Problema con firefox

[gianni1967]

OTL Extras logfile created on: 03/12/2013 9.43.50 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\GIOVANNI\Desktop\software pc
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000410 | Country: Italia | Language: ITA | Date Format: dd/MM/yyyy

1,87 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 53,20% Memory free
3,72 Gb Paging File | 2,82 Gb Available in Paging File | 75,87% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programmi
Drive C: | 465,75 Gb Total Space | 432,99 Gb Free Space | 92,97% Space Free | Partition Type: NTFS
Drive F: | 111,79 Gb Total Space | 75,52 Gb Free Space | 67,55% Space Free | Partition Type: NTFS

Computer Name: GIOVANNI-0DB10D | User Name: GIOVANNI | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html [@ = ChromeHTML] -- C:\Programmi\Google\Chrome\Application\chrome.exe (Google Inc.)

[HKEY_USERS\.DEFAULT\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

[HKEY_USERS\S-1-5-18\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

[HKEY_USERS\S-1-5-21-220523388-1425521274-725345543-1004\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Programmi\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- Reg Error: Key error.
http [open] -- "C:\Programmi\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Programmi\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\Programmi\File comuni\Apple\Apple Application Support\WebKit2WebProcess.exe" = C:\Programmi\File comuni\Apple\Apple Application Support\WebKit2WebProcess.exe:*:Enabled:WebKit -- (Apple Inc.)
"C:\Programmi\Skype\Phone\Skype.exe" = C:\Programmi\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)
"C:\Documents and Settings\GIOVANNI\Dati applicazioni\Dropbox\bin\Dropbox.exe" = C:\Documents and Settings\GIOVANNI\Dati applicazioni\Dropbox\bin\Dropbox.exe:*:Enabled:Dropbox -- (Dropbox, Inc.)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{03CAB33F-D1C2-48C6-8766-DAE84DFC25FE}" = Microsoft Sync Framework Services v1.0 (x86)
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0B500125-92A7-40BF-ACF0-45A9221ADE21}_is1" = PowerOffer 2.0
"{0BE37B03-93EF-4B46-A4F3-30ED22569D1A}" = Microsoft SQL Server Compact 3.5 SP1 繁體中文
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP190_series" = Canon MP190 series MP Drivers
"{121966EA-6FEE-43CE-A80F-0BAED1E0A14B}" = DiKe 4.3.0
"{1798D459-6B8B-474B-868D-1229EADA3B95}" = Adobe AIR
"{1E04D0BC-E0F6-4392-8EB2-CF5B30966A86}" = DiKe Util 2.1.0
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Strumento di caricamento di Windows Live
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{26A24AE4-039D-4CA4-87B4-2F83216032FF}" = Java(TM) 6 Update 32
"{26A24AE4-039D-4CA4-87B4-2F83217017FF}" = Java 7 Update 17
"{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}" = RealUpgrade 1.1
"{2BC2781A-F7F6-452E-95EB-018A522F1B2C}" = PaperPort Image Printer
"{2E05C4E0-44CF-11DA-BCA8-00C0DF08668D}_is1" = Netinsoft Dedalo 6
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{350C9410-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{39AE27EE-A148-48A3-B98D-35498C4D9719}" = Windows Live Messenger
"{3BFED551-630D-4C5E-A90F-A6B7E9CF3CA0}" = PriMus-DCF v.NEXT GENERATION(c)
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{426B698A-ADA8-4BA6-8FC0-0480C36B5F9A}" = SearchToolbar
"{43A650AA-D1DC-4C52-8819-D7848B3A08DA}" = OpenOffice.org 3.1
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.3
"{58E30E6B-00B3-49F5-89E4-C6CDD37CAA75}" = ScanSoft OmniPage SE 4
"{62D7EE29-DCCB-4AC6-A491-753C2E01F480}" = DoubleCAD XT 5 - 32 bit
"{67A87D78-70B5-4999-85CA-DE4C26100C7A}" = IntelliCAD 2001
"{6B994369-AFF8-461C-97D6-19A5C283D8A5}" = ScanSoft PaperPort 11
"{6F695BCF-9BDC-48AB-8D46-D57CFAD7A248}" = Assistente per l'accesso a Windows Live
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies
"{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}" = RealNetworks - Microsoft Visual C++ 2008 Runtime
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{91B33C97-93EB-244C-F687-71D85E45A206}_is1" = Ashampoo Burning Studio 12 v.12.0.5
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{96AD3B61-EAE2-11E2-9E72-B8AC6F98CCE3}" = Google Earth
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9CEB017E-CC16-4C89-B9E4-AAB5A1DD12F9}" = Windows Live Essentials
"{A0EB195B-5876-48E6-879D-33D4B2102610}" = SonicStage 3.4
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A8BD5A60-E843-46DC-8271-ABF20756BE0F}" = Microsoft Sync Framework Runtime v1.0 (x86)
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1040-7B44-A94000000001}" = Adobe Reader 9.4.0 - Italiano
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Click to Call with Skype
"{BE0CA31E-0FD0-44FA-BE90-B793049572BA}" = Quick Image Navigator
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C3C640B8-95B6-40AE-A058-BE4896CD3010}" = Windows Live Call
"{C9E14402-3631-4182-B377-6B0DFB1C0339}" = QuickTime
"{CC4878C0-4A6A-49CD-AAA7-DD3FCB06CC84}" = Microsoft Web Platform Installer 3.0
"{CCD663AE-610D-4BDF-AAB0-E914B044527D}" = OpenMG Secure Module 4.7.00
"{CCE825DB-347A-4004-A186-5F4A6FDD8547}" = Supporto applicazioni Apple
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones
"{E91E8912-769D-42F0-8408-0E329443BABC}" = Edimax Wireless LAN
"{EB9F419E-B8E9-4F62-B12C-84561720030F}_is1" = Netinsoft Iside 4
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Graphics Media Accelerator Driver
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F6CE1230-A694-4B86-B21C-A11A112689DA}" = Trust WB-1400T Webcam
"{F996DEB7-4AD7-4F15-84AA-114B8BE45911}" = Polar UpLink Tool
"3DRoom_is1" = 3DRoom Rel 1.5
"5D9817CE83DD092EB8923949297A94C53A0A27CF" = Pacchetto driver Windows - ACER Incorporated (qcusbser) Ports (08/16/2010 2.0.6.6)
"637F4A11ADE9B1B3D8F4A37C0C4CA8EA924B739E" = Pacchetto driver Windows - Linux Developer Community Net (08/16/2010 5.1.2600.2781)
"83E7AE861B9BCCB05F7AA822F9EE26C0672E6888" = Pacchetto driver Windows - Acer, Inc (androidusb) USB (08/16/2010 1.0.0010.00000)
"A9D22611-32B5-40C2-88BF-6A39245A0C76" = Docfa4
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"ANWord_is1" = ANWord
"Avira AntiVir Desktop" = Avira Free Antivirus
"CANONIJPLM100" = Inkjet Printer/Scanner Extended Survey Program
"CanonMyPrinter" = Canon Utilities My Printer
"CanonSolutionMenu" = Canon Utilities Solution Menu
"D149DB73BE02E748657C63CBB404510E56E08F63" = Pacchetto driver Windows - ACER Incorporated (qcusbser) Modem (08/16/2010 2.0.6.6)
"Disinstalla AutoCAD 2000 - Italiano" = AutoCAD 2000 - Italiano
"Disinstalla AutoCAD LT 2000 - Italiano" = AutoCAD LT 2000 - Italiano
"Easy-PhotoPrint EX" = Canon Utilities Easy-PhotoPrint EX
"Estratto 2000_is1" = Estratto 2000 0.8.1
"Google Chrome" = Google Chrome
"ie8" = Windows Internet Explorer 8
"InstallShield_{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies
"InstallShield_{BE0CA31E-0FD0-44FA-BE90-B793049572BA}" = Panasonic Quick Image Navigator
"InstallShield_{CCD663AE-610D-4BDF-AAB0-E914B044527D}" = OpenMG Secure Module 4.7.00
"InstallShield_{F6CE1230-A694-4B86-B21C-A11A112689DA}" = Trust WB-1400T Webcam
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware versione 1.75.0.1300
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Mozilla Firefox 25.0.1 (x86 it)" = Mozilla Firefox 25.0.1 (x86 it)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MP Navigator EX 1.2" = Canon MP Navigator EX 1.2
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"OpenMG HotFix4.7-07-13-22-01" = OpenMG Limited Patch 4.7-07-14-05-01
"Poker Club for Totosi" = Poker Club for Totosi
"Pregeo 10.00 Tecnico" = Pregeo 10.00 Tecnico
"Pregeo 8.00 Tecnico" = Pregeo 8.00 Tecnico
"Pregeo 9.00 Tecnico" = Pregeo 9.00 Tecnico
"RealPlayer 12.0" = RealPlayer
"Recuva" = Recuva
"Registrazione utente Canon MP190 series" = Registrazione utente Canon MP190 series
"Successioni e Volture 2010_is1" = Successioni e Volture 2010 ver 15.x
"Vigeo_is1" = Vigeo 0.6.7
"Voltura 1.0" = Voltura 1.0
"Wdf01005" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
"Windows Essentials Media Codec Pack" = Windows Essentials Media Codec Pack 4.0 [32-Bit]
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR gestione archivi
"Wise Registry Cleaner_is1" = Wise Registry Cleaner 7.71
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-220523388-1425521274-725345543-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Dropbox" = Dropbox

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 27/11/2013 6.20.45 | Computer Name = GIOVANNI-0DB10D | Source = PowerOffer Upd Service | ID = 0
Description = Service cannot be started. Handle non valido

Error - 27/11/2013 9.41.42 | Computer Name = GIOVANNI-0DB10D | Source = PowerOffer Upd Service | ID = 0
Description = Service cannot be started. Handle non valido

Error - 27/11/2013 9.55.50 | Computer Name = GIOVANNI-0DB10D | Source = PowerOffer Upd Service | ID = 0
Description = Service cannot be started. Handle non valido

Error - 28/11/2013 7.40.56 | Computer Name = GIOVANNI-0DB10D | Source = PowerOffer Upd Service | ID = 0
Description = Service cannot be started. Handle non valido

Error - 29/11/2013 5.26.55 | Computer Name = GIOVANNI-0DB10D | Source = PowerOffer Upd Service | ID = 0
Description = Service cannot be started. Handle non valido

Error - 29/11/2013 10.07.47 | Computer Name = GIOVANNI-0DB10D | Source = PowerOffer Upd Service | ID = 0
Description = Service cannot be started. Handle non valido

Error - 30/11/2013 4.17.33 | Computer Name = GIOVANNI-0DB10D | Source = PowerOffer Upd Service | ID = 0
Description = Service cannot be started. Handle non valido

Error - 02/12/2013 3.34.37 | Computer Name = GIOVANNI-0DB10D | Source = PowerOffer Upd Service | ID = 0
Description = Service cannot be started. Handle non valido

Error - 03/12/2013 3.43.43 | Computer Name = GIOVANNI-0DB10D | Source = PowerOffer Upd Service | ID = 0
Description = Service cannot be started. Handle non valido

Error - 03/12/2013 4.36.27 | Computer Name = GIOVANNI-0DB10D | Source = PowerOffer Upd Service | ID = 0
Description = Service cannot be started. Handle non valido

[ OSession Events ]
Error - 05/07/2012 20.28.35 | Computer Name = GIOVANNI-0DB10D | Source = Microsoft Office 12 Sessions | ID = 7001
Description =

[ System Events ]
Error - 02/12/2013 3.34.12 | Computer Name = GIOVANNI-0DB10D | Source = Service Control Manager | ID = 7022
Description = Servizio Pos Service bloccato in partenza.

Error - 02/12/2013 3.34.12 | Computer Name = GIOVANNI-0DB10D | Source = Service Control Manager | ID = 7022
Description = Servizio Serv Updater bloccato in partenza.

Error - 03/12/2013 3.41.36 | Computer Name = GIOVANNI-0DB10D | Source = Service Control Manager | ID = 7001
Description = Il servizio Sentinel dipende dal servizio Parport che non è stato
avviato per il seguente errore: %%1058

Error - 03/12/2013 3.43.32 | Computer Name = GIOVANNI-0DB10D | Source = Service Control Manager | ID = 7022
Description = Servizio Pos Service bloccato in partenza.

Error - 03/12/2013 3.43.33 | Computer Name = GIOVANNI-0DB10D | Source = Service Control Manager | ID = 7022
Description = Servizio Serv Updater bloccato in partenza.

Error - 03/12/2013 4.34.33 | Computer Name = GIOVANNI-0DB10D | Source = Service Control Manager | ID = 7001
Description = Il servizio Sentinel dipende dal servizio Parport che non è stato
avviato per il seguente errore: %%1058

Error - 03/12/2013 4.34.33 | Computer Name = GIOVANNI-0DB10D | Source = Service Control Manager | ID = 7000
Description = Il servizio Software Upd non è stato avviato per il seguente errore:
%%3

Error - 03/12/2013 4.36.17 | Computer Name = GIOVANNI-0DB10D | Source = Service Control Manager | ID = 7022
Description = Servizio Pos Service bloccato in partenza.

Error - 03/12/2013 4.36.18 | Computer Name = GIOVANNI-0DB10D | Source = Service Control Manager | ID = 7022
Description = Servizio Serv Updater bloccato in partenza.

Error - 03/12/2013 4.48.20 | Computer Name = GIOVANNI-0DB10D | Source = Dhcp | ID = 1002
Description = Il lease 192.168.1.80 dell'indirizzo IP della scheda di rete con indirizzo
001F1F3160CC è stato negato dal server DHCP 192.168.1.254. Il server DHCP ha inviato
un messaggio DHCPNACK.


< End of report >

[gianni1967]

OTL logfile created on: 03/12/2013 9.43.50 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\GIOVANNI\Desktop\software pc
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000410 | Country: Italia | Language: ITA | Date Format: dd/MM/yyyy

1,87 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 53,20% Memory free
3,72 Gb Paging File | 2,82 Gb Available in Paging File | 75,87% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programmi
Drive C: | 465,75 Gb Total Space | 432,99 Gb Free Space | 92,97% Space Free | Partition Type: NTFS
Drive F: | 111,79 Gb Total Space | 75,52 Gb Free Space | 67,55% Space Free | Partition Type: NTFS

Computer Name: GIOVANNI-0DB10D | User Name: GIOVANNI | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days

========== Processes (SafeList) ==========

PRC - C:\Documents and Settings\GIOVANNI\Desktop\software pc\OTL.exe (OldTimer Tools)
PRC - C:\Programmi\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)
PRC - C:\Programmi\Avira\AntiVir Desktop\avshadow.exe (Avira Operations GmbH & Co. KG)
PRC - C:\Programmi\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
PRC - C:\Programmi\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)
PRC - C:\Programmi\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Programmi\Java\jre7\bin\jqs.exe (Oracle Corporation)
PRC - C:\Programmi\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
PRC - C:\Programmi\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
PRC - C:\Programmi\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Programmi\Canon\IJPLM\ijplmsvc.exe ()
PRC - C:\Programmi\EDIMAX\Common\RaUI.exe (Edimax Technology Co., Ltd)
PRC - C:\WINDOWS\system32\PAStiSvc.exe ()


========== Modules (No Company Name) ==========

MOD - C:\Programmi\Mozilla Firefox\mozjs.dll ()
MOD - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
MOD - C:\Programmi\Avira\AntiVir Desktop\sqlite3.dll ()
MOD - C:\Programmi\WinRAR\RarExt.dll ()
MOD - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\pdfshell.ITA ()
MOD - C:\Programmi\Canon\IJPLM\ijplmsvc.exe ()
MOD - C:\Programmi\EDIMAX\Common\acAuth.dll ()
MOD - C:\WINDOWS\system32\PAStiSvc.exe ()


========== Services (SafeList) ==========

SRV - (SoftwareUpd) -- C:\Documents and Settings\GIOVANNI\Impostazioni locali\Dati applicazioni\SoftwareUpdater\SoftwareUpdService.exe File not found
SRV - (AppMgmt) -- %SystemRoot%\System32\appmgmts.dll File not found
SRV - (AntiVirSchedulerService) -- C:\Programmi\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)
SRV - (AntiVirService) -- C:\Programmi\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)
SRV - (MozillaMaintenance) -- C:\Programmi\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (JavaQuickStarterService) -- C:\Programmi\Java\jre7\bin\jqs.exe (Oracle Corporation)
SRV - (MBAMService) -- C:\Programmi\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (MBAMScheduler) -- C:\Programmi\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
SRV - (SkypeUpdate) -- C:\Programmi\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (PowerOffer Service) -- C:\Documents and Settings\GIOVANNI\Impostazioni locali\Dati applicazioni\PosService\Pos.exe (PowerOfferService)
SRV - (ServUpdater) -- C:\Documents and Settings\GIOVANNI\Impostazioni locali\Dati applicazioni\ServUpdater\ServiceUpd.exe (ServiceUpd)
SRV - (IJPLMSVC) -- C:\Programmi\Canon\IJPLM\ijplmsvc.exe ()
SRV - (MSCSPTISRV) -- C:\Programmi\File comuni\Sony Shared\AVLib\MSCSPTISRV.exe (Sony Corporation)
SRV - (SPTISRV) -- C:\Programmi\File comuni\Sony Shared\AVLib\SPTISRV.exe (Sony Corporation)
SRV - (PACSPTISVR) -- C:\Programmi\File comuni\Sony Shared\AVLib\PACSPTISVR.exe ()
SRV - (SSScsiSV) -- C:\Programmi\File comuni\Sony Shared\AVLib\SSScsiSV.exe (Sony Corporation)
SRV - (IDriverT) -- C:\Programmi\File comuni\InstallShield\Driver\1150\Intel 32\IDriverT.exe (Macrovision Corporation)
SRV - (STI Simulator) -- C:\WINDOWS\system32\PAStiSvc.exe ()


========== Driver Services (SafeList) ==========

DRV - (WDICA) -- File not found
DRV - (USBAAPL) -- System32\Drivers\usbaapl.sys File not found
DRV - (PDRFRAME) -- File not found
DRV - (PDRELI) -- File not found
DRV - (PDFRAME) -- File not found
DRV - (PDCOMP) -- File not found
DRV - (PCIDump) -- File not found
DRV - (lbrtfdc) -- File not found
DRV - (i2omgmt) -- File not found
DRV - (FXDrv32) -- D:\FXDrv32.sys File not found
DRV - (FoxAwdWINFLASH) -- C:\PROGRA~1\Foxconn\FOXDMI~1\FoxAwdWINFLASH.sys File not found
DRV - (Changer) -- File not found
DRV - (avipbb) -- C:\WINDOWS\system32\drivers\avipbb.sys (Avira Operations GmbH & Co. KG)
DRV - (avgntflt) -- C:\WINDOWS\system32\drivers\avgntflt.sys (Avira Operations GmbH & Co. KG)
DRV - (avkmgr) -- C:\WINDOWS\system32\drivers\avkmgr.sys (Avira Operations GmbH & Co. KG)
DRV - (ssmdrv) -- C:\WINDOWS\system32\drivers\ssmdrv.sys (Avira GmbH)
DRV - (MBAMProtector) -- C:\WINDOWS\system32\drivers\mbam.sys (Malwarebytes Corporation)
DRV - (ssudmdm) -- C:\WINDOWS\system32\drivers\ssudmdm.sys (DEVGURU Co., LTD.(www.devguru.co.kr))
DRV - (dg_ssudbus) -- C:\WINDOWS\system32\drivers\ssudbus.sys (DEVGURU Co., LTD.(www.devguru.co.kr))
DRV - (IntcAzAudAddService) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.)
DRV - (Ambfilt) -- C:\WINDOWS\system32\drivers\Ambfilt.sys (Creative)
DRV - (Monfilt) -- C:\WINDOWS\system32\drivers\Monfilt.sys (Creative Technology Ltd.)
DRV - (L1c) -- C:\WINDOWS\system32\drivers\l1c51x86.sys (Atheros Communications, Inc.)
DRV - (qcusbser) -- C:\WINDOWS\system32\drivers\qcusbser.sys (QUALCOMM Incorporated)
DRV - (RT73) -- C:\WINDOWS\system32\drivers\rt73.sys (Ralink Technology, Corp.)
DRV - (PAC207) -- C:\WINDOWS\system32\drivers\PFC027.sys ()
DRV - (ACSSCR) -- C:\WINDOWS\system32\drivers\a38usbxp.sys (Advanced Card Systems Ltd)
DRV - (pfc) -- C:\WINDOWS\system32\drivers\pfc.sys (Padus, Inc.)
DRV - (Sentinel) -- C:\WINDOWS\system32\drivers\SENTINEL.SYS ()


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.findeer.com
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.findeer.com
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.findeer.com
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.findeer.com
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-21-220523388-1425521274-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
IE - HKU\S-1-5-21-220523388-1425521274-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-220523388-1425521274-725345543-1004\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-220523388-1425521274-725345543-1004\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC
IE - HKU\S-1-5-21-220523388-1425521274-725345543-1004\..\SearchScopes\{7FD8A53D-3A2A-43BD-A9A3-3C0D70AD4466}: "URL" = http://websearch.ask.com/redirect?clien ... src=crm&q={searchTerms}&locale=it_IT&apn_ptnrs=^U3&apn_dtid=^OSJ000^YY^IT&apn_uid=4AD2729E-B2C0-429D-98FE-0BBCE55DE699&apn_sauid=4D0AC248-E88F-438A-BA4E-BF76BE2FD974
IE - HKU\S-1-5-21-220523388-1425521274-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultengine: "Google"
FF - prefs.js..browser.search.useDBForOrder: "false"
FF - prefs.js..extensions.enabledAddons: %7B0b457cAA-602d-484a-8fe7-c1d894a011ba%7D:0.98.47
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:25.0.1
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Programmi\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Programmi\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.17.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.17.2: C:\Programmi\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Programmi\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/wpi,version=1.4: C:\Programmi\Microsoft\Web Platform Installer\\npwpidetector.dll ()
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=12.0.1.647: C:\Programmi\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=12.0.1.647: C:\Programmi\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=12.0.1.647: C:\Documents and Settings\All Users\Dati applicazioni\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.647: C:\Documents and Settings\All Users\Dati applicazioni\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.647: C:\Programmi\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Programmi\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Programmi\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Documents and Settings\All Users\Dati applicazioni\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011/05/09 08.00.24 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 25.0.1\extensions\\Components: C:\Programmi\Mozilla Firefox\components [2013/11/06 09.56.47 | 000,000,000 | ---D | M]

[2011/04/11 18.02.11 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\GIOVANNI\Dati applicazioni\Mozilla\Extensions
[2013/11/29 15.12.40 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\GIOVANNI\Dati applicazioni\Mozilla\Firefox\Profiles\wvuzut3m.default-1351319440000\extensions
[2013/11/27 14.42.13 | 000,000,000 | ---D | M] (FireShot) -- C:\Documents and Settings\GIOVANNI\Dati applicazioni\Mozilla\Firefox\Profiles\wvuzut3m.default-1351319440000\extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba}
[2013/11/06 09.56.47 | 000,000,000 | ---D | M] (No name found) -- C:\Programmi\Mozilla Firefox\extensions
[2013/11/06 09.56.48 | 000,000,000 | ---D | M] (Click to call with Skype) -- C:\Programmi\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013/11/19 19.56.38 | 000,000,000 | ---D | M] (No name found) -- C:\Programmi\Mozilla Firefox\browser\extensions
[2013/11/19 19.56.38 | 000,000,000 | ---D | M] (Default) -- C:\Programmi\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

========== Chrome ==========

CHR - Extension: No name found = C:\Documents and Settings\GIOVANNI\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: No name found = C:\Documents and Settings\GIOVANNI\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: No name found = C:\Documents and Settings\GIOVANNI\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: No name found = C:\Documents and Settings\GIOVANNI\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: No name found = C:\Documents and Settings\GIOVANNI\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.4_1\
CHR - Extension: No name found = C:\Documents and Settings\GIOVANNI\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.6.0.8153_1\
CHR - Extension: No name found = C:\Documents and Settings\GIOVANNI\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0\
CHR - Extension: No name found = C:\Documents and Settings\GIOVANNI\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2004/08/19 13.00.00 | 000,000,768 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Dati applicazioni\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Programmi\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programmi\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Guida per l'accesso a Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programmi\File comuni\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programmi\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4 - HKLM..\Run: [avgnt] C:\Programmi\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [PosService] C:\Documents and Settings\All Users\Documenti\AppData\PoApp\PLauncher.exe File not found
O4 - HKLM..\Run: [ScanSoft OmniPage SE 4-reminder] C:\Programmi\ScanSoft\OmniPageSE4\Ereg\Ereg.exe (Nuance Communications, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\Wireless Utility.lnk = C:\Programmi\EDIMAX\Common\RaUI.exe (Edimax Technology Co., Ltd)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-220523388-1425521274-725345543-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 221
O7 - HKU\S-1-5-21-220523388-1425521274-725345543-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 File not found
O9 - Extra Button: Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Programmi\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Programmi\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Programmi\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_32)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_32)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shoc ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254 62.101.93.101 83.103.25.250
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5224BD8E-CED1-4250-9CAE-43EF5FBD6541}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5224BD8E-CED1-4250-9CAE-43EF5FBD6541}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5E7D3BF5-6422-4DBE-AF54-ACB1B5176CE4}: DhcpNameServer = 192.168.1.254 62.101.93.101 83.103.25.250
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7D5B4295-DEDC-4D6E-9361-736C52D511E2}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A277764D-347B-440C-B080-EB0FC14AC6AD}: NameServer = 8.8.8.8,8.8.4.4
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WINDOW~4\MESSEN~1\MSGRAP~1.DLL File not found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WINDOW~4\MESSEN~1\MSGRAP~1.DLL File not found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Programmi\File comuni\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Programmi\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Pagina iniziale corrente) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\GIOVANNI\Impostazioni locali\Dati applicazioni\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\GIOVANNI\Impostazioni locali\Dati applicazioni\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011/04/11 13.15.31 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 60 Days ==========

[2013/12/03 09.36.46 | 000,000,000 | R--D | C] -- C:\Documents and Settings\GIOVANNI\Desktop\software pc
[2013/12/03 09.30.07 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2013/11/28 18.52.00 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Documents and Settings\GIOVANNI\Desktop\HijackThis.exe
[2013/11/25 09.12.27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Avvio\Programmi\Malwarebytes' Anti-Malware
[2013/11/25 09.12.26 | 000,022,856 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2013/11/25 09.12.26 | 000,000,000 | ---D | C] -- C:\Programmi\Malwarebytes' Anti-Malware
[2013/11/22 10.35.20 | 000,000,000 | R--D | C] -- C:\Documents and Settings\GIOVANNI\Documenti\Dropbox
[2013/11/22 10.34.07 | 000,000,000 | ---D | C] -- C:\Programmi\Dropbox
[2013/11/22 10.33.54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\GIOVANNI\Menu Avvio\Programmi\Dropbox
[2013/11/22 10.32.54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\GIOVANNI\Dati applicazioni\Dropbox
[2013/11/19 19.56.39 | 000,000,000 | ---D | C] -- C:\Programmi\Mozilla Maintenance Service
[2013/11/19 18.03.27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\GIOVANNI\Documenti\Ashampoo Burning Studio 12
[2013/11/19 18.03.04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\GIOVANNI\Dati applicazioni\Ashampoo
[2013/11/19 18.02.49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\GIOVANNI\Impostazioni locali\Dati applicazioni\ashampoo
[2013/11/19 18.02.47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\GIOVANNI\Menu Avvio\Programmi\Ashampoo
[2013/11/19 18.02.46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Avvio\Programmi\Ashampoo
[2013/11/19 18.01.44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dati applicazioni\Ashampoo
[2013/11/19 18.01.43 | 000,000,000 | ---D | C] -- C:\Programmi\Ashampoo
[2013/11/12 11.59.46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dati applicazioni\clp
[2013/11/12 11.59.42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Dati applicazioni\Fighters
[2013/11/12 11.59.33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\GIOVANNI\Dati applicazioni\Fighters
[2013/11/12 11.59.02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dati applicazioni\Common Toolkit Suite
[2013/11/12 11.58.25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dati applicazioni\Fighters
[2013/11/06 09.56.47 | 000,000,000 | ---D | C] -- C:\Programmi\Mozilla Firefox
[2013/11/05 17.34.37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\GIOVANNI\Desktop\giudici basilicata
[2013/10/29 17.15.29 | 000,000,000 | ---D | C] -- C:\pz
[2013/10/09 08.40.56 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidparse.sys
[2013/10/09 08.39.06 | 000,123,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbvideo.sys
[2013/10/09 08.39.06 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbaudio.sys
[2013/10/09 08.38.03 | 000,144,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbport.sys
[2013/10/09 08.38.03 | 000,032,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbccgp.sys
[2013/10/09 08.38.03 | 000,030,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbehci.sys
[2013/10/09 08.38.03 | 000,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbd.sys

========== Files - Modified Within 60 Days ==========

[2013/12/03 09.38.25 | 000,545,946 | ---- | M] () -- C:\WINDOWS\System32\perfh010.dat
[2013/12/03 09.38.25 | 000,496,642 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2013/12/03 09.38.25 | 000,100,470 | ---- | M] () -- C:\WINDOWS\System32\perfc010.dat
[2013/12/03 09.38.25 | 000,085,126 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2013/12/03 09.36.28 | 000,001,134 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2013/12/03 09.34.46 | 000,000,276 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-220523388-1425521274-725345543-1004.job
[2013/12/03 09.34.45 | 000,001,130 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2013/12/03 09.34.27 | 000,000,338 | ---- | M] () -- C:\WINDOWS\tasks\Windows Codec Update Service.job
[2013/12/03 09.34.26 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013/12/03 09.02.15 | 000,000,978 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2013/12/03 08.41.32 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2013/12/02 15.40.23 | 000,001,425 | ---- | M] () -- C:\WINDOWS\Pregeo.INI
[2013/11/30 16.30.06 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-220523388-1425521274-725345543-1004.job
[2013/11/28 18.52.02 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Documents and Settings\GIOVANNI\Desktop\HijackThis.exe
[2013/11/28 17.57.53 | 000,097,550 | ---- | M] () -- C:\Documents and Settings\GIOVANNI\Desktop\minivlley.jpg
[2013/11/27 14.30.57 | 000,137,208 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\WINDOWS\System32\drivers\avipbb.sys
[2013/11/27 14.30.57 | 000,090,400 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\WINDOWS\System32\drivers\avgntflt.sys
[2013/11/27 14.30.57 | 000,037,352 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\WINDOWS\System32\drivers\avkmgr.sys
[2013/11/27 11.19.20 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2013/11/26 16.58.18 | 000,002,241 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk
[2013/11/25 09.35.16 | 000,001,775 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk
[2013/11/25 09.12.27 | 000,000,756 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
[2013/11/20 10.19.21 | 000,014,551 | ---- | M] () -- C:\Documents and Settings\GIOVANNI\Desktop\logopetruzzi.gif
[2013/11/19 18.02.48 | 000,000,924 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Ashampoo Burning Studio 12.lnk
[2013/11/13 20.39.54 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2013/11/04 15.59.34 | 000,000,555 | ---- | M] () -- C:\Documents and Settings\GIOVANNI\Desktop\docfa 4.2.lnk
[2013/10/29 17.31.11 | 000,524,065 | ---- | M] () -- C:\ark_comurb.zip
[2013/10/29 17.14.48 | 000,238,610 | ---- | M] () -- C:\ark_pz(1).zip
[2013/10/24 11.49.57 | 000,109,255 | ---- | M] () -- C:\Documents and Settings\GIOVANNI\Desktop\1385724_10200707935925147_618329993_n.jpg
[2013/10/13 12.28.02 | 000,174,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ie4uinit.exe
[2013/10/13 12.28.02 | 000,174,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ie4uinit.exe
[2013/10/13 08.22.29 | 000,920,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wininet.dll
[2013/10/13 08.22.27 | 000,759,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vgx.dll
[2013/10/13 08.22.26 | 001,215,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\urlmon.dll
[2013/10/13 08.22.25 | 000,206,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\occache.dll
[2013/10/13 08.22.25 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\url.dll
[2013/10/13 08.22.25 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\url.dll
[2013/10/13 08.22.24 | 000,611,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mstime.dll
[2013/10/13 08.22.24 | 000,611,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstime.dll
[2013/10/13 08.22.23 | 006,021,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.dll
[2013/10/13 08.22.23 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtmled.dll
[2013/10/13 08.22.16 | 000,630,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msfeeds.dll
[2013/10/13 08.22.16 | 000,630,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll
[2013/10/13 08.22.16 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msfeedsbs.dll
[2013/10/13 08.22.16 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2013/10/13 08.22.15 | 000,522,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsdbgui.dll
[2013/10/13 08.22.15 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\licmgr10.dll
[2013/10/13 08.22.15 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\licmgr10.dll
[2013/10/13 08.22.15 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\jsproxy.dll
[2013/10/13 08.22.15 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsproxy.dll
[2013/10/13 08.22.14 | 002,006,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll
[2013/10/13 08.22.14 | 001,469,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcpl.cpl
[2013/10/13 08.22.14 | 001,469,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcpl.cpl
[2013/10/13 08.22.12 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iepeers.dll
[2013/10/13 08.22.12 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iepeers.dll
[2013/10/13 08.21.48 | 011,113,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2013/10/13 08.21.43 | 000,743,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll
[2013/10/13 08.21.42 | 000,387,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iedkcs32.dll
[2013/10/13 08.21.42 | 000,387,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedkcs32.dll
[2013/10/13 08.21.42 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\corpol.dll
[2013/10/13 08.21.42 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\corpol.dll
[2013/10/13 07.57.59 | 000,385,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\html.iec
[2013/10/12 16.56.08 | 000,279,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oakley.dll
[2013/10/10 07.53.24 | 000,360,936 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2013/10/09 15.07.29 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2013/10/09 15.07.29 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2013/10/09 14.12.41 | 000,287,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gdi32.dll
[2013/10/07 11.59.15 | 000,607,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\crypt32.dll

========== Files Created - No Company Name ==========

[2013/11/28 17.57.53 | 000,097,550 | ---- | C] () -- C:\Documents and Settings\GIOVANNI\Desktop\minivlley.jpg
[2013/11/25 09.12.27 | 000,000,756 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
[2013/11/20 10.19.21 | 000,014,551 | ---- | C] () -- C:\Documents and Settings\GIOVANNI\Desktop\logopetruzzi.gif
[2013/11/19 19.56.40 | 000,000,702 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Avvio\Programmi\Mozilla Firefox.lnk
[2013/11/19 18.02.48 | 000,000,924 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Ashampoo Burning Studio 12.lnk
[2013/11/04 15.59.34 | 000,000,555 | ---- | C] () -- C:\Documents and Settings\GIOVANNI\Desktop\docfa 4.2.lnk
[2013/10/29 17.32.01 | 001,606,656 | ---- | C] () -- C:\Comuni.idx
[2013/10/29 17.32.01 | 000,797,744 | ---- | C] () -- C:\Comuni.dat
[2013/10/29 17.31.04 | 000,524,065 | ---- | C] () -- C:\ark_comurb.zip
[2013/10/29 17.14.46 | 000,238,610 | ---- | C] () -- C:\ark_pz(1).zip
[2013/10/24 11.49.56 | 000,109,255 | ---- | C] () -- C:\Documents and Settings\GIOVANNI\Desktop\1385724_10200707935925147_618329993_n.jpg
[2013/05/06 17.45.15 | 000,000,780 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2013/02/08 15.31.32 | 000,073,836 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2013/01/21 12.00.57 | 000,032,229 | ---- | C] () -- C:\WINDOWS\maxlink.ini
[2013/01/21 11.48.03 | 000,000,872 | R--- | C] () -- C:\WINDOWS\System32\okisclna.ini
[2012/11/16 03.20.28 | 001,497,090 | ---- | C] () -- C:\Documents and Settings\LocalService\Impostazioni locali\Dati applicazioni\WPFFontCache_v0400-S-1-5-21-220523388-1425521274-725345543-1004-0.dat
[2012/10/29 12.09.28 | 000,974,848 | ---- | C] () -- C:\WINDOWS\System32\cis-2.4.dll
[2012/10/29 12.09.28 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\issacapi_bs-2.3.dll
[2012/10/29 12.09.28 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\issacapi_pe-2.3.dll
[2012/10/29 12.09.28 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\issacapi_se-2.3.dll
[2012/10/29 12.09.28 | 000,030,568 | ---- | C] () -- C:\WINDOWS\MusiccityDownload.exe
[2012/09/12 06.36.47 | 000,715,038 | ---- | C] () -- C:\Documents and Settings\GIOVANNI\Impostazioni locali\Dati applicazioni\unins000.exe
[2012/09/12 06.36.47 | 000,004,846 | ---- | C] () -- C:\Documents and Settings\GIOVANNI\Impostazioni locali\Dati applicazioni\unins000.dat
[2012/09/11 11.45.32 | 000,348,946 | ---- | C] () -- C:\Documents and Settings\LocalService\Impostazioni locali\Dati applicazioni\WPFFontCache_v0400-System.dat
[2012/04/21 17.05.48 | 000,000,040 | ---- | C] () -- C:\WINDOWS\iris.ini
[2012/04/12 15.31.43 | 000,173,688 | ---- | C] () -- C:\WINDOWS\tscc.exe
[2012/04/07 10.09.39 | 000,472,576 | ---- | C] () -- C:\WINDOWS\bdeini.dll
[2012/03/22 16.39.57 | 000,000,048 | ---- | C] () -- C:\WINDOWS\Tariffe.ini
[2012/03/22 16.36.45 | 000,054,272 | ---- | C] () -- C:\WINDOWS\System32\Rundlg32.exe
[2012/02/15 09.39.05 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2011/08/30 18.02.21 | 000,000,330 | ---- | C] () -- C:\Documents and Settings\GIOVANNI\dikeutil.ini
[2011/08/30 17.58.26 | 000,002,060 | ---- | C] () -- C:\Documents and Settings\GIOVANNI\dikeTmpinternet
[2011/08/30 17.58.25 | 000,000,165 | ---- | C] () -- C:\Documents and Settings\GIOVANNI\dike.ini
[2011/05/05 16.37.02 | 000,013,824 | ---- | C] () -- C:\Documents and Settings\GIOVANNI\Impostazioni locali\Dati applicazioni\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/04/11 18.19.46 | 000,040,960 | ---- | C] () -- C:\Programmi\Uninstall_CDS.exe
[2011/04/11 16.16.30 | 007,340,032 | -H-- | C] () -- C:\Documents and Settings\GIOVANNI\NTUSER.bak

========== ZeroAccess Check ==========

[2011/12/15 12.16.57 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2011/12/19 09.54.02 | 001,510,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009/02/09 11.51.43 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008/04/14 03.13.56 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2013/09/09 16.49.17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\188F1432-103A-4ffb-80F1-36B633C5C9E1
[2011/12/15 16.26.52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Acer
[2013/11/19 18.02.49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Ashampoo
[2012/09/17 14.47.34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\AVAST Software
[2012/01/24 12.09.22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Boss Media
[2011/11/14 18.05.07 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\CanonBJ
[2012/04/21 14.49.48 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\CanonIJMyPrinter
[2013/09/09 08.14.25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\CanonIJPLM
[2013/11/12 12.29.48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\clp
[2013/05/28 11.23.06 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Common Files
[2013/11/12 11.59.02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Common Toolkit Suite
[2013/11/19 08.54.14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Fighters
[2013/05/17 20.54.24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\IMSIDesign
[2013/06/08 19.23.44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\MFAData
[2013/01/21 11.48.10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Okidata
[2012/04/21 17.07.12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Panasonic
[2012/11/15 15.26.59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Samsung
[2013/01/21 12.05.34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\ScanSoft
[2013/11/28 18.23.18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\TEMP
[2013/02/11 09.23.42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Zeon
[2011/12/15 16.27.37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GIOVANNI\Dati applicazioni\Acer
[2011/12/15 12.47.55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GIOVANNI\Dati applicazioni\ACER_EUU_Download_Tools
[2013/04/11 15.38.35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GIOVANNI\Dati applicazioni\Analist Group
[2013/11/19 18.03.04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GIOVANNI\Dati applicazioni\Ashampoo
[2012/04/21 14.50.05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GIOVANNI\Dati applicazioni\Canon
[2012/12/20 16.36.03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GIOVANNI\Dati applicazioni\com.zoosk.Desktop.096E6A67431258A508A2446A847B240591D2C99B.1
[2013/11/27 08.11.25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GIOVANNI\Dati applicazioni\Dropbox
[2012/09/13 15.26.50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GIOVANNI\Dati applicazioni\EmoticoonsToolbar
[2012/03/24 17.17.05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GIOVANNI\Dati applicazioni\EssentialPIM
[2013/11/12 11.59.49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GIOVANNI\Dati applicazioni\Fighters
[2013/06/04 15.45.23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GIOVANNI\Dati applicazioni\FireShot
[2011/11/02 16.44.32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GIOVANNI\Dati applicazioni\GrabPro
[2012/09/13 15.26.49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GIOVANNI\Dati applicazioni\IEToolbar
[2013/05/17 20.54.24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GIOVANNI\Dati applicazioni\IMSIDesign
[2013/05/02 09.34.32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GIOVANNI\Dati applicazioni\OkiData
[2011/06/23 20.48.21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GIOVANNI\Dati applicazioni\OpenOffice.org
[2011/11/02 16.58.57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GIOVANNI\Dati applicazioni\Orbit
[2012/06/04 17.54.20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GIOVANNI\Dati applicazioni\Panasonic
[2011/11/02 16.44.45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GIOVANNI\Dati applicazioni\ProgSense
[2012/12/29 09.17.33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GIOVANNI\Dati applicazioni\Samsung
[2013/01/22 12.31.50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GIOVANNI\Dati applicazioni\ScanSoft
[2013/05/28 11.35.28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GIOVANNI\Dati applicazioni\TuneUp Software
[2013/05/20 18.36.54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GIOVANNI\Dati applicazioni\Wise Registry Cleaner
[2012/12/03 17.27.04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GIOVANNI\Dati applicazioni\Xmarc
[2013/02/11 09.23.42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GIOVANNI\Dati applicazioni\Zeon
[2013/11/12 11.59.43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dati applicazioni\Fighters

========== Purity Check ==========



========== Files - Unicode (All) ==========
[2013/10/09 19.15.27 | 100,163,860 | ---- | M] ()(C:\WINDOWS\System32\???6) -- C:\WINDOWS\System32\멥೸嚬6
[2013/10/09 13.15.26 | 100,163,860 | ---- | C] ()(C:\WINDOWS\System32\???6) -- C:\WINDOWS\System32\멥೸嚬6

========== Alternate Data Streams ==========

@Alternate Data Stream - 223 bytes -> C:\Documents and Settings\All Users\Dati applicazioni\TEMP:C68DE4A3
@Alternate Data Stream - 183 bytes -> C:\Documents and Settings\All Users\Dati applicazioni\TEMP:48C1F0D9

< End of report >

[shel]

adwcleaner non lo hai eseguito? prima adwcleaner poi otl