WINDOWS\system32\DBCLIENT.DLL [210032]

O44 - LFC:[MD5.F61DF22835F390A718706EFAF02C55F9] - 25/08/2011 - 1.13.32 ---A- . (...) -- C:\Boot.bak [211]

O44 - LFC:[MD5.6ADEFE2A279EC2F309C5FE0769354A1F] - 25/08/2011 - 1.13.32 ---A- . (...) -- C:\WINDOWS\win.ini [879]

O44 - LFC:[MD5.01C706CEC9C95A6B764FBD6F350AF5D2] - 26/08/2011 - 8.53.05 ---A- . (...) -- C:\WINDOWS\system32\drivers\sfi.dat [1474832]

O44 - LFC:[MD5.0CB7AF5CC01504A6863AD5357C1A0FDA] - 04/09/2011 - 11.06.39 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin [512]

O44 - LFC:[MD5.1A320637F47288E75DC38368D942D4D1] - 04/09/2011 - 11.05.42 ---A- . (...) -- C:\PDOXUSRS.NET [13030]

O44 - LFC:[MD5.6A2CB42966136854F4464516FBB4AE72] - 04/09/2011 - 10.08.34 -S-A- . (...) -- C:\WINDOWS\bootstat.dat [2048]

O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 31/08/2011 - 19.59.22 ---A- . (...) -- C:\WINDOWS\system.ini [0]

O44 - LFC:[MD5.012058B1753F8A6C221D1884098FBD82] - 31/08/2011 - 13.12.32 RSHA- . (...) -- C:\boot.ini [327]

O44 - LFC:[MD5.69CA82A7482A00D8EE063D2B97FC4338] - 31/08/2011 - 12.56.02 ---A- . (...) -- C:\RSIT.exe [781383]

O44 - LFC:[MD5.A1DAAD6FED70F6F971925B7C4292F5D2] - 31/08/2011 - 10.01.10 ---A- . (...) -- C:\RegpairSetup.exe [799120]

O44 - LFC:[MD5.5B7568FE34F77232BCC2B8E8D66173E0] - 29/08/2011 - 18.38.08 ---A- . (.Oracle Corporation - Java Control Panel.) -- C:\WINDOWS\system32\javacpl.cpl [128000]

O44 - LFC:[MD5.51282DDB868A9F296248FCE97F560E66] - 29/08/2011 - 18.38.08 ---A- . (.Oracle Corporation - Java Platform SE binary.) -- C:\WINDOWS\system32\java.exe [173960]

O44 - LFC:[MD5.BADA7311D82CFA73A7DB1D1EEC9214E1] - 29/08/2011 - 18.38.08 ---A- . (.Oracle Corporation - Java Platform SE binary.) -- C:\WINDOWS\system32\javaw.exe [173960]

O44 - LFC:[MD5.44B125554D46809FCCF642B2D31749BA] - 29/08/2011 - 18.38.08 ---A- . (.Oracle Corporation - Java Web Start Launcher.) -- C:\WINDOWS\system32\javaws.exe [214408]

O44 - LFC:[MD5.15DD43B041053EE102B61D83297BD2BF] - 29/08/2011 - 18.38.07 ---A- . (.Oracle Corporation - Java Platform SE binary.) -- C:\WINDOWS\system32\deployJava1.dll [544656]

O44 - LFC:[MD5.F4232B4ECD5122E13C53DB7A44FBC166] - 29/08/2011 - 15.50.05 ---A- . (...) -- C:\WINDOWS\Papier-peint-PhotoFiltre.bmp [1440054]

O44 - LFC:[MD5.A3CB152DC68D4105656F95C53D45F3E8] - 26/08/2011 - 16.39.41 ---A- . (...) -- C:\WINDOWS\system32\perfc010.dat [105814]

O44 - LFC:[MD5.CA138127A513B6152AABF2F9CC668151] - 26/08/2011 - 16.39.41 ---A- . (...) -- C:\WINDOWS\system32\perfh009.dat [504610]

O44 - LFC:[MD5.09651F2B8F66252343F3F76AC57151F7] - 26/08/2011 - 16.39.41 ---A- . (...) -- C:\WINDOWS\system32\perfh010.dat [555254]

O44 - LFC:[MD5.A3B5B698EE2362F9049AB9D79E39207C] - 26/08/2011 - 16.39.40 ---A- . (...) -- C:\WINDOWS\system32\PerfStringBackup.INI [1267236]

O44 - LFC:[MD5.9FB433404A6CB96915C2F1998248EE6F] - 26/08/2011 - 16.39.40 ---A- . (...) -- C:\WINDOWS\system32\perfc009.dat [89162]

O44 - LFC:[MD5.B412A5393E9BF796D97B12E0BDD1E12A] - 25/08/2011 - 20.49.27 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\WINDOWS\system32\FlashPlayerCPLApp.cpl [404640]

O44 - LFC:[MD5.F49A152A67AC7F809276235283CEC202] - 25/08/2011 - 15.12.40 ---A- . (...) -- C:\WINDOWS\system32\TZLog.log [460664]

O44 - LFC:[MD5.9C6A0D4531B125429F846F7C43B66E0A] - 24/08/2011 - 13.22.55 ---A- . (...) -- C:\WINDOWS\system32\resetlog.txt [10385]

O44 - LFC:[MD5.CB17A47D090938A02DACB066D6D5A124] - 18/08/2011 - 10.33.43 ---A- . (...) -- C:\WINDOWS\system32\rp_rules.dat [44]

O44 - LFC:[MD5.8A3D5B46FF8C9CED46304F1EBB5F9AFE] - 18/08/2011 - 10.33.43 ---A- . (...) -- C:\WINDOWS\system32\rp_stats.dat [64]

O44 - LFC:[MD5.0505DA5D357F18A5D42FC5DEDE6BC9A0] - 16/08/2011 - 15.30.21 ---A- . (.Sunbelt Software - Anti-Rootkit Engine.) -- C:\WINDOWS\system32\drivers\SBREDrv.sys [101720]

O44 - LFC:[MD5.8E4A80648C4AA3F723CFCA2647BF4F2D] - 16/08/2011 - 11.57.31 ---A- . (...) -- C:\WINDOWS\system32\-1 [64]

O44 - LFC:[MD5.4438404068196A602EA54F59DBEB8A1B] - 14/08/2011 - 21.44.18 ---A- . (.Inner Media, Inc. - DynaZIP Multi-Threading Zip DLL.) -- C:\WINDOWS\system32\dzip32.dll [172032]

O44 - LFC:[MD5.2F8F3F17983222B2ACAB998B854616B7] - 14/08/2011 - 21.44.17 ---A- . (.Inner Media, Inc. - DynaZIP-32 Multi-Threading UnZIP DLL.) -- C:\WINDOWS\system32\dunzip32.dll [139264]

O44 - LFC:[MD5.5D7BE7B19E827125E016325334E58FF1] - 09/08/2011 - 16.33.58 ---A- . (...) -- C:\WINDOWS\system32\drivers\BANTExt.sys [3840]

O44 - LFC:[MD5.BEF352027F828FB3BBAADE4599BEAD4F] - 07/08/2011 - 20.40.49 ---A- . (.Softland - doPDF Port Monitor User Interface.) -- C:\WINDOWS\system32\dopdfmi7.dll [20816]

O44 - LFC:[MD5.41904E9C53DF4B1A1CDE41AA1D6A2273] - 07/08/2011 - 20.40.48 ---A- . (.Softland - doPDF Port Monitor.) -- C:\WINDOWS\system32\dopdfmn7.dll [23376]

O44 - LFC:[MD5.ED01633E2BEBC53446767093A7D8B6C0] - 25/11/2010 - 10.41.46 ---A- . (...) -- C:\WINDOWS\system32\dopdf7.ctm [7549]

O44 - LFC:[MD5.77827C9554E2FF44053C3C82A526C5D6] - 03/08/2004 - 22.00.12 RSHA- . (...) -- C:\cmldr [261312]

~ Scan Files in 00mn 02s

---\\ Export di chiave d' applicazione autorizzata (O47)

O47 - AAKE:Key Export SP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestione sessione di assistenza mediante desktop remoto Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe

O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestione sessione di assistenza mediante desktop remoto Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe

~ Scan Keys in 00mn 00s

---\\ Controllo del Safe Boot (O49)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmboot.sys . (.Microsoft Corp., Veritas Software - Driver di avvio di Gestione dischi di NT.) -- C:\WINDOWS\system32\Drivers\dmboot.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmio.sys . (.Microsoft Corp., Veritas Software - Driver di I/O di Gestione dischi di NT.) -- C:\WINDOWS\system32\Drivers\dmio.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\system32\Drivers\dmload.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (...) -- C:\WINDOWS\system32\Drivers\sermouse.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sr.sys . (.Microsoft Corporation - Driver filtro file system Ripristino configurazione di sistema.) -- C:\WINDOWS\system32\Drivers\sr.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\system32\Drivers\vga.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\WINDOWS\system32\Drivers\vgasave.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmboot.sys . (.Microsoft Corp., Veritas Software - Driver di avvio di Gestione dischi di NT.) -- C:\WINDOWS\system32\Drivers\dmboot.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmio.sys . (.Microsoft Corp., Veritas Software - Driver di I/O di Gestione dischi di NT.) -- C:\WINDOWS\system32\Drivers\dmio.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\system32\Drivers\dmload.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ip6fw.sys . (.Microsoft Corporation - IPv6 Windows Firewall Driver.) -- C:\WINDOWS\system32\Drivers\ip6fw.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\system32\Drivers\ipnat.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpcdd.sys . (.Microsoft Corporation - RDP Miniport.) -- C:\WINDOWS\system32\Drivers\rdpcdd.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpdd.sys . (...) -- C:\WINDOWS\system32\Drivers\rdpdd.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpwd.sys . (.Microsoft Corporation - RDP Terminal Stack Driver (US/Canada Only, Not for Export).) -- C:\WINDOWS\system32\Drivers\rdpwd.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (...) -- C:\WINDOWS\system32\Drivers\sermouse.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sr.sys . (.Microsoft Corporation - Driver filtro file system Ripristino configurazione di sistema.) -- C:\WINDOWS\system32\Drivers\sr.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdpipe.sys . (.Microsoft Corporation - Named Pipe Transport Driver.) -- C:\WINDOWS\system32\Drivers\tdpipe.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdtcp.sys . (.Microsoft Corporation - TCP Transport Driver.) -- C:\WINDOWS\system32\Drivers\tdtcp.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\system32\Drivers\vga.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\WINDOWS\system32\Drivers\vgasave.sys (.not file.)

~ Scan CSB in 00mn 00s

---\\ Immagine files esecuzione opzioni (IFEO) (O50)

O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d

~ Scan IFEO in 00mn 00s

---\\ Trojan Driver Search Data (HKLM)(TDSD) (O52)

O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio DSP Group TrueSpeech per MSACM V3.50.) -- C:\WINDOWS\system32\tssoft32.acm

O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\system32\iccvid.dll

O52 - TDSD: \Drivers32\"vidc.iv31"="ir32_32.dll" . (...) -- C:\WINDOWS\system32\ir32_32.dll

O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (...) -- C:\WINDOWS\system32\ir32_32.dll

O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\system32\ir41_32.ax

O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\system32\sl_anet.acm

O52 - TDSD: \Drivers32\"msacm.iac2"="C:\WINDOWS\System32\iac25_32.ax" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\System32\iac25_32.ax

O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo® video 5.10.) -- C:\WINDOWS\system32\ir50_32.dll

O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\WINDOWS\system32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm

O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\system32\sl_anet.acm

O52 - TDSD: \drivers.desc\"C:\WINDOWS\System32\iac25_32.ax"="Indeo® audio software" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\System32\iac25_32.ax

O52 - TDSD: \drivers.desc\"ir50_32.dll"="Indeo® video 5.10" . (...) -- (.not file.)

O52 - TDSD: \drivers.desc\"C:\WINDOWS\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\System32\l3codeca.acm

O52 - TDSD: \drivers.desc\"tssoft32.acm"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio DSP Group TrueSpeech per MSACM V3.50.) -- C:\WINDOWS\system32\tssoft32.acm

O52 - TDSD: \drivers.desc\"iccvid.dll"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\system32\iccvid.dll

O52 - TDSD: \drivers.desc\"ir32_32.dll"="ir32_32.dll" . (...) -- C:\WINDOWS\system32\ir32_32.dll

O52 - TDSD: \drivers.desc\"ir41_32.ax"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\system32\ir41_32.ax

~ Scan Keys in 00mn 00s

---\\ Microsoft Control Security Providers (MCSP) (O54)

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA per piattaforme a 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Pacchetto autenticazione SSPI Digest.) -- C:\WINDOWS\system32\digest.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA per piattaforme a 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Pacchetto autenticazione SSPI Digest.) -- C:\WINDOWS\system32\digest.dll

~ Scan Keys in 00mn 00s

---\\ Microsoft Windows Policies System (MWPS) (O55)

O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=

O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "DisableRegistryTools"=0

O55 - MWPS:[HKCU\...\Policies\System] - "disableregistrytools"=0

~ Scan Keys in 00mn 00s

---\\ Microsoft Windows Policies Explorer (MWPE) (O56)

O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=323

O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveAutoRun"=67108863

O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDrives"=0

O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutoRunSetting"=1

O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveAutoRun"=67108863

O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveTypeAutoRun"=323

O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDrives"=0

~ Scan Keys in 00mn 00s

---\\ Elenco dei drivers systema (SDL) (O58)

O58 - SDL:[MD5.0F2D66D5F08EBE2F77BB904288DCF6F0] - 04/09/2011 - 19.20.04 ---A- . (.Intel Corporation - Intel® Integrated Controller Hub Audio Driver.) -- C:\WINDOWS\system32\drivers\ac97intc.sys [96256]

O58 - SDL:[MD5.95B4FB835E28AA1336CEEB07FD5B9398] - 04/09/2011 - 20.36.40 ---A- . (.Advanced Micro Devices, Inc. - AMD Win2000 AGP Filter.) -- C:\WINDOWS\system32\drivers\amdagp.sys [43008]

O58 - SDL:[MD5.476D8DAC41C45D75AE772DC67D84A314] - 04/09/2011 - 17.47.10 ---A- . (.Alps Electric Co., Ltd. - Alps Touch Pad Driver.) -- C:\WINDOWS\system32\drivers\Apfiltr.sys [50637]

O58 - SDL:[MD5.19166026A93206F9C6A8CD3A1F010AE4] - 04/09/2011 - 8.22.04 ---A- . (...) -- C:\WINDOWS\system32\drivers\ASUSHWIO.SYS [10296]

O58 - SDL:[MD5.D649C57DA6FA762C64013747E5D7D2D6] - 04/09/2011 - 7.29.30 ---A- . (.ATI Technologies Inc. - ATI WDM BT829 MiniDriver (A).) -- C:\WINDOWS\system32\drivers\ati1btxx.sys [56623]

O58 - SDL:[MD5.60B6AA2DC1521DA343F781B70EB7895A] - 04/09/2011 - 7.29.30 ---A- . (.ATI Technologies Inc. - ATI Specialized MVD VBI Codec.) -- C:\WINDOWS\system32\drivers\ati1mdxx.sys [11615]

O58 - SDL:[MD5.6FDC61E8E8E17F6ECC2D9A10FA8DF347] - 04/09/2011 - 7.29.30 ---A- . (.ATI Technologies Inc. - ATI Specialized PCD VBI Codec.) -- C:\WINDOWS\system32\drivers\ati1pdxx.sys [12047]

O58 - SDL:[MD5.9D318099BF3876A4AF4BC75966D27603] - 04/09/2011 - 7.29.30 ---A- . (.ATI Technologies Inc. - ATI Rage Theater Audio WDM Minidriver.) -- C:\WINDOWS\system32\drivers\ati1raxx.sys [30671]

O58 - SDL:[MD5.BCAF267B10620F8C93F6E87AB726E145] - 04/09/2011 - 7.29.30 ---A- . (.ATI Technologies Inc. - ATI WDM Rage Theater MiniDriver.) -- C:\WINDOWS\system32\drivers\ati1rvxx.sys [63663]

O58 - SDL:[MD5.DAC7D785CF62F5BD41441E9D6F5A6EFE] - 04/09/2011 - 7.29.32 ---A- . (.ATI Technologies Inc. - ATI WDM TV Sound MiniDriver.) -- C:\WINDOWS\system32\drivers\ati1snxx.sys [26367]

O58 - SDL:[MD5.F7706DAE7D101F1B19CE552D772EBFCE] - 04/09/2011 - 7.29.32 ---A- . (.ATI Technologies Inc. - ATI WDM Teletext Decoder.) -- C:\WINDOWS\system32\drivers\ati1ttxx.sys [21343]

O58 - SDL:[MD5.6F714B4720DD80FFA9F8D2731594EA4C] - 04/09/2011 - 7.29.32 ---A- . (.ATI Technologies Inc. - ATI WDM TVTuner MiniDriver.) -- C:\WINDOWS\system32\drivers\ati1tuxx.sys [36463]

O58 - SDL:[MD5.67FFBC158DD4D27BA3FC92C6ACD87F73] - 04/09/2011 - 7.29.32 ---A- . (.ATI Technologies Inc. - ATI WDM CrossBar MiniDriver.) -- C:\WINDOWS\system32\drivers\ati1xbxx.sys [29455]

O58 - SDL:[MD5.0D8CAB1F08F7D3C4DE228B49E12E596A] - 04/09/2011 - 7.29.32 ---A- . (.ATI Technologies Inc. - ATI WDM TVAUDIO_CrossBar MiniDriver.) -- C:\WINDOWS\system32\drivers\ati1xsxx.sys [34735]

O58 - SDL:[MD5.F1A3E136190B300499516E93BC621CA5] - 04/09/2011 - 0.23.36 ---A- . (.ATI Technologies Inc. - Driver miniport ATI RAGE 128.) -- C:\WINDOWS\system32\drivers\ati2mtaa.sys [327168]

O58 - SDL:[MD5.629BF1F68B4B0417A1BC1F81D66D6288] - 04/09/2011 - 15.33.38 ---A- . (.ATI Technologies Inc. - ATI RAGE 6 Miniport Driver.) -- C:\WINDOWS\system32\drivers\ati2mtag.sys [372352]

O58 - SDL:[MD5.993E7BD6438FE989E328C6B4BCA246A9] - 04/09/2011 - 7.29.28 ---A- . (.ATI Technologies Inc. - ATI WDM BT829 MiniDriver (A).) -- C:\WINDOWS\system32\drivers\atinbtxx.sys [57856]

O58 - SDL:[MD5.ED4C2BF8403F4437987C0BA09CF48716] - 04/09/2011 - 7.29.28 ---A- . (.ATI Technologies Inc. - ATI Specialized MVD VBI Codec RT2.) -- C:\WINDOWS\system32\drivers\atinmdxx.sys [13824]

O58 - SDL:[MD5.E90AC2B14E98F1A4372E5891B4278784] - 04/09/2011 - 7.29.30 ---A- . (.ATI Technologies Inc. - ATI Specialized PCD VBI Codec RT2.) -- C:\WINDOWS\system32\drivers\atinpdxx.sys [14336]

O58 - SDL:[MD5.DA36687D701C833430605A298731410B] - 04/09/2011 - 7.29.30 ---A- . (.ATI Technologies Inc. - ATI Rage Theater Audio WDM Minidriver.) -- C:\WINDOWS\system32\drivers\atinraxx.sys [52224]

O58 - SDL:[MD5.A7A01B907DB63898D40B0A14248FF9A2] - 04/09/2011 - 7.29.30 ---A- . (.ATI Technologies Inc. - ATI WDM Rage Theater MiniDriver RT2.) -- C:\WINDOWS\system32\drivers\atinrvxx.sys [104960]

O58 - SDL:[MD5.CEDDEE2E0591894D19654D458FD3B9BE] - 04/09/2011 - 7.29.30 ---A- . (.ATI Technologies Inc. - ATI WDM TV Sound MiniDriver.) -- C:\WINDOWS\system32\drivers\atinsnxx.sys [28672]

O58 - SDL:[MD5.D80A8F6C0A717446496C3A06D33B0D9C] - 04/09/2011 - 7.29.30 ---A- . (.ATI Technologies Inc. - ATI WDM Teletext Decoder.) -- C:\WINDOWS\system32\drivers\atinttxx.sys [13824]

O58 - SDL:[MD5.EDD66332608D27F4FD5069BCD0BC5164] - 04/09/2011 - 7.29.32 ---A- . (.ATI Technologies Inc. - ATI WDM TVTuner MiniDriver.) -- C:\WINDOWS\system32\drivers\atintuxx.sys [73216]

O58 - SDL:[MD5.3E7D485CBD0B0D9F6EA2AD9442411831] - 04/09/2011 - 7.29.32 ---A- . (.ATI Technologies Inc. - ATI WDM CrossBar MiniDriver.) -- C:\WINDOWS\system32\drivers\atinxbxx.sys [31744]

O58 - SDL:[MD5.77B575D7AAB35D5908AE6CE681608D62] - 04/09/2011 - 7.29.32 ---A- . (.ATI Technologies Inc. - ATI WDM TVAUDIO_CrossBar MiniDriver RT2.) -- C:\WINDOWS\system32\drivers\atinxsxx.sys [63488]

O58 - SDL:[MD5.5D7BE7B19E827125E016325334E58FF1] - 04/09/2011 - 16.33.58 ---A- . (...) -- C:\WINDOWS\system32\drivers\BANTExt.sys [3840]

O58 - SDL:[MD5.438179ABE9B7A922A21B8D6369FF52FF] - 04/09/2011 - 18.18.38 ---A- . (.Broadcom Corporation - Broadcom iLine10 PCI Network Adapter Proxy Protocol Driver.) -- C:\WINDOWS\system32\drivers\bcm42rly.sys [17992]

O58 - SDL:[MD5.0CCCBD6EF94910804921BF04A2107EF8] - 04/09/2011 - 11.00.00 ---A- . (.RAVISENT Technologies Inc. - Driver primario WDM CineMaster C 1.2.) -- C:\WINDOWS\system32\drivers\cinemst2.sys [262528]

O58 - SDL:[MD5.9624293E55AD405415862B504CA95B73] - 04/09/2011 - 11.00.00 ---A- . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\system32\drivers\cpqdap01.sys [11776]

O58 - SDL:[MD5.743C403D20A89DB5ED84C874768B7119] - 04/09/2011 - 11.00.34 ---A- . (.Windows ® Win 7 DDK provider - CPUID Driver.) -- C:\WINDOWS\system32\drivers\cpuz133_x32.sys [20072]

O58 - SDL:[MD5.A0044C07C6F65D97DB2D6EF8B9A7BBC0] - 04/09/2011 - 22.52.50 ---A- . (.Cirrus Logic, Inc. - Crystal AC9x WDM Driver.) -- C:\WINDOWS\system32\drivers\cwawdm.sys [89088]

O58 - SDL:[MD5.C990FC7CB07916ECE0779AA85F89E064] - 04/09/2011 - 12.51.44 ---A- . (.Dritek System Inc. - General Port I/O.) -- C:\WINDOWS\system32\drivers\DPORTIO.SYS [3674]

O58 - SDL:[MD5.D33CFEB3404D47AD146040AF6916BEB6] - 04/09/2011 - 15.51.03 ---A- . (.Doctor Web, Ltd. - Dr.Web Protection for Windows.) -- C:\WINDOWS\system32\drivers\dwprot.sys [135032]

O58 - SDL:[MD5.00F73B6B7B8E1783516360DE6F4360E4] - 04/09/2011 - 13.07.30 ---A- . (.Intel Corporation - NDIS 5 driver.) -- C:\WINDOWS\system32\drivers\e100b325.sys [119808]

O58 - SDL:[MD5.809C53946BD6EC9F20CBBC8EBA2FB161] - 04/09/2011 - 13.07.36 ---A- . (.Intel Corporation - NDIS 5 driver.) -- C:\WINDOWS\system32\drivers\e100bnt5.sys [123152]

O58 - SDL:[MD5.BF8BAD1FAC5C0C73AE97859A3EB428BC] - 04/09/2011 - 2.00.00 ---A- . (.MK Systems CO., LTD. - LPT I/O driver for EPSON PRINTER.) -- C:\WINDOWS\system32\drivers\EPLPDX02.SYS [66240]

O58 - SDL:[MD5.573C7D0A32852B48F3058CFD8026F511] - 04/09/2011 - 18.36.06 ---A- . (.Windows ® Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\system32\drivers\hdaudbus.sys [144384]

O58 - SDL:[MD5.970178E8E003EB1481293830069624B9] - 04/09/2011 - 7.41.46 ---A- . (.Conexant Systems, Inc. - HSF_HWB2 WDM driver.) -- C:\WINDOWS\system32\drivers\hsfbs2s2.sys [220032]

O58 - SDL:[MD5.1225EBEA76AAC3C84DF6C54FE5E5D8BE] - 04/09/2011 - 7.41.48 ---A- . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\WINDOWS\system32\drivers\hsfcxts2.sys [685056]

O58 - SDL:[MD5.EBB354438A4C5A3327FB97306260714A] - 04/09/2011 - 7.41.54 ---A- . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\WINDOWS\system32\drivers\hsfdpsp2.sys [1041536]

O58 - SDL:[MD5.E126E392F71C5C6CAED03ECCC9EEA375] - 04/09/2011 - 12.51.44 ---A- . (.Dritek System Inc. - Dritek Keyboard Filter Driver.) -- C:\WINDOWS\system32\drivers\KBFILTR.SYS [14538]

O58 - SDL:[MD5.ECA00EED9AB95489007B0EF84C7149DE] - 04/09/2011 - 18.52.42 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbam.sys [22712]

O58 - SDL:[MD5.B18225739ED9CAA83BA2DF966E9F43E8] - 04/09/2011 - 18.52.42 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys [41272]

O58 - SDL:[MD5.195741AEE20369980796B557358CD774] - 04/09/2011 - 7.41.56 ---A- . (.Conexant - Diagnostic Interface DRIVER.) -- C:\WINDOWS\system32\drivers\mdmxsdk.sys [11868]

O58 - SDL:[MD5.3EF4701A2FBE3F766AC49FED4FDA2961] - 04/09/2011 - 7.56.00 ---A- . (.Smart Link - No comment.) -- C:\WINDOWS\system32\drivers\mtlmnt5.sys [126686]

O58 - SDL:[MD5.6F3A2A524D46B0935D8CB99106BC4F6B] - 04/09/2011 - 14.46.22 ---A- . (.Smart Link - No comment.) -- C:\WINDOWS\system32\drivers\mtlstrm.sys [1309184]

O58 - SDL:[MD5.6DDA78A0BE692B61B668FAB860F276CF] - 04/09/2011 - 7.29.36 ---A- . (.Matrox Graphics Inc. - Matrox Parhelia Miniport Driver.) -- C:\WINDOWS\system32\drivers\mtxparhm.sys [452736]

O58 - SDL:[MD5.BE984D604D91C217355CDD3737AAD25D] - 04/09/2011 - 11.00.00 ---A- . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\nikedrv.sys [12032]

O58 - SDL:[MD5.75AC610A7481CB1F343DC971249BCB19] - 04/09/2011 - 16.57.20 ---A- . (.CACE Technologies - npf.sys (NT5/6 x86) Kernel Driver.) -- C:\WINDOWS\system32\drivers\npf_devolo.sys [35840]

O58 - SDL:[MD5.FAF9C47E3CEA3C3609E2FDEEAABFFDA2] - 04/09/2011 - 15.37.46 ---A- . (.Smart Link - No comment.) -- C:\WINDOWS\system32\drivers\ntmtlfax.sys [180360]

O58 - SDL:[MD5.2B298519EDBFCF451D43E0F1E8F1006D] - 04/09/2011 - 7.29.54 ---A- . (.NVIDIA Corporation - NVIDIA Compatible Windows 2000 Miniport Driver, Version 56.73.) -- C:\WINDOWS\system32\drivers\nv4_mini.sys [1897408]

O58 - SDL:[MD5.80D317BD1C3DBC5D4FE7B1678C60CADD] - 04/09/2011 - 11.00.00 ---A- . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Library.) -- C:\WINDOWS\system32\drivers\ptilink.sys [17792]

O58 - SDL:[MD5.93F4513A9C7F0C5EC318E4B59C6A3E7C] - 04/09/2011 - 15.03.30 ---A- . (.Smart Link - No comment.) -- C:\WINDOWS\system32\drivers\RecAgent.sys [13776]

O58 - SDL:[MD5.A56FE08EC7473E8580A390BB1081CDD7] - 04/09/2011 - 11.00.00 ---A- . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\system32\drivers\rio8drv.sys [12032]

O58 - SDL:[MD5.0A854DF84C77A0BE205BFEAB2AE4F0EC] - 04/09/2011 - 11.00.00 ---A- . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\riodrv.sys [12032]

O58 - SDL:[MD5.7436BFD3A542CF6FF55097200031B293] - 04/09/2011 - 19.51.38 ---A- . (.Ralink Technology, Corp. - Ralink 802.11 USB Wireless Adapter Driver.) -- C:\WINDOWS\system32\drivers\rt73.sys [245248]

O58 - SDL:[MD5.0DBCC071A268E0340A2BA6BDD98BACE4] - 04/09/2011 - 7.29.52 ---A- . (.S3 Graphics, Inc. - S3 ProSavage(DDR) & Twister Miniport Driver.) -- C:\WINDOWS\system32\drivers\s3gnbm.sys [166912]

O58 - SDL:[MD5.0505DA5D357F18A5D42FC5DEDE6BC9A0] - 04/09/2011 - 15.30.21 ---A- . (.Sunbelt Software - Anti-Rootkit Engine.) -- C:\WINDOWS\system32\drivers\SBREDrv.sys [101720]

O58 - SDL:[MD5.A643D6DF1B7546256B11FB5D6B5D1375] - 04/09/2011 - 0.06.34 ---A- . (.Screaming Bee LLC - Screaming Bee Audio Driver.) -- C:\WINDOWS\system32\drivers\ScreamingBAudio.sys [34384]

O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 04/09/2011 - 18.39.16 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\WINDOWS\system32\drivers\secdrv.sys [20480]

O58 - SDL:[MD5.6B33D0EBD30DB32E27D1D78FE946A754] - 04/09/2011 - 20.36.40 ---A- . (.Silicon Integrated Systems Corporation - SiS NT AGP Filter.) -- C:\WINDOWS\system32\drivers\sisagp.sys [40960]

O58 - SDL:[MD5.D9673011648A71ED1E1F77B831BC85E6] - 04/09/2011 - 7.41.40 ---A- . (.Smart Link - No comment.) -- C:\WINDOWS\system32\drivers\slnt7554.sys [129535]

O58 - SDL:[MD5.3A3620316CA4A0E32B189B1446957FEE] - 04/09/2011 - 7.56.00 ---A- . (.Smart Link - No comment.) -- C:\WINDOWS\system32\drivers\slntamr.sys [404990]

O58 - SDL:[MD5.0F49E0D7A870FA4BEC8FD71F8163DC89] - 04/09/2011 - 15.26.28 ---A- . (.Smart Link - No comment.) -- C:\WINDOWS\system32\drivers\slnthal.sys [95424]

O58 - SDL:[MD5.5C7B0D9631A9FD21D443932804061444] - 04/09/2011 - 14.20.44 ---A- . (.Smart Link - No comment.) -- C:\WINDOWS\system32\drivers\slwdmsup.sys [13240]

O58 - SDL:[MD5.D74A8EC75305F1D3CFDE7C7FC1BD62A9] - 04/09/2011 - 11.00.00 ---A- . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\system32\drivers\tsbvcap.sys [21376]

O58 - SDL:[MD5.4A55BDD4A1FFE650C3C2F8687C2EA4C2] - 04/09/2011 - 15.09.32 ---A- . (.Unknown owner - NTV90drv driver.) -- C:\WINDOWS\system32\drivers\v90drv.sys [1432836]

O58 - SDL:[MD5.B2ABAB4CA46BAD182E27763DC19C780F] - 04/09/2011 - 11.56.04 ---A- . (.Avnex - Avnex Ltd. Virtual Audio Device (WDM).) -- C:\WINDOWS\system32\drivers\vcsvad.sys [17792]

O58 - SDL:[MD5.55E01061C74A8CEFFF58DC36114A8D3F] - 04/09/2011 - 11.00.00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\system32\drivers\vdmindvd.sys [58112]

O58 - SDL:[MD5.0308AEF61941E4AF478FA1A0F83812F5] - 04/09/2011 - 7.29.38 ---A- . (.Intel® Corporation - Digital Display Minidriver for Intel® Graphics Driver.) -- C:\WINDOWS\system32\drivers\wadv07nt.sys [11807]

O58 - SDL:[MD5.714038A8AA5DE08E12062202CD7EAEB5] - 04/09/2011 - 7.29.40 ---A- . (.Intel® Corporation - Digital Display Minidriver for Intel® Graphics Driver.) -- C:\WINDOWS\system32\drivers\wadv08nt.sys [11295]

O58 - SDL:[MD5.7BB3AA595E4507A788DE1CDC63F4C8C4] - 04/09/2011 - 7.29.40 ---A- . (.Intel® Corporation - Digital Display Minidriver for Intel® Graphics Driver.) -- C:\WINDOWS\system32\drivers\wadv09nt.sys [11871]

O58 - SDL:[MD5.36E6C405B6143D09687F4056FD9A0D10] - 04/09/2011 - 7.29.40 ---A- . (.Intel® Corporation - Digital Display Minidriver for Intel® Graphics Driver.) -- C:\WINDOWS\system32\drivers\wadv11nt.sys [11935]

O58 - SDL:[MD5.352FA0E98BC461CE1CE5D41F64DB558D] - 04/09/2011 - 7.29.44 ---A- . (.Intel® Corporation - Digital Display Minidriver for Intel® Graphics Driver.) -- C:\WINDOWS\system32\drivers\watv06nt.sys [22271]

O58 - SDL:[MD5.791CC45DE6E50445BE72E8AD6401FF45] - 04/09/2011 - 7.29.46 ---A- . (.Intel® Corporation - Digital Display Minidriver for Intel® Graphics Driver.) -- C:\WINDOWS\system32\drivers\watv10nt.sys [25471]

O58 - SDL:[MD5.702708177648100A166B27BF0C9FAFF3] - 04/09/2011 - 11.00.00 ---A- . (...) -- C:\WINDOWS\system32\ansi.sys [9030]

O58 - SDL:[MD5.50EDC3BC29FFE35A3604E0CF041FDF24] - 04/09/2011 - 16.39.12 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\WINDOWS\system32\athur.sys [1334784]

O58 - SDL:[MD5.438179ABE9B7A922A21B8D6369FF52FF] - 04/09/2011 - 18.18.38 ---A- . (.Broadcom Corporation - Broadcom iLine10 PCI Network Adapter Proxy Protocol Driver.) -- C:\WINDOWS\system32\bcm42rly.sys [17992]

O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 04/09/2011 - 11.00.00 ---A- . (...) -- C:\WINDOWS\system32\country.sys [27097]

O58 - SDL:[MD5.FC80052194D5708254A346568F0E77C0] - 04/09/2011 - 22.15.32 ---A- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 Protocol Driver.) -- C:\WINDOWS\system32\GTNDIS5.sys [15872]

O58 - SDL:[MD5.2FD74A6FBB71D7B9E632B4ADABB5C6A7] - 04/09/2011 - 11.00.00 ---A- . (...) -- C:\WINDOWS\system32\himem.sys [4800]

O58 - SDL:[MD5.582BCDD47CF4B68B5CB528F18E3CB808] - 04/09/2011 - 11.00.00 ---A- . (...) -- C:\WINDOWS\system32\key01.sys [42809]

O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 04/09/2011 - 7.46.54 ---A- . (...) -- C:\WINDOWS\system32\keyboard.sys [42537]

O58 - SDL:[MD5.0F2EC3370ACA9FC0E670796B12DAB26C] - 04/09/2011 - 11.00.00 ---A- . (...) -- C:\WINDOWS\system32\ntdos.sys [27898]

O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 04/09/2011 - 11.00.00 ---A- . (...) -- C:\WINDOWS\system32\ntdos404.sys [29146]

O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 04/09/2011 - 11.00.00 ---A- . (...) -- C:\WINDOWS\system32\ntdos411.sys [29370]

O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 04/09/2011 - 11.00.00 ---A- . (...) -- C:\WINDOWS\system32\ntdos412.sys [29274]

O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 04/09/2011 - 11.00.00 ---A- . (...) -- C:\WINDOWS\system32\ntdos804.sys [29146]

O58 - SDL:[MD5.9E0E171211C47A13E1296FF707AA1F12] - 04/09/2011 - 7.45.30 ---A- . (...) -- C:\WINDOWS\system32\ntio.sys [33968]

O58 - SDL:[MD5.6F73F50162DEF60C84B725C18CD9140F] - 04/09/2011 - 7.45.14 ---A- . (...) -- C:\WINDOWS\system32\ntio404.sys [34560]

O58 - SDL:[MD5.0FDD5E69C1FF3B58043D44F2CC743D45] - 04/09/2011 - 7.45.10 ---A- . (...) -- C:\WINDOWS\system32\ntio411.sys [35648]

O58 - SDL:[MD5.8842837C4D8311BF8E72BEE8CCC42217] - 04/09/2011 - 7.45.16 ---A- . (...) -- C:\WINDOWS\system32\ntio412.sys [35424]

O58 - SDL:[MD5.6B56CEB3C6F9D5CD7293DBD9FE23B311] - 04/09/2011 - 7.45.12 ---A- . (...) -- C:\WINDOWS\system32\ntio804.sys [34560]

O58 - SDL:[MD5.9BFCB3AB45A748FFD570F4D472C45939] - 04/09/2011 - 15.09.32 ---A- . (.Smart Link Ltd. - WINDDX.) -- C:\WINDOWS\system32\winddx.sys [42296]

~ Scan Drivers in 00mn 01s

---\\ List all tools cleaner (LATC) (O63)

O63 - Logiciel: ZHPDiag 1.28 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1

~ Scan ADS in 00mn 00s

---\\ File Associations Shell Spawning (O67)

O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (.Smart Link Ltd. - WINDDX.) -- "%1" %*

O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL comune della shell di Windows.) -- C:\WINDOWS\system32\shell32.dll

O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (.Microsoft Corporation - DLL comune della shell di Windows.) -- "%1" %*

O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (.Microsoft Corporation - DLL comune della shell di Windows.) -- "%1" %*

O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.html> <FirefoxHTML>[HKLM\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Programmi\Mozilla Firefox\firefox.exe

O67 - Shell Spawning: <.js> <jsfile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Editor del Registro di sistema.) -- C:\WINDOWS\regedit.exe

O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Programmi\Mozilla Firefox\firefox.exe

O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - DLL comune della shell di Windows.) -- C:\WINDOWS\system32\shell32.dll

O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (.Microsoft Corporation - DLL comune della shell di Windows.) -- "%1" %*

O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (.Microsoft Corporation - DLL comune della shell di Windows.) -- "%1" %*

O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Programmi\Mozilla Firefox\firefox.exe

O67 - Shell Spawning: <.js> <jsfile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Editor del Registro di sistema.) -- C:\WINDOWS\regedit.exe

~ Scan Keys in 00mn 00s

---\\ Start Menu Internet (SMI) (O68)

O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Programmi\Mozilla Firefox\firefox.exe

O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\Google\Chrome\Application\chrome.exe

O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Programmi\Internet Explorer\iexplore.exe

O68 - StartMenuInternet: <MSN Explorer> <>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - MSN.) -- C:\Programmi\MSN\MSNCoreFiles\MSN6.exe

~ Scan Keys in 00mn 00s

---\\ Search Browser Infection (SBI) (O69)

O69 - SBI: SearchScopes [HKCU] ${searchCLSID} - (@ieframe.dll,-12512) - Bing

O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (@ieframe.dll,-12512) - Bing

O69 - SBI: SearchScopes [HKCU] {7943AC88-2202-4910-85BD-2A0437ACEAA0} [DefaultScope] - (Casella di ricerca Secure) - Yahoo! Search - Web Search

~ Scan Keys in 00mn 00s

---\\ Search Particular Root Folder (SPRF) (O84)

[MD5.72D6C19F0568473A2B80D296E0C09E57] [sPRF][07/08/2011] (...) -- C:\Documents and Settings\minella\Impostazioni locali\Dati applicazioni\DelUnist.bat [293]

[MD5.90FDC57C750CD790FB4B73DDD73B0CE9] [sPRF][03/09/2011] (.Softland - doPDF 7 printer Setup.) -- C:\Documents and Settings\minella\Desktop\dopdf-7.exe [4186384]

[MD5.D92FADB393E56E6725CFD993C6DE6CBD] [sPRF][06/08/2008] (...) -- C:\Documents and Settings\minella\Desktop\Snippy.exe [102400]

[MD5.A19C9781CF20F4C293FE6CBF6DD2A26A] [sPRF][19/08/2011] (.ESET - ESET SysInspector - System Analyzer Tool.) -- C:\Documents and Settings\minella\Desktop\SysInspector.exe [2676504]

[MD5.DD3975246D8928C04549B31B6B49434F] [sPRF][24/03/2008] (.Adobe Systems Incorporated - Adobe® Flash® Player ActiveX Installer.) -- C:\WINDOWS\Downloaded Program Files\FP_AX_CAB_INSTALLER.exe [1527056]

~ Scan Files in 00mn 00s

---\\ Router Hijack DNS (O89)

Server: UnKnown

Address: 192.168.0.1

Nome: www.l.google.com

Addresses: 209.85.148.99, 209.85.148.103, 209.85.148.104, 209.85.148.105

209.85.148.106, 209.85.148.147

Aliases: www.google.fr, www.google.com

~ Scan DNS in 00mn 02s

---\\ General States of Services not Microsoft (EGS) (SR=Running, SS=Stopped)

SR - | Auto 102400 | (Ati HotKey Poller) . (...) - C:\WINDOWS\System32\Ati2evxx.exe

SS - | Demand 04/09/2011 225280 | (dmadmin) . (.Microsoft Corp., Veritas Software.) - C:\WINDOWS\System32\dmadmin.exe

SS - | Auto 04/09/2011 136176 | (gupdate) . (.Google Inc..) - C:\Programmi\Google\Update\GoogleUpdate.exe

SS - | Demand 04/09/2011 136176 | (gupdatem) . (.Google Inc..) - C:\Programmi\Google\Update\GoogleUpdate.exe

SS - | Demand 04/09/2011 69632 | (IDriverT) . (.Macrovision Corporation.) - C:\Programmi\File comuni\InstallShield\Driver\11\Intel 32\IDriverT.exe

~ Scan Services in 00mn 02s

---\\ Ricerca d'infezione MBR (MBR) (O80)

Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover

Run by minella at 04/09/2011 12.07.31

device: opened successfully

user: MBR read successfully

Disk trace:

called modules: ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys intelide.sys PCIIDEX.SYS

1 nt!IofCallDriver[0x804E37D5] -> \Device\Harddisk0\DR0[0x82F92AB8]

3 CLASSPNP[0xF8676FD7] -> nt!IofCallDriver[0x804E37D5] -> \Device\00000080[0x82FAA5B0]

5 ACPI[0xF85ED620] -> nt!IofCallDriver[0x804E37D5] -> \Device\Ide\IdeDeviceP0T0L0-3[0x82FAB030]

kernel: MBR read successfully

user & kernel MBR OK

~ Scan MBR in 00mn 04s

---\\ Search Master Boot Record Infection (MBRCheck)(O80)

Written by ad13,

Run by minella at 04/09/2011 12.07.33

********* Dump file Name *********

C:\PhysicalDisk0_MBR.bin

~ Scan MBR in 00mn 06s

End of the scan (1124 lines in 00mn 45s)(0)

Modifié le 4 septembre 2011 par tuttouno

Connexion

Pas encore inscrit ?

Rapport ZHPDiag

Messages recommandés

tuttouno

Rejoindre la conversation

En ligne récemment 0 membre est en ligne

Zebulon

Outils en ligne

Naviguer