Indice del forum Olimpo Informatico
I Forum di Zeus News
Leggi la newsletter gratuita - Attiva il Menu compatto
 
 FAQFAQ   CercaCerca   Lista utentiLista utenti   GruppiGruppi   RegistratiRegistrati 
 ProfiloProfilo   Messaggi privatiMessaggi privati   Log inLog in 

    Newsletter RSS Facebook Twitter Contatti Ricerca
OTL chiedo consigli
Nuovo argomento   Rispondi    Indice del forum -> Pronto Soccorso Virus
Precedente :: Successivo  
Autore Messaggio
scrat
Semidio
Semidio


Registrato: 10/04/06 15:36
Messaggi: 235

MessaggioInviato: 18 Giu 2011 21:12    Oggetto: OTL chiedo consigli Rispondi citando

Ciao a tutti
Leggendo il forum, e visto che ho i soliti problemini di disconnessione e lentezza, ho installato OTV e berificato il sistema.
Qualche anima buona può leggere i risultati e informarmi se è tutto a posto?

OTL logfile created on: 18/06/11 19.16.06 - Run 1
OTL by OldTimer - Version 3.2.24.1 Folder = C:\Documents and Settings\Yovana\Desktop
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000410 | Country: Italia | Language: ITA | Date Format: dd/MM/yy

511,48 Mb Total Physical Memory | 183,73 Mb Available Physical Memory | 35,92% Memory free
866,26 Mb Paging File | 488,21 Mb Available in Paging File | 56,36% Paging File free
Paging file location(s): c:\pagefile.sys 384 768 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINNT | %ProgramFiles% = C:\Programmi
Drive C: | 76,33 Gb Total Space | 14,20 Gb Free Space | 18,60% Space Free | Partition Type: NTFS

Computer Name: YOVANA | User Name: Yovana | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/06/18 19.15.17 | 000,579,072 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Yovana\Desktop\OTL.exe
PRC - [2011/04/30 11.58.29 | 000,136,360 | ---- | M] (Avira GmbH) -- C:\Programmi\Avira\AntiVir Desktop\sched.exe
PRC - [2011/04/09 08.08.12 | 000,269,480 | ---- | M] (Avira GmbH) -- C:\Programmi\Avira\AntiVir Desktop\avguard.exe
PRC - [2011/04/08 12.59.52 | 000,254,696 | ---- | M] (Sun Microsystems, Inc.) -- C:\Programmi\File comuni\Java\Java Update\jusched.exe
PRC - [2010/12/06 09.48.23 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Programmi\Avira\AntiVir Desktop\avgnt.exe
PRC - [2010/01/14 22.11.21 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Programmi\Avira\AntiVir Desktop\avshadow.exe
PRC - [2007/06/13 15.22.28 | 001,035,776 | ---- | M] (Microsoft Corporation) -- C:\WINNT\explorer.exe


========== Modules (SafeList) ==========

MOD - [2011/06/18 19.15.17 | 000,579,072 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Yovana\Desktop\OTL.exe
MOD - [2006/08/25 17.51.10 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINNT\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
MOD - [2006/05/03 23.53.54 | 000,174,592 | ---- | M] (Microsoft Corporation) -- C:\WINNT\system32\framedyn.dll
MOD - [2003/06/26 14.00.00 | 000,028,722 | ---- | M] (Microsoft Corporation) -- C:\WINNT\system32\msscrit.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- -- (wuauserv)
SRV - File not found [Auto | Stopped] -- -- (PEVSystemStart)
SRV - [2011/04/30 11.58.29 | 000,136,360 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Programmi\Avira\AntiVir Desktop\sched.exe -- (AntiVirScheduler)
SRV - [2011/04/09 08.08.12 | 000,269,480 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Programmi\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2005/04/04 01.41.10 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Programmi\File comuni\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT)
SRV - [2004/08/19 15.39.46 | 000,050,176 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINNT\system32\utilman.exe -- (UtilMan)
SRV - [2003/07/28 20.28.22 | 000,089,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programmi\File comuni\Microsoft Shared\Source Engine\OSE.EXE -- (ose)


========== Driver Services (SafeList) ==========

DRV - [2011/04/09 08.08.13 | 000,137,656 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINNT\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2010/12/06 09.48.50 | 000,061,960 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINNT\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2010/06/17 15.28.21 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINNT\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2010/06/17 15.28.11 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Programmi\Avira\AntiVir Desktop\avgio.sys -- (avgio)
DRV - [2010/03/12 18.41.16 | 000,030,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINNT\system32\drivers\nx6000.sys -- (MSHUSBVideo)
DRV - [2009/04/03 10.18.44 | 000,049,904 | R--- | M] (Avanquest Software) [Kernel | On_Demand | Stopped] -- C:\WINNT\system32\drivers\BVRPMPR5.SYS -- (BVRPMPR5)
DRV - [2009/02/22 10.32.33 | 000,005,632 | ---- | M] () [File_System | System | Running] -- C:\WINNT\System32\drivers\StarOpen.sys -- (StarOpen)
DRV - [2007/05/02 12.11.18 | 000,109,704 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINNT\system32\drivers\ss_mdm.sys -- (ss_mdm)
DRV - [2007/05/02 12.11.18 | 000,015,112 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINNT\system32\drivers\ss_mdfl.sys -- (ss_mdfl)
DRV - [2007/05/02 12.11.16 | 000,083,592 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINNT\system32\drivers\ss_bus.sys -- (ss_bus) SAMSUNG Mobile USB Device 1.0 driver (WDM)
DRV - [2006/04/13 08.55.06 | 000,676,873 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINNT\system32\drivers\torususb.sys -- (TaurusUsb)
DRV - [2005/02/11 21.46.22 | 000,371,712 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINNT\system32\drivers\BCMWL5.SYS -- (BCM43XX)
DRV - [2004/10/05 18.41.52 | 000,052,864 | R--- | M] (Conexant) [Kernel | On_Demand | Stopped] -- C:\WINNT\system32\drivers\CnxTrUsb.sys -- (CnxTrUsb)
DRV - [2004/10/05 18.41.52 | 000,025,984 | R--- | M] (Conexant) [Kernel | On_Demand | Stopped] -- C:\WINNT\system32\drivers\CnxTrLan.sys -- (CnxTrLan)
DRV - [2004/08/03 23.08.22 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINNT\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2004/08/03 22.32.32 | 000,084,480 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINNT\system32\drivers\ac97via.sys -- (VIAudio) Controller audio (WDM)
DRV - [2004/08/03 22.31.34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINNT\system32\drivers\RTL8139.sys -- (rtl8139)
DRV - [2004/07/16 11.14.30 | 000,140,416 | ---- | M] (Ralink Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\WINNT\system32\drivers\rt2500usb.sys -- (bkn50USB)
DRV - [2004/06/29 10.07.18 | 001,268,204 | ---- | M] (Agere Systems) [Kernel | On_Demand | Stopped] -- C:\WINNT\system32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2003/08/12 06.51.00 | 000,060,255 | R--- | M] (STMicroelectronics ) [Kernel | On_Demand | Running] -- C:\WINNT\system32\drivers\stmatm.sys -- (Stmatm)
DRV - [2002/09/09 19.54.06 | 000,016,269 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINNT\system32\ASNDIS5.sys -- (ASNDIS5)
DRV - [1999/10/28 00.23.38 | 000,345,040 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINNT\system32\drivers\nv4.sys -- (nv4)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINNT\system32\blank.htm


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1844237615-1580436667-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINNT\system32\blank.htm
IE - HKU\S-1-5-21-1844237615-1580436667-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-1844237615-1580436667-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



O1 HOSTS File: ([2010/10/07 19.12.32 | 000,000,027 | ---- | M]) - C:\WINNT\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Supporto di collegamento per Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Guida per l'accesso a Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programmi\File comuni\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O3 - HKU\S-1-5-21-1844237615-1580436667-839522115-1003\..\Toolbar\WebBrowser: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No CLSID value found.
O4 - HKLM..\Run: [AdslTaskBar] C:\WINNT\System32\stmctrl.dll (ZyXEL)
O4 - HKLM..\Run: [avgnt] C:\Programmi\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [BluetoothAuthenticationAgent] C:\WINNT\System32\bthprops.cpl (Microsoft Corporation)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Programmi\File comuni\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKU\.DEFAULT..\RunOnce: [tscuninstall] C:\WINNT\system32\tscupgrd.exe (Microsoft Corporation)
O4 - HKU\S-1-5-18..\RunOnce: [tscuninstall] C:\WINNT\system32\tscupgrd.exe (Microsoft Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoPropertiesMyComputer = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFileAssociate = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1844237615-1580436667-839522115-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1844237615-1580436667-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O7 - HKU\S-1-5-21-1844237615-1580436667-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O7 - HKU\S-1-5-21-1844237615-1580436667-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-1844237615-1580436667-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-1844237615-1580436667-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos-beta/OnlineScanner.cab (OnlineScanner Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINNT\Java\classes\xmldso.cab (Reg Error: Key error.)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Programmi\File comuni\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\vnd.ms.radio {3DA2AA3B-3D96-11D2-9BD2-204C4F4F5020} - C:\WINNT\system32\msdxm.ocx (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Programmi\File comuni\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINNT\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\wzcnotif: DllName - wzcdlg.dll - C:\WINNT\System32\wzcdlg.dll (Microsoft Corporation)
O24 - Desktop Components:0 (Pagina iniziale corrente) - About:Home
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007/08/31 11.33.06 | 000,000,000 | -H-- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/06/18 19.15.02 | 000,579,072 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Yovana\Desktop\OTL.exe
[2011/06/18 11.54.47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Yovana\Dati applicazioni\vlc
[2011/06/18 11.12.19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINNT\Menu Avvio\Programmi\VideoLAN
[2011/06/14 20.16.33 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Yovana\Recent
[2011/06/14 20.06.47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Yovana\Desktop\tds
[2011/06/12 15.44.08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINNT\Dati applicazioni\{AB2D8F2E-F7AD-4446-A11A-50D846B2CF2A}
[2011/06/11 16.21.44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Yovana\Impostazioni locali\Dati applicazioni\PackageAware
[2011/06/09 18.14.18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINNT\Dati applicazioni\Sun
[2011/06/09 18.14.13 | 000,000,000 | ---D | C] -- C:\Programmi\File comuni\Java
[2011/06/05 20.58.17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Yovana\Documenti\Passaporto Yo

========== Files - Modified Within 30 Days ==========

[2011/06/18 19.15.17 | 000,579,072 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Yovana\Desktop\OTL.exe
[2011/06/18 19.10.07 | 000,001,246 | ---- | M] () -- C:\WINNT\tasks\GoogleUpdateTaskUserS-1-5-21-1844237615-1580436667-839522115-1003UA.job
[2011/06/18 19.05.56 | 000,001,744 | ---- | M] () -- C:\WINNT\System32\d3d9caps.dat
[2011/06/18 18.57.52 | 000,002,206 | ---- | M] () -- C:\WINNT\System32\wpa.dbl
[2011/06/18 18.56.26 | 000,001,126 | ---- | M] () -- C:\WINNT\tasks\GoogleUpdateTaskMachineCore.job
[2011/06/18 18.56.14 | 000,002,048 | --S- | M] () -- C:\WINNT\bootstat.dat
[2011/06/18 18.56.13 | 536,399,872 | -HS- | M] () -- C:\hiberfil.sys
[2011/06/18 11.58.59 | 000,002,159 | ---- | M] () -- C:\Documents and Settings\All Users.WINNT\Desktop\Safari.lnk
[2011/06/18 11.55.01 | 000,001,130 | ---- | M] () -- C:\WINNT\tasks\GoogleUpdateTaskMachineUA.job
[2011/06/18 11.12.20 | 000,000,697 | ---- | M] () -- C:\Documents and Settings\All Users.WINNT\Desktop\VLC media player.lnk
[2011/06/17 19.30.33 | 000,002,353 | ---- | M] () -- C:\Documents and Settings\Yovana\Desktop\Google Chrome.lnk
[2011/06/15 18.10.01 | 000,001,194 | ---- | M] () -- C:\WINNT\tasks\GoogleUpdateTaskUserS-1-5-21-1844237615-1580436667-839522115-1003Core.job
[2011/06/14 20.24.07 | 000,002,427 | ---- | M] () -- C:\Documents and Settings\Yovana\Desktop\HiJackThis.lnk
[2011/06/14 20.05.28 | 001,305,136 | ---- | M] () -- C:\Documents and Settings\Yovana\Documenti\tdsskiller.zip
[2011/06/09 17.44.15 | 000,000,116 | ---- | M] () -- C:\WINNT\NeroDigital.ini
[2011/06/05 21.22.27 | 000,000,012 | ---- | M] () -- C:\Documents and Settings\Yovana\intlname.ols
[2011/06/05 21.16.16 | 000,220,123 | ---- | M] () -- C:\Documents and Settings\Yovana\Documenti\ContrattomoduloR.pdf
[2011/06/05 21.14.09 | 000,064,965 | ---- | M] () -- C:\Documents and Settings\Yovana\Documenti\Contrattodisoggiorno.pdf
[2011/06/04 17.17.35 | 000,520,824 | ---- | M] () -- C:\WINNT\System32\perfh010.dat
[2011/06/04 17.17.35 | 000,470,868 | ---- | M] () -- C:\WINNT\System32\perfh009.dat
[2011/06/04 17.17.35 | 000,097,858 | ---- | M] () -- C:\WINNT\System32\perfc010.dat
[2011/06/04 17.17.35 | 000,082,422 | ---- | M] () -- C:\WINNT\System32\perfc009.dat
[2011/05/28 10.22.07 | 000,242,688 | ---- | M] () -- C:\Documents and Settings\Yovana\Impostazioni locali\Dati applicazioni\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/05/26 18.22.54 | 000,000,535 | ---- | M] () -- C:\Documents and Settings\Yovana\Desktop\Hotmail.url

========== Files Created - No Company Name ==========

[2011/06/18 11.12.20 | 000,000,697 | ---- | C] () -- C:\Documents and Settings\All Users.WINNT\Desktop\VLC media player.lnk
[2011/06/14 20.05.18 | 001,305,136 | ---- | C] () -- C:\Documents and Settings\Yovana\Documenti\tdsskiller.zip
[2011/06/05 21.16.22 | 000,220,123 | ---- | C] () -- C:\Documents and Settings\Yovana\Documenti\ContrattomoduloR.pdf
[2011/06/05 21.14.36 | 000,064,965 | ---- | C] () -- C:\Documents and Settings\Yovana\Documenti\Contrattodisoggiorno.pdf
[2011/04/09 11.17.25 | 000,023,444 | ---- | C] () -- C:\WINNT\cscmondump.bin
[2011/02/03 21.10.29 | 000,013,996 | -H-- | C] () -- C:\WINNT\System32\mlfcache.dat
[2010/06/05 18.19.24 | 000,001,632 | ---- | C] () -- C:\WINNT\System32\d3d8caps.dat
[2010/03/28 10.27.32 | 000,000,036 | ---- | C] () -- C:\Documents and Settings\Yovana\Impostazioni locali\Dati applicazioni\housecall.guid.cache
[2010/03/21 16.28.28 | 000,000,000 | ---- | C] () -- C:\WINNT\nsreg.dat
[2009/10/29 19.52.52 | 000,000,056 | -H-- | C] () -- C:\WINNT\System32\ezsidmv.dat
[2009/10/17 16.09.58 | 000,000,004 | ---- | C] () -- C:\WINNT\System32\proc-1461555143.bin
[2009/10/01 18.49.50 | 000,459,671 | ---- | C] () -- C:\Documents and Settings\Yovana\Impostazioni locali\Dati applicazioni\xhxbb_nav.dat.vir
[2009/10/01 18.49.50 | 000,003,299 | ---- | C] () -- C:\Documents and Settings\Yovana\Impostazioni locali\Dati applicazioni\xhxbb.dat.vir
[2009/10/01 18.49.50 | 000,002,652 | ---- | C] () -- C:\Documents and Settings\Yovana\Impostazioni locali\Dati applicazioni\xhxbb_navps.dat.vir
[2009/06/14 20.21.24 | 000,000,014 | ---- | C] () -- C:\WINNT\popcinfo.dat
[2009/04/11 20.17.24 | 000,000,938 | ---- | C] () -- C:\WINNT\psmplay.ini
[2009/02/22 10.34.05 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users.WINNT\Dati applicazioni\LauncherAccess.dt
[2009/02/22 10.18.00 | 000,005,632 | ---- | C] () -- C:\WINNT\System32\drivers\StarOpen.sys
[2009/01/24 19.15.23 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\All Users.WINNT\Dati applicazioni\Synth Leads
[2009/01/24 19.15.23 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\Yovana\Dati applicazioni\SupportPrinters
[2009/01/24 19.15.23 | 000,000,020 | -H-- | C] () -- C:\Documents and Settings\All Users.WINNT\Dati applicazioni\PKP_DLdu.DAT
[2009/01/24 19.15.23 | 000,000,012 | RH-- | C] () -- C:\Documents and Settings\All Users.WINNT\Dati applicazioni\Techno Kit
[2008/11/30 13.55.20 | 000,001,744 | ---- | C] () -- C:\WINNT\System32\d3d9caps.dat
[2008/11/01 18.45.21 | 000,036,864 | R--- | C] () -- C:\WINNT\System32\stmclean.exe
[2008/11/01 18.45.19 | 000,676,873 | R--- | C] () -- C:\WINNT\System32\drivers\torususb.sys
[2008/07/06 17.22.54 | 000,057,344 | ---- | C] () -- C:\WINNT\System32\GKSUI16.EXE
[2008/05/18 13.07.29 | 000,000,034 | ---- | C] () -- C:\WINNT\System32\oeminfo.ini
[2008/02/03 12.39.39 | 000,242,688 | ---- | C] () -- C:\Documents and Settings\Yovana\Impostazioni locali\Dati applicazioni\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007/10/11 18.16.47 | 000,000,116 | ---- | C] () -- C:\WINNT\NeroDigital.ini
[2007/09/02 13.20.47 | 000,006,550 | ---- | C] () -- C:\WINNT\jautoexp.dat
[2007/09/01 21.11.01 | 000,000,688 | ---- | C] () -- C:\WINNT\ODBC.INI
[2007/09/01 20.49.28 | 000,002,048 | --S- | C] () -- C:\WINNT\bootstat.dat
[2007/09/01 20.35.12 | 000,003,476 | ---- | C] () -- C:\WINNT\System32\fxsperf.ini
[2007/08/31 11.32.09 | 000,022,075 | -H-- | C] () -- C:\Programmi\folder.htt
[2007/08/31 11.31.24 | 000,022,392 | ---- | C] () -- C:\WINNT\System32\emptyregdb.dat
[2007/08/29 13.44.44 | 000,004,243 | ---- | C] () -- C:\WINNT\ODBCINST.INI
[2007/08/29 13.36.11 | 000,118,152 | ---- | C] () -- C:\WINNT\System32\FNTCACHE.DAT
[2004/08/19 15.52.50 | 000,001,788 | ---- | C] () -- C:\WINNT\System32\Dcache.bin
[2004/08/02 14.20.40 | 000,004,569 | ---- | C] () -- C:\WINNT\System32\secupd.dat
[2003/06/26 14.00.00 | 000,520,824 | ---- | C] () -- C:\WINNT\System32\perfh010.dat
[2003/06/26 14.00.00 | 000,470,868 | ---- | C] () -- C:\WINNT\System32\perfh009.dat
[2003/06/26 14.00.00 | 000,176,400 | ---- | C] () -- C:\WINNT\System32\qcut.dll
[2003/06/26 14.00.00 | 000,097,858 | ---- | C] () -- C:\WINNT\System32\perfc010.dat
[2003/06/26 14.00.00 | 000,082,422 | ---- | C] () -- C:\WINNT\System32\perfc009.dat
[2003/06/26 14.00.00 | 000,000,741 | ---- | C] () -- C:\WINNT\System32\noise.dat
[2003/04/01 11.49.16 | 000,005,360 | ---- | C] () -- C:\WINNT\System32\OUTLPERF.INI
[2001/08/31 12.00.00 | 000,673,088 | ---- | C] () -- C:\WINNT\System32\mlang.dat
[2001/08/31 12.00.00 | 000,300,212 | ---- | C] () -- C:\WINNT\System32\perfi010.dat
[2001/08/31 12.00.00 | 000,272,128 | ---- | C] () -- C:\WINNT\System32\perfi009.dat
[2001/08/31 12.00.00 | 000,218,003 | ---- | C] () -- C:\WINNT\System32\dssec.dat
[2001/08/31 12.00.00 | 000,046,258 | ---- | C] () -- C:\WINNT\System32\mib.bin
[2001/08/31 12.00.00 | 000,034,004 | ---- | C] () -- C:\WINNT\System32\perfd010.dat
[2001/08/31 12.00.00 | 000,028,626 | ---- | C] () -- C:\WINNT\System32\perfd009.dat
[2001/08/23 13.00.00 | 013,107,200 | ---- | C] () -- C:\WINNT\System32\oembios.bin
[2001/08/23 13.00.00 | 000,004,463 | ---- | C] () -- C:\WINNT\System32\oembios.dat
[1999/09/25 20.36.24 | 000,088,816 | ---- | C] () -- C:\WINNT\System32\drivers\lvcam.sys
[1999/09/25 20.36.22 | 000,017,424 | ---- | C] () -- C:\WINNT\System32\drivers\lvsound.sys

========== LOP Check ==========

[2009/01/24 19.15.23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINNT\Dati applicazioni\EnterNHelp
[2010/05/06 20.08.44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINNT\Dati applicazioni\MGS
[2009/01/24 19.16.30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINNT\Dati applicazioni\Nikon
[2010/05/14 14.48.05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINNT\Dati applicazioni\PCPitstop
[2009/10/01 19.54.57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINNT\Dati applicazioni\Simply Super Software
[2010/10/12 21.23.38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINNT\Dati applicazioni\TEMP
[2009/01/24 19.15.23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINNT\Dati applicazioni\Ultima_T15
[2009/02/24 20.58.02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINNT\Dati applicazioni\wmp
[2010/04/29 19.53.40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINNT\Dati applicazioni\Zylom
[2011/06/12 15.44.08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINNT\Dati applicazioni\{AB2D8F2E-F7AD-4446-A11A-50D846B2CF2A}
[2011/06/18 10.51.49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Yovana\Dati applicazioni\BitTorrent
[2011/01/01 18.51.33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Yovana\Dati applicazioni\Convivea
[2009/04/19 00.55.03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Yovana\Dati applicazioni\DNA
[2010/03/27 11.07.34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Yovana\Dati applicazioni\freeTVRadio
[2009/10/17 16.09.58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Yovana\Dati applicazioni\GanymedeNet
[2010/09/18 08.30.11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Yovana\Dati applicazioni\IObit
[2009/08/23 21.37.35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Yovana\Dati applicazioni\live-player
[2011/01/03 20.19.13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Yovana\Dati applicazioni\Mipony
[2010/02/10 20.34.12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Yovana\Dati applicazioni\Nikon
[2010/12/10 22.09.40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Yovana\Dati applicazioni\PriceGong
[2009/04/11 19.28.53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Yovana\Dati applicazioni\Samsung
[2009/06/14 20.20.47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Yovana\Dati applicazioni\Zylom

========== Purity Check ==========



< End of report >


OTL Extras logfile created on: 18/06/11 19.16.06 - Run 1
OTL by OldTimer - Version 3.2.24.1 Folder = C:\Documents and Settings\Yovana\Desktop
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000410 | Country: Italia | Language: ITA | Date Format: dd/MM/yy

511,48 Mb Total Physical Memory | 183,73 Mb Available Physical Memory | 35,92% Memory free
866,26 Mb Paging File | 488,21 Mb Available in Paging File | 56,36% Paging File free
Paging file location(s): c:\pagefile.sys 384 768 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINNT | %ProgramFiles% = C:\Programmi
Drive C: | 76,33 Gb Total Space | 14,20 Gb Free Space | 18,60% Space Free | Partition Type: NTFS

Computer Name: YOVANA | User Name: Yovana | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

[HKEY_USERS\S-1-5-21-1844237615-1580436667-839522115-1003\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- %1
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Programmi\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Programmi\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"FirewallDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Programmi\eMule\emule.exe" = C:\Programmi\eMule\emule.exe:*:Enabled:eMule -- (http://www.emule-project.net)
"C:\Programmi\DNA\btdna.exe" = C:\Programmi\DNA\btdna.exe:*:Enabled:DNA -- (BitTorrent, Inc.)
"C:\Programmi\BitTorrent\bittorrent.exe" = C:\Programmi\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent -- (BitTorrent, Inc.)
"C:\Programmi\Skype\Plugin Manager\skypePM.exe" = C:\Programmi\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Strumento di caricamento di Windows Live
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{26A24AE4-039D-4CA4-87B4-2F83216026FF}" = Java(TM) 6 Update 26
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{350C9410-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{39AE27EE-A148-48A3-B98D-35498C4D9719}" = Windows Live Messenger
"{4286E640-B5FB-11DF-AC4B-005056C00008}" = Google Earth
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{55CA4086-0D2C-30E3-A7B5-C76BA737CECE}" = Microsoft .NET Framework 3.5 Language Pack SP1 - ita
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6B9B0C6F-E5FA-4633-A640-AB98A272ECCA}" = Safari
"{6F695BCF-9BDC-48AB-8D46-D57CFAD7A248}" = Assistente per l'accesso a Windows Live
"{6F716DA2-398F-11D3-85E1-005004838609}" = WebFldrs
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{842F9881-E181-30B3-A152-008D61433274}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - ITA
"{86BA3130-5938-3192-BBCF-6B0A2D86FA58}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - ITA
"{8E5233E1-7495-44FB-8DEB-4BE906D59619}" = Junk Mail filter update
"{90110410-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9600B88C-BE14-4BEA-A529-F5F312900BA3}" = Samsung PC Studio 3
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A3EABC0-CA06-11D4-BF77-00104B130C19}" = EPSON TWAIN 5
"{9CEB017E-CC16-4C89-B9E4-AAB5A1DD12F9}" = Windows Live Essentials
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1040-7B44-A81300000003}" = Adobe Reader 8.1.3 - Italiano
"{B3BC9DB1-0B0A-48B0-B86B-EA77CAA7F800}" = Microsoft Corporation
"{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C3C640B8-95B6-40AE-A058-BE4896CD3010}" = Windows Live Call
"{C4A4722E-79F9-417C-BD72-8D359A090C97}" = Samsung PC Studio 3
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D2FCC1AE-6311-47C5-8130-C6C66D77DD71}" = Nikon Message Center
"{D9DA5C41-964F-455F-B5E7-3664519440E8}_is1" = Bit Che
"{E31A24A7-CF73-42B7-8FA1-26644296C9E3}" = Windows Live Mail
"{E7004147-2CCA-431C-AA05-2AB166B9785D}" = QuickTime
"{E9757890-7EC5-46C8-99AB-B00F07B6525C}" = Nikon Transfer
"{EE6097DD-05F4-4178-9719-D3170BF098E8}" = Apple Application Support
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"6194C28A8F62DD817EA1B918E6E46E806A21B452" = Pacchetto driver Windows - MobileTop (sshpmdm) Modem (02/23/2007 2.5.0.0)
"65B6FE5418CE28F4D72543FB2D964C3CEC83F161" = Pacchetto driver Windows - MobileTop (sshpusb) USB (02/23/2007 2.5.0.0)
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Agere Systems Soft Modem" = Agere Systems PCI Soft Modem
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"AVS Update Manager_is1" = AVS Update Manager 1.0
"AVS Video Recorder_is1" = AVS Video Recorder 2.4
"AVS Video ReMaker_is1" = AVS Video ReMaker 3.1.1.83
"AVS4YOU Software Navigator_is1" = AVS4YOU Software Navigator 1.3
"CCleaner" = CCleaner
"ESET Online Scanner" = ESET Online Scanner v3
"ie8" = Windows Internet Explorer 8
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 3.5 Language Pack SP1 - ita" = Microsoft .NET Framework 3.5 - Language Pack SP1 (italiano)
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"NeroMultiInstaller!UninstallKey" = Nero Suite
"SAMSUNG Mobile Composite Device" = SAMSUNG Mobile Composite Device Software
"SAMSUNG Mobile Modem" = SAMSUNG Mobile Modem Driver Set
"Samsung Mobile phone USB driver" = Samsung Mobile phone USB driver Software
"SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software
"SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software
"StmAdsl" = ADSL Modem
"VLC media player" = VLC media player 1.1.10
"WIC" = Windows Imaging Component
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR gestione archivi
"WMFDist11" = Windows Media Format 11 runtime
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-1844237615-1580436667-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"BitTorrent" = BitTorrent
"BitTorrent DNA" = DNA
"Google Chrome" = Google Chrome
"MXpie Patch" = MXpie Patch for WinMX Network/WPNP 3.6.3.6

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 09/06/11 12.35.41 | Computer Name = YOVANA | Source = MSDTC | ID = 4112
Description = Impossibile avviare il gestore transazioni di MS DT

Error - 09/06/11 12.52.55 | Computer Name = YOVANA | Source = MSDTC | ID = 4163
Description = Impossibile trovare il file registro MS DTC. Dopo aver verificato
che non vi siano transazioni in dubbio in tutti i gestori delle risorse coordinati
da MS DTC, eseguire msdtc -resetlog per creare il file registr

Error - 09/06/11 12.52.55 | Computer Name = YOVANA | Source = MSDTC | ID = 4185
Description = Impossibile avviare il gestore transazioni di MS DTC. Errore 0x2 durante
l'esecuzione dell'operazione LogIni

Error - 09/06/11 12.52.55 | Computer Name = YOVANA | Source = MSDTC | ID = 4112
Description = Impossibile avviare il gestore transazioni di MS DT

Error - 11/06/11 7.10.48 | Computer Name = YOVANA | Source = MSDTC | ID = 4163
Description = Impossibile trovare il file registro MS DTC. Dopo aver verificato
che non vi siano transazioni in dubbio in tutti i gestori delle risorse coordinati
da MS DTC, eseguire msdtc -resetlog per creare il file registr

Error - 11/06/11 7.10.48 | Computer Name = YOVANA | Source = MSDTC | ID = 4185
Description = Impossibile avviare il gestore transazioni di MS DTC. Errore 0x2 durante
l'esecuzione dell'operazione LogIni

Error - 11/06/11 7.10.48 | Computer Name = YOVANA | Source = MSDTC | ID = 4112
Description = Impossibile avviare il gestore transazioni di MS DT

Error - 16/06/11 13.09.29 | Computer Name = YOVANA | Source = MSDTC | ID = 4163
Description = Impossibile trovare il file registro MS DTC. Dopo aver verificato
che non vi siano transazioni in dubbio in tutti i gestori delle risorse coordinati
da MS DTC, eseguire msdtc -resetlog per creare il file registr

Error - 16/06/11 13.09.29 | Computer Name = YOVANA | Source = MSDTC | ID = 4185
Description = Impossibile avviare il gestore transazioni di MS DTC. Errore 0x2 durante
l'esecuzione dell'operazione LogIni

Error - 16/06/11 13.09.29 | Computer Name = YOVANA | Source = MSDTC | ID = 4112
Description = Impossibile avviare il gestore transazioni di MS DT

[ System Events ]
Error - 18/06/11 2.15.37 | Computer Name = YOVANA | Source = Service Control Manager | ID = 7023
Description = Servizio HID Input Service terminato con l'errore: %%126

Error - 18/06/11 2.15.37 | Computer Name = YOVANA | Source = Service Control Manager | ID = 7023
Description = Servizio Aggiornamenti automatici terminato con l'errore: %%126

Error - 18/06/11 4.25.29 | Computer Name = YOVANA | Source = ACPI | ID = 327685
Description = AMLI: Il BIOS ACPI sta cercando di scrivere in un indirizzo non valido
della porta IO (0xcf8) che risiede nell'intervallo di indirizzi protetti 0xcf8 -
0xcff. Ciò può comportare instabilità del sistema. Contattare il fornitore del
sistema per il supporto tecnico.

Error - 18/06/11 4.25.29 | Computer Name = YOVANA | Source = ACPI | ID = 327684
Description = AMLI: Il BIOS ACPI sta cercando di leggere da un indirizzo non valido
della porta IO (0xcfc) che risiede nell'intervallo di indirizzi protetti 0xcf8
- 0xcff. Ciò può comportare instabilità del sistema. Contattare il fornitore del
sistema per il supporto tecnico.

Error - 18/06/11 4.25.54 | Computer Name = YOVANA | Source = Service Control Manager | ID = 7023
Description = Servizio HID Input Service terminato con l'errore: %%126

Error - 18/06/11 4.25.54 | Computer Name = YOVANA | Source = Service Control Manager | ID = 7023
Description = Servizio Aggiornamenti automatici terminato con l'errore: %%126

Error - 18/06/11 12.56.22 | Computer Name = YOVANA | Source = ACPI | ID = 327685
Description = AMLI: Il BIOS ACPI sta cercando di scrivere in un indirizzo non valido
della porta IO (0xcf8) che risiede nell'intervallo di indirizzi protetti 0xcf8 -
0xcff. Ciò può comportare instabilità del sistema. Contattare il fornitore del
sistema per il supporto tecnico.

Error - 18/06/11 12.56.22 | Computer Name = YOVANA | Source = ACPI | ID = 327684
Description = AMLI: Il BIOS ACPI sta cercando di leggere da un indirizzo non valido
della porta IO (0xcfc) che risiede nell'intervallo di indirizzi protetti 0xcf8
- 0xcff. Ciò può comportare instabilità del sistema. Contattare il fornitore del
sistema per il supporto tecnico.

Error - 18/06/11 12.56.41 | Computer Name = YOVANA | Source = Service Control Manager | ID = 7023
Description = Servizio HID Input Service terminato con l'errore: %%126

Error - 18/06/11 12.56.41 | Computer Name = YOVANA | Source = Service Control Manager | ID = 7023
Description = Servizio Aggiornamenti automatici terminato con l'errore: %%126


< End of report >




Grazie per eventuali consigli
Claudio
Top
Profilo Invia messaggio privato
Silent Runner
Supervisor sezione Chiacchiere a 360°
Supervisor sezione Chiacchiere a 360°


Registrato: 16/05/05 10:17
Messaggi: 24127
Residenza: Pianeta Terra

MessaggioInviato: 18 Giu 2011 22:10    Oggetto: Rispondi

Il primo consiglio è di caricare i logs attraverso uno dei servizi di hosting indicati in questa discussione Wink

Poi attendi fiducioso, i migliori esperti sapranno aiutarti come hanno fatto con me. Very Happy
Top
Profilo Invia messaggio privato
Mostra prima i messaggi di:   
Nuovo argomento   Rispondi    Indice del forum -> Pronto Soccorso Virus Tutti i fusi orari sono GMT + 2 ore
Pagina 1 di 1

 
Vai a:  
Non puoi inserire nuovi argomenti
Non puoi rispondere a nessun argomento
Non puoi modificare i tuoi messaggi
Non puoi cancellare i tuoi messaggi
Non puoi votare nei sondaggi