I'VE SOME ANNOYING POP-US, ALERTS & CO.

hi, i'm infected by an annoying malware.. can you help me?

This is my HJT output:

Logfile of HijackThis v1.99.1
Scan saved at 9.23.51, on 10/09/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\cbpopw.exe
C:\Documents and Settings\franco\Dati applicazioni\sgrunt\IE4321.exe
C:\WINDOWS\system32\sysmon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
C:\Programmi\RVS\WCOM\SYSTEM\RVSINST.EXE
C:\WINDOWS\explorer.exe
C:\Programmi\Internet Explorer\iexplore.exe
C:\Documents and Settings\franco\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.ssesso.it
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ssesso.it
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmi\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O4 - HKLM\..\Run: [CallBumping] cbpopw.exe
O4 - HKLM\..\Run: [winshost.exe] C:\WINDOWS\system32\winshost.exe
O4 - HKLM\..\Run: [Olympic] C:\Documents and Settings\franco\Dati applicazioni\sgrunt\IE4321.exe
O4 - HKLM\..\Run: [Systems] C:\WINDOWS\system32\sysmon.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [winshost.exe] C:\WINDOWS\system32\winshost.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Programmi\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Avvio veloce di Adobe Reader.lnk = C:\Programmi\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O12 - Plugin for .pdf: C:\Programmi\Internet Explorer\PLUGINS\nppdf32.dll
O15 - Trusted Zone: www.archiviosex.net
O15 - Trusted Zone: www.linkautomatici.com
O15 - Trusted Zone: www.redfunny.com
O15 - Trusted Zone: www.sgrunt.biz
O15 - Trusted Zone: www.skymasters.biz
O16 - DPF: {1F831FA9-42FC-11D4-95A6-0080AD30DCE1} (InstaFred) - file://C:\Programmi\AutoCAD 2002\InstFred.ocx
O16 - DPF: {78AF2F24-A9C3-11D3-BF8C-0060B0FCC122} (Controllo AcDc oggi) - file://C:\Programmi\AutoCAD 2002\AcDcToday.ocx
O16 - DPF: {AE563729-B4F5-11D4-A415-00108302FDFD} (NOXLATE-BANR) - file://C:\Programmi\AutoCAD 2002\InstBanr.ocx
O16 - DPF: {F281A59C-7B65-11D3-8617-0010830243BD} (Controllo AcPreview) - file://C:\Programmi\AutoCAD 2002\AcPreview.ocx
O16 - DPF: {FFFF0003-0001-101A-A3C9-08002B2F49FB} - http://www.sgrunt.biz/closer/close.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{0215F9DC-1A45-47CC-9A03-9B252266C697}: NameServer = 151.99.125.2,151.99.125.3
O17 - HKLM\System\CS1\Services\Tcpip\..\{0215F9DC-1A45-47CC-9A03-9B252266C697}: NameServer = 151.99.125.2,151.99.125.3
O17 - HKLM\System\CS2\Services\Tcpip\..\{0215F9DC-1A45-47CC-9A03-9B252266C697}: NameServer = 151.99.125.2,151.99.125.3
O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
O23 - Service: RvscomSv - Living Byte Software GmbH, München - C:\Programmi\RVS\WCOM\SYSTEM\RVSCOMSV.EXE
O23 - Service: RVS Installer (RVSINST) - Living Byte Software GmbH, München - C:\Programmi\RVS\WCOM\SYSTEM\RVSINST.EXE

 

This is the last S&D report: (1° page)


--- Search result list ---


--- System information ---
Windows XP (Build: 2600) Service Pack 2


--- Startup entries list ---
Located: HK_LM:Run, CallBumping
command: cbpopw.exe
file: C:\WINDOWS\system32\cbpopw.exe
size: 45056
MD5: ed0b6ea0412099720512d6aa241aa160

Located: HK_LM:Run, winshost.exe
command: C:\WINDOWS\system32\winshost.exe
file: C:\WINDOWS\system32\winshost.exe
size: 36352
MD5: a5728a9481362113f865654fad778a22

Located: HK_CU:Run, SpybotSD TeaTimer
command: C:\Programmi\Spybot - Search & Destroy\TeaTimer.exe
file: C:\Programmi\Spybot - Search & Destroy\TeaTimer.exe
size: 1415824
MD5: 70496eee0ddbe485f658693826f44d38

Located: HK_CU:Run, winshost.exe
command: C:\WINDOWS\system32\winshost.exe
file: C:\WINDOWS\system32\winshost.exe
size: 36352
MD5: a5728a9481362113f865654fad778a22

Located: Esecuzione automatica (comune), Avvio veloce di Adobe Reader.lnk
command: C:\Programmi\Adobe\Acrobat 7.0\Reader\reader_sl.exe
file: C:\Programmi\Adobe\Acrobat 7.0\Reader\reader_sl.exe
size: 29696
MD5: deb88aef013dd1eefb462d7cad642166

Located: Esecuzione automatica (comune), Microsoft Office.lnk
command: C:\Programmi\Microsoft Office\Office\OSA9.EXE
file: C:\Programmi\Microsoft Office\Office\OSA9.EXE
size: 65588
MD5: 4a5b87a46c5f51c54a0681c028cc42d1

Located: WinLogon, crypt32chain
command: crypt32.dll
file: crypt32.dll

Located: WinLogon, cryptnet
command: cryptnet.dll
file: cryptnet.dll

Located: WinLogon, cscdll
command: cscdll.dll
file: cscdll.dll

Located: WinLogon, ScCertProp
command: wlnotify.dll
file: wlnotify.dll

Located: WinLogon, Schedule
command: wlnotify.dll
file: wlnotify.dll

Located: WinLogon, sclgntfy
command: sclgntfy.dll
file: sclgntfy.dll

Located: WinLogon, SensLogn
command: WlNotify.dll
file: WlNotify.dll

Located: WinLogon, termsrv
command: wlnotify.dll
file: wlnotify.dll

Located: WinLogon, wlballoon
command: wlnotify.dll
file: wlnotify.dll



--- Browser helper object list ---
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (AcroIEHlprObj Class)
BHO name:
CLSID name: AcroIEHlprObj Class
description: Adobe Acrobat reader
classification: Legitimate
known filename: AcroIEhelper.ocx<br>AcroIEhelper.dll
info link: http://www.adobe.com/products/acrobat/readstep2.html
info source: TonyKlein
Path: C:\Programmi\Adobe\Acrobat 7.0\ActiveX\
Long name: AcroIEHelper.dll
Short name: ACROIE~1.DLL
Date (created): 14/12/2004 1.56.50
Date (last access): 10/09/2005
Date (last write): 14/12/2004 1.56.50
Filesize: 63136
Attributes: archive
MD5: 42729C3DE75A7A51FC6F9EF6546C9199
CRC32: 4D60BD07
Version: 7.0.0.1333



--- ActiveX list ---
{1F831FA9-42FC-11D4-95A6-0080AD30DCE1} (InstaFred)
DPF name:
CLSID name: InstaFred
Installer:
Codebase: file://C:\Programmi\AutoCAD 2002\InstFred.ocx
Path: C:\WINDOWS\DOWNLO~1\
Long name: InstFred.ocx
Short name: INSTFRED.OCX
Date (created): 04/05/2001 13.58.28
Date (last access): 10/09/2005
Date (last write): 04/05/2001 13.58.28
Filesize: 288312
Attributes: archive
MD5: 18390E7C9F7DDC4AEDDB89B531F0B6D1
CRC32: 371F5938
Version: 1.0.3.12

{78AF2F24-A9C3-11D3-BF8C-0060B0FCC122} (Controllo AcDc oggi)
DPF name:
CLSID name: Controllo AcDc oggi
Installer:
Codebase: file://C:\Programmi\AutoCAD 2002\AcDcToday.ocx
description:
classification: Open for discussion
known filename: ACDCTO~1.OCX
info link:
info source: Safer Networking Ltd.
Path: C:\WINDOWS\DOWNLO~1\
Long name: AcDcToday.ocx
Short name: ACDCTO~1.OCX
Date (created): 04/05/2001 13.58.26
Date (last access): 10/09/2005
Date (last write): 04/05/2001 13.58.26
Filesize: 54896
Attributes: archive
MD5: 6FBB507C28492CDFB0AD1567D1A99392
CRC32: 620EF51D
Version: 15.0.6.30

{AE563729-B4F5-11D4-A415-00108302FDFD} (NOXLATE-BANR)
DPF name:
CLSID name: NOXLATE-BANR
Installer:
Codebase: file://C:\Programmi\AutoCAD 2002\InstBanr.ocx
Path: C:\WINDOWS\DOWNLO~1\
Long name: InstBanr.ocx
Short name: INSTBANR.OCX
Date (created): 04/05/2001 13.58.24
Date (last access): 10/09/2005
Date (last write): 04/05/2001 13.58.24
Filesize: 108088
Attributes: archive
MD5: 99885E2BC69EA98AA9D9B896C922E907
CRC32: EC2BF6BC
Version: 1.0.0.15

{F281A59C-7B65-11D3-8617-0010830243BD} (Controllo AcPreview)
DPF name:
CLSID name: Controllo AcPreview
Installer:
Codebase: file://C:\Programmi\AutoCAD 2002\AcPreview.ocx
description:
classification: Open for discussion
known filename: ACPREV~1.OCX
info link:
info source: Safer Networking Ltd.
Path: C:\WINDOWS\DOWNLO~1\
Long name: AcPreview.ocx
Short name: ACPREV~1.OCX
Date (created): 04/05/2001 13.58.18
Date (last access): 10/09/2005
Date (last write): 04/05/2001 13.58.18
Filesize: 120440
Attributes: archive
MD5: C2D872B922C5488C54B89E8A95919460
CRC32: 12F1ECA1
Version: 15.0.6.30



--- Process list ---
PID: 0 ( 0) [System]
PID: 440 ( 4) \SystemRoot\System32\smss.exe
PID: 496 ( 440) \??\C:\WINDOWS\system32\csrss.exe
PID: 520 ( 440) \??\C:\WINDOWS\system32\winlogon.exe
PID: 564 ( 520) C:\WINDOWS\system32\services.exe
size: 108544
MD5: E77F6FA2A15390F1727F4C1C55B69DA6
PID: 576 ( 520) C:\WINDOWS\system32\lsass.exe
size: 13312
MD5: 0815E8DA286775FA432C7C9EE5E10BA1
PID: 728 ( 564) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 73955B04F209D8A1C633867841267A96
PID: 772 ( 564) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 73955B04F209D8A1C633867841267A96
PID: 832 ( 564) C:\WINDOWS\System32\svchost.exe
size: 14336
MD5: 73955B04F209D8A1C633867841267A96
PID: 880 ( 564) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 73955B04F209D8A1C633867841267A96
PID: 960 ( 564) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 73955B04F209D8A1C633867841267A96
PID: 1280 ( 564) C:\WINDOWS\system32\spoolsv.exe
size: 57856
MD5: 216F8454A9415DD3E451B169DC3121C4
PID: 1408 (1220) C:\WINDOWS\system32\cbpopw.exe
size: 45056
MD5: ED0B6EA0412099720512D6AA241AA160
PID: 1432 (1220) C:\WINDOWS\system32\sysmon.exe
size: 7200
MD5: 56A6D0F33C866F49CBA6A040AB34874A
PID: 1440 (1220) C:\WINDOWS\system32\ctfmon.exe
size: 15360
MD5: 5B33B4265966EE063C7FBEA28958D9C2
PID: 1600 ( 564) C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
size: 32256
MD5: 8EEF3110372D329549C8FB53209FE92C
PID: 1696 ( 564) C:\Programmi\RVS\WCOM\SYSTEM\RVSINST.EXE
size: 430127
MD5: F7A0775330FE84D2F85DC18CA9CB3D79
PID: 272 ( 564) C:\WINDOWS\System32\alg.exe
size: 44544
MD5: D4A42BF3C11302AA3CCD857034EF1E54
PID: 1116 ( 520) C:\WINDOWS\explorer.exe
size: 1034752
MD5: 178D42BD8FC34A9837417A6CE1D6BB7B
PID: 460 ( 728) C:\Programmi\Internet Explorer\iexplore.exe
size: 93184
MD5: C49ED6E4358FFAECFE70FC8F3C67D224
PID: 1464 (1456) C:\Programmi\Spybot - Search & Destroy\TeaTimer.exe
size: 1415824
MD5: 70496EEE0DDBE485F658693826F44D38
PID: 456 (1116) C:\Programmi\Spybot - Search & Destroy\SpybotSD.exe
size: 4393096
MD5: 09CA174A605B480318731E691DC98539
PID: 4 ( 0) System


--- Browser start & search pages list ---
Spybot - Search & Destroy browser pages report, 10/09/2005 9.53.43

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Local Page
C:\WINDOWS\system32\blank.htm
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page
http://www.google.it/
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Default_Page_URL
http://www.google.it
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Local Page
%SystemRoot%\system32\blank.htm
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Search Page
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page
http://www.ssesso.it
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL
http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\SearchAssistant
http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\CustomizeSearch
http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm


--- Winsock Layered Service Provider list ---
Protocol 0: MSAFD Tcpip [TCP/IP]
GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP IP protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD Tcpip [*]

Protocol 1: MSAFD Tcpip [UDP/IP]
GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP IP protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD Tcpip [*]

Protocol 2: MSAFD Tcpip [RAW/IP]
GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP IP protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD Tcpip [*]

Protocol 3: RSVP UDP Service Provider
GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
Filename: %SystemRoot%\system32\rsvpsp.dll
Description: Microsoft Windows NT/2k/XP RVSP
DB filename: %SystemRoot%\system32\rsvpsp.dll
DB protocol: RSVP * Service Provider

Protocol 4: RSVP TCP Service Provider
GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
Filename: %SystemRoot%\system32\rsvpsp.dll
Description: Microsoft Windows NT/2k/XP RVSP
DB filename: %SystemRoot%\system32\rsvpsp.dll
DB protocol: RSVP * Service Provider

Protocol 5: MSAFD NetBIOS [\Device\NetBT_Tcpip_{0215F9DC-1A45-47CC-9A03-9B252266C697}] SEQPACKET 0
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *

Protocol 6: MSAFD NetBIOS [\Device\NetBT_Tcpip_{0215F9DC-1A45-47CC-9A03-9B252266C697}] DATAGRAM 0
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *

Protocol 7: MSAFD NetBIOS [\Device\NetBT_Tcpip_{A5A8740A-203A-486A-B6E2-A6180BBC4328}] SEQPACKET 1
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *

Protocol 8: MSAFD NetBIOS [\Device\NetBT_Tcpip_{A5A8740A-203A-486A-B6E2-A6180BBC4328}] DATAGRAM 1
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *

Protocol 9: MSAFD NetBIOS [\Device\NetBT_Tcpip_{85AAC72D-67DB-4A3E-BF93-6FDDA9925647}] SEQPACKET 2
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *

Protocol 10: MSAFD NetBIOS [\Device\NetBT_Tcpip_{85AAC72D-67DB-4A3E-BF93-6FDDA9925647}] DATAGRAM 2
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *

Namespace Provider 0: Tcpip
GUID: {22059D40-7E9E-11CF-AE5A-00AA00A7112B}
Filename: %SystemRoot%\System32\mswsock.dll
Description: Microsoft Windows NT/2k/XP TCP/IP name space provider
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: TCP/IP

Namespace Provider 1: NTDS
GUID: {3B2637EE-E580-11CF-A555-00C04FD8D4AC}
Filename: %SystemRoot%\System32\winrnr.dll
Description: Microsoft Windows NT/2k/XP name space provider
DB filename: %SystemRoot%\system32\winrnr.dll
DB protocol: NTDS

Namespace Provider 2: Spazio dei nomi NLA (Network Location Awareness)
GUID: {6642243A-3BA8-4AA6-BAA5-2E0BD71FDD83}
Filename: %SystemRoot%\System32\mswsock.dll
Description: Microsoft Windows NT/2k/XP name space provider
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: NLA-Namespace



--- Uninstall list ---
(AddressBook)

Adobe Download Manager 2.0 (solo rimozione) 2.0 (AdobeESD)
uninstall cmd: "C:\Programmi\File comuni\Adobe\ESD\uninst.exe "

AnswerWorks Runtime (AnswerWorks 3.0)
uninstall cmd: C:\WINDOWS\IsUninst.exe -fC:\Programmi\WexTech\AnswerWorks\Uninst.isu

(Branding)

(Connection Manager)

(DirectAnimation)

(DirectDrawEx)

(DXM_Runtime)

(Fontcore)

ISDN Drivers (Gisdn)
uninstall cmd: rundll32.exe gisdn32.dll,EntryPoint -r

HijackThis 1.99.1 1.99.1 (HijackThis)
uninstall cmd: C:\Documents and Settings\franco\Desktop\HijackThis.exe /uninstall
publisher: Soeperman Enterprises Ltd.

(ICW)

(IE40)

(IE4Data)

(IE5BAKEX)

(IEData)

L&H TTS3000 Italiano (LHTTSITI)
uninstall cmd: RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\LHTTSITI.inf, Uninstall

C-Dilla Licence Management System (LMS)
uninstall cmd: C:\C_DILLA\setup\cdunin16.exe

(MobileOptionPack)

(MPlayer2)

(NetMeeting)

(OutlookExpress)

(PCHealth)
uninstall cmd: rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf

(SchedulingAgent)

(ShockwaveFlash)

Spybot - Search & Destroy 1.4 1.4 (Spybot - Search & Destroy_is1)
install location: C:\Programmi\Spybot - Search & Destroy\
uninstall cmd: "C:\Programmi\Spybot - Search & Destroy\unins000.exe "
publisher: Safer Networking Limited

Volo View Express (Volo View Express)
uninstall cmd: C:\WINDOWS\unin0410.exe -f "C:\Programmi\Volo View Express\DeIsL1.isu "

Microsoft Office 2000 Premium 9.00.2720 ({00000410-78E1-11D2-B60F-006097C998E7})
version: 150997664
version (major): 9
estimated size: 321276
install date: 20050709
install source: E:\
uninstall cmd: MsiExec.exe /I{00000410-78E1-11D2-B60F-006097C998E7}
publisher: Microsoft Corporation
help link: http://www.microsoft.com/italy/support
readme: C:\Programmi\Microsoft Office\Office\ofread9.txt

WebFldrs XP 9.50.7523 ({350C9410-3D7C-4EE8-BAA9-00BCB3D54227})
version: 154279267
version (major): 9
version (minor): 50
estimated size: 776
install date: 20050709
install source: C:\WINDOWS\system32\
publisher: Microsoft Corporation
help link: http://www.microsoft.com/windows

RVS-COM Lite 3.11.7120 ({4544CA3D-601F-4B90-8941-9B93256F27BF})
version: 51059664
version (major): 3
version (minor): 11
estimated size: 159662
install date: 20050709
install source: E:\DISKS\W4LI\DISK1\
uninstall cmd: MsiExec.exe /I{4544CA3D-601F-4B90-8941-9B93256F27BF}
publisher: Living Byte Software GmbH, München
help link: http://www.rvscom.com

AutoCAD 2002 - Italiano 15.0.6.030 ({5783F2D7-0101-0410-0002-0060B0CE6BBA})
version: 251658246
version (major): 15
estimated size: 229458
install date: 20050722
install source: E:\
uninstall cmd: MsiExec.exe /I{5783F2D7-0101-0410-0002-0060B0CE6BBA}
publisher: Autodesk

Adobe Reader 7.0 - Italiano 007.000.000 ({AC76BA86-7AD7-1040-7B44-A70000000000})
version: 117440512
version (major): 7
estimated size: 83675
install date: 20050722
install location: C:\Programmi\Adobe\Acrobat 7.0\Reader\
install source: C:\Programmi\Adobe\Acrobat 7.0\Setup Files\RdrBig\ITA\
uninstall cmd: MsiExec.exe /I{AC76BA86-7AD7-1040-7B44-A70000000000}
publisher: Adobe Systems Incorporated\0
comments:
contact:
help link: http://www.adobe.it/products/acrobat/main.html
help telephone:
readme: C:\Programmi\Adobe\Acrobat 7.0\Reader\Leggimi.htm



--- System Services ---
Service (registry key): Abiosdsk
Start: 4
Type: 1
Error Control: 0

Service (registry key): abp480n5
Start: 4
Type: 1
Error Control: 1

Service (registry key): ACPI
Display name: Driver ACPI Microsoft
Image path: system32\DRIVERS\ACPI.sys
Image size: 188416
Image MD5: AD825CB3397C837D1FB91D566D78DE04
Start: 0
Type: 1
Error Control: 1

Service (registry key): ACPIEC
Start: 4
Type: 1
Error Control: 1

Service (registry key): adpu160m
Start: 4
Type: 1
Error Control: 1

Service (registry key): aec
Display name: Eliminatore di eco acustico del kernel Microsoft
Image path: system32\drivers\aec.sys
Image size: 142464
Image MD5: 841F385C6CFAF66B58FBD898722BB4F0
Start: 3
Type: 1
Error Control: 1

Service (registry key): AFD
Display name: AFD
Description: Ambiente supporto di rete AFD
Image path: \SystemRoot\System32\drivers\afd.sys
Start: 1
Type: 1
Error Control: 1

 

2° page:


Service (registry key): Aha154x
Start: 4
Type: 1
Error Control: 1

Service (registry key): aic78u2
Start: 4
Type: 1
Error Control: 1

Service (registry key): aic78xx
Start: 4
Type: 1
Error Control: 1

Service (registry key): Alerter
Display name: Avvisi
Description: Notifica gli avvisi amministrativi agli utenti e computer selezionati. Se il servizio è stato arrestato, i programmi che utilizzano gli avvisi amministrativi non li riceveranno. Se il servizio è stato disabilitato, i servizi esplicitamente dipendenti da esso non verranno avviati.
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalService
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 4
Type: 32
Error Control: 1
Depends On services: LanmanWorkstation

Service (registry key): ALG
Display name: Servizio Gateway di livello applicazione
Description: Fornisce supporto per plug-in di protocolli di terze parti per la Condivisione connessione Internet e Windows Firewall.
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\alg.exe
Image size: 44544
Image MD5: D4A42BF3C11302AA3CCD857034EF1E54
Start: 3
Type: 16
Error Control: 1

Service (registry key): AliIde
Start: 4
Type: 1
Error Control: 1

Service (registry key): amsint
Start: 4
Type: 1
Error Control: 1

Service (registry key): AppMgmt
Display name: Gestione applicazione
Description: Offre servizi di installazione di software come Assegna, Pubblica e Rimuovi.
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 3
Type: 32
Error Control: 1

Service (registry key): asc
Start: 4
Type: 1
Error Control: 1

Service (registry key): asc3350p
Start: 4
Type: 1
Error Control: 1

Service (registry key): asc3550
Start: 4
Type: 1
Error Control: 1

Service (registry key): AsyncMac
Display name: Driver per supporti asincroni RAS
Description: Driver per supporti asincroni RAS
Image path: system32\DRIVERS\asyncmac.sys
Image size: 14336
Image MD5: 02000ABF34AF4C218C35D257024807D6
Start: 3
Type: 1
Error Control: 1

Service (registry key): atapi
Display name: Controller disco rigido IDE/ESDI standard
Image path: system32\DRIVERS\atapi.sys
Image size: 95360
Image MD5: CDFE4411A69C224BD1D11B2DA92DAC51
Start: 0
Type: 1
Error Control: 1

Service (registry key): Atdisk
Start: 4
Type: 1
Error Control: 0

Service (registry key): ati2mtag
Image path: system32\DRIVERS\ati2mtag.sys
Image size: 701440
Image MD5: 26FA97BBA8105F5CE7ECE5111216A22E
Start: 3
Type: 1
Error Control: 0

Service (registry key): Atmarpc
Display name: Protocollo client ARP ATM
Description: Protocollo client ARP ATM
Image path: system32\DRIVERS\atmarpc.sys
Image size: 59904
Image MD5: EC88DA854AB7D7752EC8BE11A741BB7F
Start: 3
Type: 1
Error Control: 1
Depends On services: Tcpip

Service (registry key): AudioSrv
Display name: Audio Windows
Description: Gestisce periferiche audio per programmi basati su Windows. Se il servizio è stato arrestato, le periferiche audio e gli effetti non funzioneranno correttamente. Se il servizio è disabilitato, i servizi da esso dipendenti non verranno avviati.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 2
Type: 32
Error Control: 1
Depends On services: PlugPlay,RpcSs

Service (registry key): audstub
Display name: Driver stub audio
Image path: system32\DRIVERS\audstub.sys
Image size: 3072
Image MD5: D9F724AA26C010A217C97606B160ED68
Start: 3
Type: 1
Error Control: 1

Service (registry key): BattC
Start: 0
Type: 0
Error Control: 0

Service (registry key): Beep
Start: 1
Type: 1
Error Control: 1

Service (registry key): BITS
Display name: Servizio trasferimento intelligente in background
Description: Trasferisce in background dati tra client e server. Se BITS è disabilitato, funzionalità come Windows Update non vengono eseguite correttamente.
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs

Service (registry key): Browser
Display name: Browser di computer
Description: Mantiene un elenco aggiornato dei computer in rete e lo fornisce ai computer designati come browser. Se il servizio è stato arrestato, l'elenco non verrà aggiornato o mantenuto. Se il servizio è stato disabilitato, i servizi esplicitamente dipendenti da esso non verranno avviati.
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 2
Type: 32
Error Control: 1
Depends On services: LanmanWorkstation,LanmanServer

Service (registry key): C-Dilla
Display name: C-Dilla
Image path: \??\C:\WINDOWS\system32\drivers\CDANT.SYS
Image size: 56592
Image MD5: B48362954D9E0B3069EBFDC283325FE5
Start: 3
Type: 1
Error Control: 1

Service (registry key): C-DillaSrv
Display name: C-DillaSrv
Object name: LocalSystem
Image path: C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
Image size: 32256
Image MD5: 8EEF3110372D329549C8FB53209FE92C
Start: 2
Type: 16
Error Control: 1

Service (registry key): cbidf2k
Start: 4
Type: 1
Error Control: 1

Service (registry key): cd20xrnt
Start: 4
Type: 1
Error Control: 1

Service (registry key): Cdaudio
Start: 1
Type: 1
Error Control: 0

Service (registry key): Cdfs
Start: 4
Type: 2
Error Control: 1
Depends On group: "SCSI CDROM Class "

Service (registry key): Cdrom
Display name: Driver del CD-ROM
Image path: system32\DRIVERS\cdrom.sys
Image size: 49536
Image MD5: AF9C19B3100FE010496B1A27181FBF72
Start: 1
Type: 1
Error Control: 1
Depends On group: "SCSI miniport "

Service (registry key): Changer
Start: 1
Type: 1
Error Control: 0

Service (registry key): CiSvc
Display name: Servizio di indicizzazione
Description: Indicizza contenuti e proprietà di file su computer locali e remoti, fornisce accesso rapido ai file tramite un flessibile linguaggio di query.
Object name: LocalSystem
Image path: %SystemRoot%\system32\cisvc.exe
Image size: 5632
Image MD5: C4E84243292E37CA3B6FAF4A1855B8A7
Start: 3
Type: 288
Error Control: 1
Depends On services: RPCSS

Service (registry key): ClipSrv
Display name: ClipBook
Description: Abilita il Visualizzatore Cartella Appunti per la memorizzazione e condivisione delle informazioni con i computer remoti. Se il servizio è stato arrestato, Visualizzatore Cartella Appunti non sarà in grado di condividere informazioni con i computer remoti. Se il servizio è disabilitato, i servizi da esso dipendenti non verranno avviati.
Object name: LocalSystem
Image path: %SystemRoot%\system32\clipsrv.exe
Image size: 33280
Image MD5: 0A215E4BAC9A1A9381D88C67517C850B
Start: 4
Type: 16
Error Control: 1
Depends On services: NetDDE

Service (registry key): CmdIde
Start: 4
Type: 1
Error Control: 1

Service (registry key): COMSysApp
Display name: Applicazione di sistema COM+
Description: Gestisce la configurazione e registrazione di componenti basati su COM+. Se il servizio viene arrestato, la maggior parte dei componenti basati su COM+ non sono in grado di funzionare correttamente. Se il servizio viene disattivato, tutti i servizi che dipendono esplicitamente da esso non possono essere avviati.
Object name: LocalSystem
Image path: C:\WINDOWS\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
Image size: 5120
Image MD5: F4B3C65E2A3406F32D220019DEB522F8
Start: 3
Type: 16
Error Control: 1
Depends On services: rpcss

Service (registry key): ContentFilter
Start: 0
Type: 0
Error Control: 0

Service (registry key): ContentIndex
Start: 0
Type: 0
Error Control: 0

Service (registry key): Cpqarray
Start: 4
Type: 1
Error Control: 1

Service (registry key): CryptSvc
Display name: Servizi di crittografia
Description: Fornisce tre servizi di gestione: il servizio Database catalogo, che serve per confermare le firme dei file di Windows; il servizio Archivio principale protetto, per aggiungere e rimuovere dal computer i certificati dell'autorità di certificazione delle fonti attendibili; e il servizio Chiave, che aiuta a registrare i certificati nel computer. Se questo servizio è interrotto, i servizi di gestione non funzioneranno in modo corretto. Se il servizio è disabilitato, tutti i servizi che dipendono direttamente da questo non potranno essere avviati.
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs

Service (registry key): dac2w2k
Start: 4
Type: 1
Error Control: 0

Service (registry key): dac960nt
Start: 4
Type: 1
Error Control: 1

Service (registry key): DcomLaunch
Display name: Utilità di avvio processo server DCOM
Description: Fornisce funzionalità di avvio per i servizi DCOM.
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost -k DcomLaunch
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 2
Type: 32
Error Control: 1

Service (registry key): Dhcp
Display name: Client DHCP
Description: Gestisce la configurazione di rete registrando e aggiornando indirizzi IP e nomi DNS.
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 2
Type: 32
Error Control: 1
Depends On services: Tcpip,Afd,NetBT

Service (registry key): Disk
Display name: Driver del disco
Image path: system32\DRIVERS\disk.sys
Image size: 36352
Image MD5: 00CA44E4534865F8A3B64F7C0984BFF0
Start: 0
Type: 1
Error Control: 1
Depends On group: "SCSI miniport "

Service (registry key): dmadmin
Display name: Servizio amministrativo di Gestione disco logico
Description: Configura le unità disco rigido e i volumi. Il servizio viene eseguito soltanto per i processi di configurazione, quindi viene arrestato.
Object name: LocalSystem
Image path: %SystemRoot%\System32\dmadmin.exe /com
Image size: 225280
Image MD5: 6C9AAA1AA9BF1699D23DEC4D4113226F
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs,PlugPlay,DmServer

Service (registry key): dmboot
Image path: System32\drivers\dmboot.sys
Image size: 800256
Image MD5: 6570B4C952F0D8FEE4C6EF2FF5E10C08
Start: 4
Type: 1
Error Control: 1

Service (registry key): dmio
Display name: Driver Gestione dischi logici
Image path: System32\drivers\dmio.sys
Image size: 154240
Image MD5: C57D35621782C7F40770F3E5CA20A182
Start: 0
Type: 1
Error Control: 1

Service (registry key): dmload
Image path: System32\drivers\dmload.sys
Image size: 5888
Image MD5: E9317282A63CA4D188C0DF5E09C6AC5F
Start: 0
Type: 1
Error Control: 1

Service (registry key): dmserver
Display name: Gestione dischi logici
Description: Rileva e controlla le nuove unità disco rigido e invia informazioni sul volume del disco al Servizio amministrativo di Gestione disco logico per la configurazione. Se il servizio è stato arrestato, lo stato del disco dinamico e le informazioni di configurazione potrebbero non essere aggiornate. Se il servizio è disabilitato, i servizi da esso dipendenti non verranno avviati.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs,PlugPlay

Service (registry key): DMusic
Display name: Sintetizzatore DLS Microsoft Kernel
Image path: system32\drivers\DMusic.sys
Image size: 52864
Image MD5: A6F881284AC1150E37D9AE47FF601267
Start: 3
Type: 1
Error Control: 1

Service (registry key): Dnscache
Display name: Client DNS
Description: Risolve e salva nella cache nomi DNS per il computer. Se il servizio è stato arrestato, il computer non sarà in grado di risolvere i nomi DNS e di individuare i controller di dominio Active Directory. Se il servizio è stato disabilitato, i servizi esplicitamente dipendenti da esso non verranno avviati.
Object name: NT AUTHORITY\NetworkService
Image path: %SystemRoot%\system32\svchost.exe -k NetworkService
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 2
Type: 32
Error Control: 1
Depends On services: Tcpip

Service (registry key): dpti2o
Start: 4
Type: 1
Error Control: 1

Service (registry key): drmkaud
Display name: Decodificatore audio DRM del kernel Microsoft
Image path: system32\drivers\drmkaud.sys
Image size: 2944
Image MD5: 1ED4DBBAE9F5D558DBBA4CC450E3EB2E
Start: 3
Type: 1
Error Control: 1

Service (registry key): ERSvc
Display name: Servizio di segnalazione errori
Description: Consente la segnalazione di errori per servizi e applicazioni eseguiti in ambienti non standard.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 2
Type: 32
Error Control: 0
Depends On services: RpcSs

 

3° page:


Service (registry key): Eventlog
Display name: Registro eventi
Description: Abilita i messaggi del registro eventi rilasciati dai programmi di Windows e rende possibile la visualizzazione dei componenti in Visualizzatore eventi. Impossibile interrompere questo servizio.
Object name: LocalSystem
Image path: %SystemRoot%\system32\services.exe
Image size: 108544
Image MD5: E77F6FA2A15390F1727F4C1C55B69DA6
Start: 2
Type: 32
Error Control: 1

Service (registry key): EventSystem
Display name: Sistema di eventi COM+
Description: Supporta il servizio di notifica eventi di sistema (SENS), che implementa la distribuzione automatica degli eventi nei componenti COM che eseguono la sottoscrizione. Se il servizio viene arrestato, il servizio SENS viene chiuso e non è più in grado di inviare notifiche di connessione e disconnessione. Se il servizio viene disattivato, i servizi che dipendono esplicitamente da esso non possono essere avviati.
Object name: LocalSystem
Image path: C:\WINDOWS\system32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 3
Type: 32
Error Control: 1
Depends On services: RPCSS

Service (registry key): Fastfat
Start: 4
Type: 2
Error Control: 1

Service (registry key): FastUserSwitchingCompatibility
Display name: Compatibilità di Cambio rapido utente
Description: Consente la gestione delle applicazioni che richiedono assistenza in un ambiente con più utenti.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 3
Type: 32
Error Control: 1
Depends On services: TermService

Service (registry key): Fdc
Display name: Driver controller disco floppy
Image path: system32\DRIVERS\fdc.sys
Image size: 27392
Image MD5: CED2E8396A8838E59D8FD529C680E02C
Start: 3
Type: 1
Error Control: 1

Service (registry key): Fips
Start: 1
Type: 1
Error Control: 1

Service (registry key): Flpydisk
Display name: Driver disco floppy
Image path: system32\DRIVERS\flpydisk.sys
Image size: 20480
Image MD5: 0DD1DE43115B93F4D85E889D7A86F548
Start: 3
Type: 1
Error Control: 1

Service (registry key): FltMgr
Display name: FltMgr
Description: Driver gestione filtri file system
Image path: system32\DRIVERS\fltMgr.sys
Image size: 124800
Image MD5: 157754F0DF355A9E0A6F54721914F9C6
Start: 0
Type: 2
Error Control: 1

Service (registry key): Fs_Rec
Start: 1
Type: 8
Error Control: 0

Service (registry key): Ftdisk
Display name: Driver archiviazione volumi
Image path: system32\DRIVERS\ftdisk.sys
Image size: 125824
Image MD5: F3269A6EE547EA87B949A1CEA4816B38
Start: 0
Type: 1
Error Control: 1

Service (registry key): gameenum
Display name: Enumeratore porta giochi
Image path: system32\DRIVERS\gameenum.sys
Image size: 10624
Image MD5: 5F92FD09E5610A5995DA7D775EADCD12
Start: 3
Type: 1
Error Control: 0

Service (registry key): gcapi20
Display name: CAPI 2.0 driver
Image path: system32\DRIVERS\gcapi20.sys
Image size: 165328
Image MD5: 879F0969A87909461760C7B7375899C3
Start: 3
Type: 1
Error Control: 1

Service (registry key): Gisdnpnp
Display name: ISDN PnP driver
Image path: system32\DRIVERS\gisdnpnp.sys
Image size: 78032
Image MD5: 3D78B9E86DDC1874E27DACBC89F4AA5D
Start: 3
Type: 1
Error Control: 1

Service (registry key): gisdnwan
Display name: ISDN WAN miniport
Image path: system32\DRIVERS\gisdnwan.sys
Image size: 23233
Image MD5: 12CAFF6E3B26757803E59F1495C99E82
Start: 3
Type: 1
Error Control: 1

Service (registry key): Gpc
Display name: Utilità di classificazione pacchetti generica
Description: Utilità di classificazione pacchetti generica
Image path: system32\DRIVERS\msgpc.sys
Image size: 35072
Image MD5: C0F1D4A21DE5A415DF8170616703DEBF
Start: 3
Type: 1
Error Control: 1

Service (registry key): helpsvc
Display name: Guida in linea e supporto tecnico
Description: Consente l'esecuzione di Guida in linea e supporto tecnico. Se il servizio è arrestato, Guida in linea e supporto tecnico non è disponibile. Se il servizio è disabilitato, i servizi da esso dipendenti non verranno avviati.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 2
Type: 32
Error Control: 1
Depends On services: RPCSS

Service (registry key): HidServ
Display name: Accesso periferica Human Interface
Description: Abilita l'accesso di input generico alle periferiche Human Interface (HID), che attiva e gestisce l'utilizzo di pulsanti predefiniti su tastiere, telecomandi e altre periferiche multimediali. Se il servizio è stato arrestato, il pulsanti controllati dal servizio non funzioneranno. Se il servizio è disabilitato, i servizi da esso dipendenti non verranno avviati.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 4
Type: 32
Error Control: 1
Depends On services: RpcSs

Service (registry key): hpn
Start: 4
Type: 1
Error Control: 1

Service (registry key): HTTP
Display name: HTTP
Description: Questo servizio implementa il protocollo di trasferimento HyperText (HTTP). Se il servizio è disabilitato, i servizi da esso dipendenti non verranno avviati.
Image path: System32\Drivers\HTTP.sys
Image size: 263040
Image MD5: C19B522A9AE0BBC3293397F3055E80A1
Start: 3
Type: 1
Error Control: 1

Service (registry key): HTTPFilter
Display name: SSL HTTP
Description: Questo servizio implementa il protocollo HTTPS per il servizio HTTP, utilizzando Secure Socket Layer (SSL). Se il servizio è disabilitato, i servizi da esso dipendenti non verranno avviati.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k HTTPFilter
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 3
Type: 32
Error Control: 1
Depends On services: HTTP

Service (registry key): i2omgmt
Start: 1
Type: 1
Error Control: 1

Service (registry key): i2omp
Start: 4
Type: 1
Error Control: 1

Service (registry key): i8042prt
Display name: Driver di porta mouse PS/2 e tastiera i8042
Image path: system32\DRIVERS\i8042prt.sys
Image size: 53632
Image MD5: 30E64DFA4EFAACC8142EA07766181FB4
Start: 1
Type: 1
Error Control: 1

Service (registry key): Imapi
Display name: Driver filtro masterizzazione CD
Image path: system32\DRIVERS\imapi.sys
Image size: 41856
Image MD5: F8AA320C6A0409C0380E5D8A99D76EC6
Start: 1
Type: 1
Error Control: 1

Service (registry key): ImapiService
Display name: Servizio COM di masterizzazione CD IMAPI
Description: Gestisce la registrazione di CD utilizzando l'interfaccia IMAPI (Image Mastering Applications Programming Interface). Se si arresta il servizio, non sarà possibile registrare dei CD. Se si disabilita il servizio, non sarà possibile avviare ogni servizio che dipende esplicitamente da questo.
Object name: LocalSystem
Image path: C:\WINDOWS\system32\imapi.exe
Image size: 150016
Image MD5: ED7ABB35C81709FB41972D30FE15311E
Start: 3
Type: 16
Error Control: 1

Service (registry key): inetaccs
Start: 0
Type: 0
Error Control: 0

Service (registry key): ini910u
Start: 4
Type: 1
Error Control: 1

Service (registry key): Inport
Start: 0
Type: 0
Error Control: 0

Service (registry key): IntelIde
Start: 4
Type: 1
Error Control: 1

Service (registry key): intelppm
Display name: Driver processore Intel
Image path: system32\DRIVERS\intelppm.sys
Image size: 40192
Image MD5: EBC07787034BBE312020D30198A9F362
Start: 1
Type: 1
Error Control: 1

Service (registry key): Ip6Fw
Display name: Driver Windows Firewall IPv6
Description: Fornisce servizi di prevenzione intrusione per una rete domestica o una piccola rete aziendale.
Image path: system32\DRIVERS\Ip6Fw.sys
Image size: 29056
Image MD5: 4448006B6BC60E6C027932CFC38D6855
Start: 3
Type: 1
Error Control: 1

Service (registry key): IpFilterDriver
Display name: Driver filtro traffico IP
Description: Driver filtro traffico IP
Image path: system32\DRIVERS\ipfltdrv.sys
Image size: 32896
Image MD5: 731F22BA402EE4B62748ADAF6363C182
Start: 3
Type: 1
Error Control: 1
Depends On services: Tcpip

Service (registry key): IpInIp
Display name: Driver tunnel IP in IP
Description: Driver tunnel IP in IP
Image path: system32\DRIVERS\ipinip.sys
Image size: 20992
Image MD5: E1EC7F5DA720B640CD8FB8424F1B14BB
Start: 3
Type: 1
Error Control: 1
Depends On services: Tcpip

Service (registry key): IpNat
Display name: Traduttore indirizzi di rete IP
Description: Traduttore indirizzi di rete IP
Image path: system32\DRIVERS\ipnat.sys
Image size: 134912
Image MD5: B5A8E215AC29D24D60B4D1250EF05ACE
Start: 3
Type: 1
Error Control: 1
Depends On services: Tcpip

Service (registry key): IPSec
Display name: Driver IPSEC
Description: Driver IPSEC
Image path: system32\DRIVERS\ipsec.sys
Image size: 74752
Image MD5: 64537AA5C003A6AFEEE1DF819062D0D1
Start: 1
Type: 1
Error Control: 1

Service (registry key): IRENUM
Display name: Servizio enumeratore infrarossi
Image path: system32\DRIVERS\irenum.sys
Image size: 11264
Image MD5: 50708DAA1B1CBB7D6AC1CF8F56A24410
Start: 3
Type: 1
Error Control: 1

Service (registry key): ISAPISearch
Start: 0
Type: 0
Error Control: 0

Service (registry key): isapnp
Display name: Driver bus PnP ISA/EISA
Image path: system32\DRIVERS\isapnp.sys
Image size: 36096
Image MD5: EA3245A8E8758D6B84DE189A5CAAA75E
Start: 0
Type: 1
Error Control: 3

Service (registry key): Kbdclass
Display name: Driver classe tastiera
Image path: system32\DRIVERS\kbdclass.sys
Image size: 25088
Image MD5: E883AE6EA0B313E659225AA32E449CE9
Start: 1
Type: 1
Error Control: 1

Service (registry key): kmixer
Display name: Mixer wave audio del kernel Microsoft
Image path: system32\drivers\kmixer.sys
Image size: 171776
Image MD5: D93CAD07C5683DB066B0B2D2D3790EAD
Start: 3
Type: 1
Error Control: 1

Service (registry key): KSecDD
Start: 0
Type: 1
Error Control: 1

Service (registry key): lanmanserver
Display name: Server
Description: Supporta la condivisione in rete di file, stampa e named-pipe per il computer in uso. Se il servizio è stato arrestato, queste funzionalità non saranno disponibili. Se il servizio è stato disabilitato, i servizi esplicitamente dipendenti da esso non verranno avviati.
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 2
Type: 32
Error Control: 1

Service (registry key): lanmanworkstation
Display name: Workstation
Description: Crea e mantiene le connessioni di rete tra client e server remoti. Se il servizio è stato arrestato, le connessioni non saranno disponibili. Se il servizio è stato disabilitato, i servizi esplicitamente dipendenti da esso non verranno avviati.
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 2
Type: 32
Error Control: 1

Service (registry key): lbrtfdc
Start: 1
Type: 1
Error Control: 0

Service (registry key): ldap
Start: 0
Type: 0
Error Control: 0

Service (registry key): LicenseService
Start: 0
Type: 0
Error Control: 0

Service (registry key): LmHosts
Display name: Helper NetBIOS di TCP/IP
Description: Attiva il servizio Supporto NetBIOS su TCP/IP (NetBT) e risoluzione nomi NetBIOS.
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalService
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 2
Type: 32
Error Control: 1
Depends On services: NetBT,Afd

 

4° page:

Service (registry key): Messenger
Display name: Messenger
Description: Transmette Net Send e i messaggi del servizio Alerter tra client e server. Il servizio non è collegato a Windows Messenger. Se il servizio è stato arrestato, i messaggi del servizio Alerter non saranno trasmessi. Se il servizio è stato disabilitato, i servizi esplicitamente dipendenti da esso non verranno avviati.
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 4
Type: 32
Error Control: 1
Depends On services: LanmanWorkstation,NetBIOS,PlugPlay,RpcSS

Service (registry key): mnmdd
Start: 1
Type: 1
Error Control: 0

Service (registry key): mnmsrvc
Display name: Condivisione desktop remoto di NetMeeting
Description: Consente alle persone autorizzate di accedere al desktop di Windows da postazione remota utilizzando NetMeeting.
Object name: LocalSystem
Image path: C:\WINDOWS\system32\mnmsrvc.exe
Image size: 32768
Image MD5: 940A4E02B7F03C2592A52E16DDDB3E46
Start: 3
Type: 272
Error Control: 1

Service (registry key): Modem
Start: 3
Type: 1
Error Control: 0

Service (registry key): Mouclass
Display name: Driver classe mouse
Image path: system32\DRIVERS\mouclass.sys
Image size: 23552
Image MD5: C458E314B8722253897C94A714C2E0C0
Start: 1
Type: 1
Error Control: 1

Service (registry key): MountMgr
Start: 0
Type: 1
Error Control: 1

Service (registry key): mraid35x
Start: 4
Type: 1
Error Control: 1

Service (registry key): MRxDAV
Display name: Redirector del client WebDav
Description: Redirector del client WebDav
Image path: system32\DRIVERS\mrxdav.sys
Image size: 181248
Image MD5: 46EDCC8F2DB2F322C24F48785CB46366
Start: 3
Type: 2
Error Control: 1

Service (registry key): MRxSmb
Display name: MRXSMB
Description: MRXSMB
Image path: system32\DRIVERS\mrxsmb.sys
Image size: 451456
Image MD5: 1FD607FC67F7F7C633C3DA65BFC53D18
Start: 1
Type: 2
Error Control: 1

Service (registry key): MSDTC
Display name: Distributed Transaction Coordinator
Description: Coordina le transazioni che vengono distribuite in più gestori di risorse, quali database, code di messaggi e file system. Se il servizio viene arrestato le transazioni non vengono eseguite. Se il servizio viene disattivato, i servizi che dipendono esplicitamente da esso non possono essere avviati.
Object name: NT AUTHORITY\NetworkService
Image path: C:\WINDOWS\system32\msdtc.exe
Image size: 6144
Image MD5: 3124662B40761A3EF8F4254D2F32E3F4
Start: 3
Type: 16
Error Control: 1
Depends On services: RPCSS,SamSS

Service (registry key): Msfs
Start: 1
Type: 2
Error Control: 1

Service (registry key): MSIServer
Display name: Windows Installer
Description: Consente di aggiungere, modificare e rimuovere le applicazioni fornite come pacchetto Windows Installer (*.msi). Se il servizio è disabilitato, i servizi da esso dipendenti non verranno avviati.
Object name: LocalSystem
Image path: C:\WINDOWS\system32\msiexec.exe /V
Image size: 77312
Image MD5: EB9501CCA74954E1FE293C65F60BB521
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs

Service (registry key): MSKSSRV
Display name: Proxy di servizio di flusso Microsoft
Image path: system32\drivers\MSKSSRV.sys
Image size: 7552
Image MD5: AE431A8DD3C1D0D0610CDBAC16057AD0
Start: 3
Type: 1
Error Control: 1

Service (registry key): MSPCLOCK
Display name: Proxy clock di flusso Microsoft
Image path: system32\drivers\MSPCLOCK.sys
Image size: 5376
Image MD5: 13E75FEF9DFEB08EEDED9D0246E1F448
Start: 3
Type: 1
Error Control: 1

Service (registry key): MSPQM
Display name: Proxy di gestione qualità di flusso Microsoft
Image path: system32\drivers\MSPQM.sys
Image size: 4992
Image MD5: 1988A33FF19242576C3D0EF9CE785DA7
Start: 3
Type: 1
Error Control: 1

Service (registry key): mssmbios
Display name: Driver BIOS Microsoft System Management
Image path: system32\DRIVERS\mssmbios.sys
Image size: 15488
Image MD5: 469541F8BFD2B32659D5D463A6714BCE
Start: 3
Type: 1
Error Control: 1

Service (registry key): ms_mpu401
Display name: Driver Microsoft MPU-401 MIDI UART
Image path: system32\drivers\msmpu401.sys
Image size: 2944
Image MD5: CA3E22598F411199ADC2DFEE76CD0AE0
Start: 3
Type: 1
Error Control: 1

Service (registry key): Mup
Display name: Mup
Start: 0
Type: 2
Error Control: 1

Service (registry key): NDIS
Display name: Driver di sistema NDIS
Start: 0
Type: 1
Error Control: 1

Service (registry key): NdisTapi
Display name: Driver TAPI NDIS di accesso remoto
Description: Driver TAPI NDIS di accesso remoto
Image path: system32\DRIVERS\ndistapi.sys
Image size: 9600
Image MD5: 08D43BBDACDF23F34D79E44ED35C1B4C
Start: 3
Type: 1
Error Control: 1

Service (registry key): Ndisuio
Display name: Protocollo I/O modalità utente su NDIS
Description: Protocollo I/O modalità utente su NDIS
Image path: system32\DRIVERS\ndisuio.sys
Image size: 12928
Image MD5: 34D6CD56409DA9A7ED573E1C90A308BF
Start: 3
Type: 1
Error Control: 1

Service (registry key): NdisWan
Display name: Driver WAN NDIS di accesso remoto
Description: Driver WAN NDIS di accesso remoto
Image path: system32\DRIVERS\ndiswan.sys
Image size: 91776
Image MD5: 0B90E255A9490166AB368CD55A529893
Start: 3
Type: 1
Error Control: 1

Service (registry key): NDProxy
Start: 3
Type: 1
Error Control: 1

Service (registry key): NetBIOS
Display name: Interfaccia NetBIOS
Description: Interfaccia NetBIOS
Image path: system32\DRIVERS\netbios.sys
Image size: 34560
Image MD5: 3A2ACA8FC1D7786902CA434998D7CEB4
Start: 1
Type: 2
Error Control: 1

Service (registry key): NetBT
Display name: NetBios su Tcpip
Description: NetBios su Tcpip
Image path: system32\DRIVERS\netbt.sys
Image size: 162816
Image MD5: 0C80E410CD2F47134407EE7DD19CC86B
Start: 1
Type: 1
Error Control: 1
Depends On services: Tcpip

Service (registry key): NetDDE
Display name: DDE di rete
Description: Fornisce trasporto di rete e protezione per DDE (Dynamic Data Exchange) per programmi in esecuzione sullo stesso computer o su computer diversi. Se il servizio è stato arrestato, trasporto e protezione DDE non saranno disponibili. Se il servizio è disabilitato, i servizi da esso dipendenti non verranno avviati.
Object name: LocalSystem
Image path: %SystemRoot%\system32\netdde.exe
Image size: 113152
Image MD5: DE62EE316FAB09DE3D7A5180F0775ABF
Start: 4
Type: 32
Error Control: 1
Depends On services: NetDDEDSDM

 

5° page:


Service (registry key): NetDDEdsdm
Display name: DDE DSDM di rete
Description: Gestisce risorse di rete condivise DDE (Dynamic Data Exchange). Se il servizio è stato arrestato, le risorse di rete condivise DDE non saranno disponibili. Se il servizio è disabilitato, i servizi da esso dipendenti non verranno avviati.
Object name: LocalSystem
Image path: %SystemRoot%\system32\netdde.exe
Image size: 113152
Image MD5: DE62EE316FAB09DE3D7A5180F0775ABF
Start: 4
Type: 32
Error Control: 1

Service (registry key): Netlogon
Display name: Accesso rete
Description: Supporta l'autenticazione pass-through di eventi di accesso ad account per computer in un dominio.
Object name: LocalSystem
Image path: %SystemRoot%\system32\lsass.exe
Image size: 13312
Image MD5: 0815E8DA286775FA432C7C9EE5E10BA1
Start: 3
Type: 32
Error Control: 1
Depends On services: LanmanWorkstation

Service (registry key): Netman
Display name: Connessioni di rete
Description: Gestisce gli oggetti nella cartella Connessioni di rete e telefoniche in cui è possibile visualizzare connessioni di rete locale (LAN) e connessioni remote.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 3
Type: 288
Error Control: 1
Depends On services: RpcSs

Service (registry key): Nla
Display name: NLA (Network Location Awareness)
Description: Raccoglie e archivia le informazioni relative alla configurazione e al percorso di rete e ne notifica immediatamente le modifiche alle applicazioni.
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 3
Type: 32
Error Control: 1
Depends On services: Tcpip,Afd

Service (registry key): Npfs
Start: 1
Type: 2
Error Control: 1

Service (registry key): Ntfs
Start: 4
Type: 2
Error Control: 1

Service (registry key): NtLmSsp
Display name: Provider supporto protezione LM NT
Description: Fornisce protezione per i programmi con chiamate a procedure remote (RPC) che usano trasporti diversi da named pipe.
Object name: LocalSystem
Image path: %SystemRoot%\system32\lsass.exe
Image size: 13312
Image MD5: 0815E8DA286775FA432C7C9EE5E10BA1
Start: 3
Type: 32
Error Control: 1

Service (registry key): NtmsSvc
Display name: Archivi rimovibili
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs

Service (registry key): Null
Start: 1
Type: 1
Error Control: 1

Service (registry key): NwlnkFlt
Display name: Driver filtro traffico IPX
Description: Driver filtro traffico IPX
Image path: system32\DRIVERS\nwlnkflt.sys
Image size: 12416
Image MD5: B305F3FAD35083837EF46A0BBCE2FC57
Start: 3
Type: 1
Error Control: 1
Depends On services: NwlnkFwd

Service (registry key): NwlnkFwd
Display name: Driver inoltratore traffico IPX
Description: Driver inoltratore traffico IPX
Image path: system32\DRIVERS\nwlnkfwd.sys
Image size: 32512
Image MD5: C99B3415198D1AAB7227F2C88FD664B9
Start: 3
Type: 1
Error Control: 1

Service (registry key): Parport
Display name: Driver della porta parallela
Image path: system32\DRIVERS\parport.sys
Image size: 80256
Image MD5: 3490EAD0612BFD0E7C1B864EE24E6A4A
Start: 3
Type: 1
Error Control: 1

Service (registry key): PartMgr
Start: 0
Type: 1
Error Control: 1

Service (registry key): ParVdm
Start: 2
Type: 1
Error Control: 0
Depends On services: Parport
Depends On group: "Parallel arbitrator "

Service (registry key): PCI
Display name: Driver bus PCI
Image path: system32\DRIVERS\pci.sys
Image size: 68736
Image MD5: 91FC1D483D900B1C0600A08B871C39D5
Start: 0
Type: 1
Error Control: 3

Service (registry key): PCIDump
Start: 1
Type: 1
Error Control: 0

Service (registry key): PCIIde
Start: 4
Type: 1
Error Control: 1

Service (registry key): Pcmcia
Start: 4
Type: 1
Error Control: 1

Service (registry key): PDCOMP
Start: 3
Type: 1
Error Control: 0

Service (registry key): PDFRAME
Start: 3
Type: 1
Error Control: 0

Service (registry key): PDRELI
Start: 3
Type: 1
Error Control: 0

Service (registry key): PDRFRAME
Start: 3
Type: 1
Error Control: 0

Service (registry key): perc2
Start: 4
Type: 1
Error Control: 1

Service (registry key): perc2hib
Start: 4
Type: 1
Error Control: 1

Service (registry key): PerfDisk
Start: 0
Type: 0
Error Control: 0

Service (registry key): PerfNet
Start: 0
Type: 0
Error Control: 0

Service (registry key): PerfOS
Start: 0
Type: 0
Error Control: 0

Service (registry key): PerfProc
Start: 0
Type: 0
Error Control: 0

Service (registry key): PlugPlay
Display name: Plug and Play
Description: Abilita un computer a riconoscere e adattarsi alle modifiche hardware con il minimo input da parte dell'utente o senza alcun input. Se il servizio viene arrestato o disabilitato, il sistema diventerà instabile.
Object name: LocalSystem
Image path: %SystemRoot%\system32\services.exe
Image size: 108544
Image MD5: E77F6FA2A15390F1727F4C1C55B69DA6
Start: 2
Type: 32
Error Control: 1

Service (registry key): PolicyAgent
Display name: Servizi IPSEC
Description: Gestisce la protezione IP e avvia ISAKMP/Oakley (IKE) e il driver di protezione IP.
Object name: LocalSystem
Image path: %SystemRoot%\system32\lsass.exe
Image size: 13312
Image MD5: 0815E8DA286775FA432C7C9EE5E10BA1
Start: 2
Type: 32
Error Control: 1
Depends On services: RPCSS,Tcpip,IPSec

Service (registry key): PptpMiniport
Display name: WAN Miniport (PPTP)
Description: WAN Miniport (PPTP)
Image path: system32\DRIVERS\raspptp.sys
Image size: 48384
Image MD5: 1C5CC65AAC0783C344F16353E60B72AC
Start: 3
Type: 1
Error Control: 1

Service (registry key): ProtectedStorage
Display name: Archiviazione protetta
Description: Fornisce l'archiviazione protetta per dati importanti, come chiavi private, per evitare l'accesso di servizi, processi, utenti non autorizzati.
Object name: LocalSystem
Image path: %SystemRoot%\system32\lsass.exe
Image size: 13312
Image MD5: 0815E8DA286775FA432C7C9EE5E10BA1
Start: 2
Type: 288
Error Control: 1
Depends On services: RpcSs

Service (registry key): PSched
Display name: Utilità di pianificazione pacchetti QoS
Description: Utilità di pianificazione pacchetti QoS
Image path: system32\DRIVERS\psched.sys
Image size: 69120
Image MD5: 48671F327553DCF1D27F6197F622A668
Start: 3
Type: 1
Error Control: 1
Depends On services: Gpc

Service (registry key): Ptilink
Display name: Driver Direct Parallel Link
Description: Driver Direct Parallel Link
Image path: system32\DRIVERS\ptilink.sys
Image size: 17792
Image MD5: 80D317BD1C3DBC5D4FE7B1678C60CADD
Start: 3
Type: 1
Error Control: 1

Service (registry key): ql1080
Start: 4
Type: 1
Error Control: 1

Service (registry key): Ql10wnt
Start: 4
Type: 1
Error Control: 1

Service (registry key): ql12160
Start: 4
Type: 1
Error Control: 1

Service (registry key): ql1240
Start: 4
Type: 1
Error Control: 1

Service (registry key): ql1280
Start: 4
Type: 1
Error Control: 1

Service (registry key): RasAcd
Display name: Driver connessione automatica Accesso remoto
Description: Driver connessione automatica Accesso remoto
Image path: system32\DRIVERS\rasacd.sys
Image size: 8832
Image MD5: FE0D99D6F31E4FAD8159F690D68DED9C
Start: 1
Type: 1
Error Control: 1

Service (registry key): RasAuto
Display name: Auto Connection Manager di Accesso remoto
Description: Crea una connessione a una rete remota ogni volta che un programma fa riferimento a un DNS remoto o a un nome o indirizzo NetBIOS.
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 3
Type: 32
Error Control: 1
Depends On services: RasMan,Tapisrv

Service (registry key): Rasl2tp
Display name: WAN Miniport (L2TP)
Description: WAN Miniport (L2TP)
Image path: system32\DRIVERS\rasl2tp.sys
Image size: 51328
Image MD5: 98FAEB4A4DCF812BA1C6FCA4AA3E115C
Start: 3
Type: 1
Error Control: 1

Service (registry key): RasMan
Display name: Connection Manager di Accesso remoto
Description: Crea una connessione di rete.
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 3
Type: 32
Error Control: 1
Depends On services: Tapisrv

Service (registry key): RasPppoe
Display name: Driver PPPOE di accesso remoto
Description: Driver PPPOE di accesso remoto
Image path: system32\DRIVERS\raspppoe.sys
Image size: 41472
Image MD5: 7306EEED8895454CBED4669BE9F79FAA
Start: 3
Type: 1
Error Control: 1

Service (registry key): Raspti
Display name: Direct Parallel
Description: Direct Parallel
Image path: system32\DRIVERS\raspti.sys
Image size: 16512
Image MD5: FDBB1D60066FCFBB7452FD8F9829B242
Start: 3
Type: 1
Error Control: 1

Service (registry key): Rdbss
Display name: Rdbss
Description: Rdbss
Image path: system32\DRIVERS\rdbss.sys
Image size: 176512
Image MD5: 29D66245ADBA878FFF574CD66ABD2884
Start: 1
Type: 2
Error Control: 1

Service (registry key): RDPCDD
Image path: System32\DRIVERS\RDPCDD.sys
Image size: 4224
Image MD5: 4912D5B403614CE99C28420F75353332
Start: 1
Type: 1
Error Control: 0

Service (registry key): RDPDD
Start: 0
Type: 0
Error Control: 0

Service (registry key): rdpdr
Display name: Driver redirector periferica Terminal Server
Image path: system32\DRIVERS\rdpdr.sys
Image size: 196864
Image MD5: A2CAE2C60BC37E0751EF9DDA7CEAF4AD
Start: 3
Type: 1
Error Control: 1

Service (registry key): RDPNP
Start: 0
Type: 0
Error Control: 0

Service (registry key): RDPWD
Start: 3
Type: 1
Error Control: 0

Service (registry key): RDSessMgr
Display name: Gestione sessione di assistenza mediante desktop remoto
Description: Gestisce e controlla la funzione Assistenza remota. Se il servizio è stato arrestato, l'assistenza remota non sarà disponibile. Prima di arrestare il servizio, consultare la scheda Dipendenze nella finestra di dialogo Proprietà.
Object name: LocalSystem
Image path: C:\WINDOWS\system32\sessmgr.exe
Image size: 142336
Image MD5: CC0693C481502844A24EF71B90A7195E
Start: 3
Type: 16
Error Control: 1
Depends On services: RPCSS

 

6° page:

Service (registry key): redbook
Display name: Driver filtro riproduzione CD-ROM audio digitale
Image path: system32\DRIVERS\redbook.sys
Image size: 58240
Image MD5: A8EEE004A16AF1D583D9DE9F6DE250E0
Start: 1
Type: 1
Error Control: 1

Service (registry key): RemoteAccess
Display name: Routing e Accesso remoto
Description: Offre servizi di routing ad aziende in ambiente LAN e WAN.
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 4
Type: 32
Error Control: 1
Depends On services: RpcSS
Depends On group: NetBIOSGroup

Service (registry key): RemoteRegistry
Display name: Registro di sistema remoto
Description: Abilita gli utenti remoti alla modifica delle impostazioni del Registro di sistema del computer in uso. Se il servizio è stato arrestato, il Registro di sistema potrà essere modificato soltanto dagli utenti del computer. Se il servizio è disabilitato, i servizi da esso dipendenti non verranno avviati.
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalService
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 2
Type: 32
Error Control: 1
Depends On services: RPCSS

Service (registry key): RpcLocator
Display name: RPC Locator
Description: Gestisce il database del servizio nomi RPC.
Object name: NT AUTHORITY\NetworkService
Image path: %SystemRoot%\system32\locator.exe
Image size: 75264
Image MD5: 33A8F0FE0005B2D79DF53441679F5149
Start: 3
Type: 16
Error Control: 1
Depends On services: LanmanWorkstation

Service (registry key): RpcSs
Display name: RPC (Remote Procedure Call)
Description: Fornisce il mapper dell'endpoint e altri servizi RPC.
Object name: NT AUTHORITY\NetworkService
Image path: %SystemRoot%\system32\svchost -k rpcss
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 2
Type: 32
Error Control: 1

Service (registry key): RSVP
Display name: QoS RSVP
Description: Fornisce la segnalazione di rete e la funzionalità di installazione di controllo del traffico locale per programmi e applet di controllo QoS compatibili.
Object name: LocalSystem
Image path: %SystemRoot%\system32\rsvp.exe
Image size: 132608
Image MD5: DCE0D20F8FB66DF41D53734BFF9D66F0
Start: 3
Type: 16
Error Control: 1
Depends On services: TcpIp,Afd,RpcSs

Service (registry key): rtl8139
Display name: Driver NT scheda Fast Ethernet PCI Realtek basata su RTL8139
Image path: system32\DRIVERS\RTL8139.SYS
Image size: 20992
Image MD5: D507C1400284176573224903819FFDA3
Start: 3
Type: 1
Error Control: 1

Service (registry key): RvscomSv
Display name: RvscomSv
Object name: LocalSystem
Image path: C:\Programmi\RVS\WCOM\SYSTEM\RVSCOMSV.EXE
Image size: 139313
Image MD5: 758995F269616DF2F7D5076172D99655
Start: 3
Type: 16
Error Control: 1
Depends On services: RPCSS

Service (registry key): RVSINST
Display name: RVS Installer
Object name: LocalSystem
Image path: C:\Programmi\RVS\WCOM\SYSTEM\RVSINST.EXE
Image size: 430127
Image MD5: F7A0775330FE84D2F85DC18CA9CB3D79
Start: 2
Type: 272
Error Control: 1
Depends On services: RpcSs

Service (registry key): rvsport
Display name: RVS Virtual COM Port
Image path: \SystemRoot\System32\drivers\rvsport.sys
Start: 2
Type: 1
Error Control: 1

Service (registry key): SamSs
Display name: Gestione account di protezione (SAM)
Description: Archivia le informazioni di protezione per gli account utenti locali.
Object name: LocalSystem
Image path: %SystemRoot%\system32\lsass.exe
Image size: 13312
Image MD5: 0815E8DA286775FA432C7C9EE5E10BA1
Start: 2
Type: 32
Error Control: 1
Depends On services: RPCSS

Service (registry key): SCardSvr
Display name: smart card
Description: Gestisce l'accesso alle smart card lette dal computer. Se il servizio viene arrestato, il computer non sarà in grado di leggere le smart card. Se il servizio è disabilitato, i servizi da esso dipendenti non verranno avviati.
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\SCardSvr.exe
Image size: 97792
Image MD5: 74B1E7FCFCA9A3A23871AA014144013E
Start: 3
Type: 32
Error Control: 0
Depends On services: PlugPlay

Service (registry key): Schedule
Display name: Utilità di pianificazione
Description: Abilita l'utente a configurare e pianificare operazioni automatizzate sul computer in uso. Se il servizio è stato arrestato, le operazioni non verranno eseguite secondo gli orari pianificati. Se il servizio è disabilitato, i servizi da esso dipendenti non verranno avviati.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs

Service (registry key): Secdrv
Display name: Secdrv
Description: SafeDisc driver
Image path: system32\DRIVERS\secdrv.sys
Image size: 27440
Image MD5: D26E26EA516450AF9D072635C60387F4
Start: 3
Type: 1
Error Control: 1

Service (registry key): seclogon
Display name: Accesso secondario
Description: Abilita l'avvio di processi con credenziali alternative. Se il servizio è stato arrestato, questo tipo di accesso non sarà disponibile. Se il servizio è disabilitato, i servizi da esso dipendenti non verranno avviati.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 2
Type: 288
Error Control: 0

Service (registry key): SENS
Display name: Notifica eventi di sistema
Description: Registra eventi di sistema come accessi a Windows, eventi di rete e alimentazione. Notifica questi eventi ai sottoscrittori COM+ Event System.
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 2
Type: 32
Error Control: 1
Depends On services: EventSystem

Service (registry key): serenum
Display name: Driver filtro Serenum
Image path: system32\DRIVERS\serenum.sys
Image size: 15488
Image MD5: A2D868AEEFF612E70E213C451A70CAFB
Start: 3
Type: 1
Error Control: 1

Service (registry key): Serial
Display name: Driver della porta seriale
Image path: system32\DRIVERS\serial.sys
Image size: 66176
Image MD5: DBAB3260E7EB3398CB87267D1410FAD4
Start: 1
Type: 1
Error Control: 0

Service (registry key): Sfloppy
Start: 1
Type: 1
Error Control: 0
Depends On group: "SCSI miniport "

Service (registry key): SharedAccess
Display name: Windows Firewall / Condivisione connessione Internet (ICS)
Description: Fornisce servizi di conversione indirizzi di rete, indirizzamento e risoluzione nomi e/o servizi di prevenzione intrusione per una rete domestica o una piccola rete aziendale.
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 2
Type: 32
Error Control: 1
Depends On services: Netman,WinMgmt

Service (registry key): ShellHWDetection
Display name: Rilevamento hardware shell
Description: Fornisce notifiche di eventi hardware AutoPlay.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 2
Type: 32
Error Control: 0
Depends On services: RpcSs

Service (registry key): Simbad
Start: 4
Type: 1
Error Control: 1

Service (registry key): Sparrow
Start: 4
Type: 1
Error Control: 1

Service (registry key): splitter
Display name: Frazionatore audio del kernel Microsoft
Image path: system32\drivers\splitter.sys
Image size: 6400
Image MD5: 8E186B8F23295D1E42C573B82B80D548
Start: 3
Type: 1
Error Control: 1

Service (registry key): Spooler
Display name: Spooler di stampa
Description: Carica i file in memoria per stampare in un secondo momento.
Object name: LocalSystem
Image path: %SystemRoot%\system32\spoolsv.exe
Image size: 57856
Image MD5: 216F8454A9415DD3E451B169DC3121C4
Start: 2
Type: 272
Error Control: 1
Depends On services: RPCSS

Service (registry key): sr
Display name: Driver filtro Ripristino configurazione di sistema
Image path: system32\DRIVERS\sr.sys
Image size: 73472
Image MD5: 896F566AFC498077172EAE8A50E8BAF8
Start: 0
Type: 2
Error Control: 1

Service (registry key): srservice
Display name: Servizio Ripristino configurazione di sistema
Description: Esegue le funzioni di ripristino del sistema. Per interrompere il servizio, disattivare Ripristino configurazione di sistema nella scheda Ripristino configurazione di sistema in Risorse del computer->Proprietà
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs

Service (registry key): Srv
Display name: Srv
Description: Srv
Image path: system32\DRIVERS\srv.sys
Image size: 336256
Image MD5: 20B7E396720353E4117D64D9DCB926CA
Start: 3
Type: 2
Error Control: 1

Service (registry key): SSDPSRV
Display name: Servizio di rilevamento SSDP
Description: Consente di rilevare le periferiche UPnP nella rete domestica.
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalService
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 3
Type: 32
Error Control: 1
Depends On services: HTTP

Service (registry key): stisvc
Display name: Acquisizione di immagini di Windows (WIA)
Description: Fornisce servizi di acquisizione immagini per scanner e fotocamere.
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k imgsvc
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs

Service (registry key): swenum
Display name: Driver bus software
Image path: system32\DRIVERS\swenum.sys
Image size: 4352
Image MD5: 03C1BAE4766E2450219D20B993D6E046
Start: 3
Type: 1
Error Control: 1

Service (registry key): swmidi
Display name: Sintetizzatore Wavetable GS kernel Microsoft
Image path: system32\drivers\swmidi.sys
Image size: 54272
Image MD5: 94ABC808FC4B6D7D2BBF42B85E25BB4D
Start: 3
Type: 1
Error Control: 1

Service (registry key): SwPrv
Display name: MS Software Shadow Copy Provider
Description: Consente di gestire le copie replicate del volume basate sul software eseguite dal Servizio copia replicata del volume. Se il servizo è stato arrestato, non sarà possibile gestire le copie replicate del volume basate sul software. Se il servizio è disabilitato, i servizi da esso dipendenti non verranno avviati.
Object name: LocalSystem
Image path: C:\WINDOWS\system32\dllhost.exe /Processid:{6C0D20B8-FDAF-4654-9B8D-7614E02A7EA4}
Image size: 5120
Image MD5: F4B3C65E2A3406F32D220019DEB522F8
Start: 3
Type: 16
Error Control: 0
Depends On services: rpcss

Service (registry key): symc810
Start: 4
Type: 1
Error Control: 1

Service (registry key): symc8xx
Start: 4
Type: 1
Error Control: 1

Service (registry key): sym_hi
Start: 4
Type: 1
Error Control: 1

Service (registry key): sym_u3
Start: 4
Type: 1
Error Control: 1

Service (registry key): sysaudio
Display name: Periferica audio di sistema Microsoft Kernel
Image path: system32\drivers\sysaudio.sys
Image size: 60800
Image MD5: 650AD082D46BAC0E64C9C0E0928492FD
Start: 3
Type: 1
Error Control: 1

Service (registry key): SysmonLog
Display name: Avvisi e registri di prestazioni
Description: Raccoglie dati relativi alle prestazioni dal computer locale o da computer remoti sulla base di parametri di pianificazione preconfigurati, quindi scrive i dati in un registro o attiva un avviso. Se il servizio è arrestato, i dati sulle prestazioni non vengono raccolti. Se il servizio è disabilitato, l'avvio di servizi esplicitamente dipendenti da questo non sarà possibile.
Object name: NT Authority\NetworkService
Image path: %SystemRoot%\system32\smlogsvc.exe
Image size: 92672
Image MD5: BC8B8694DEF74B4E6C626322D4321A54
Start: 3
Type: 16
Error Control: 1

Service (registry key): TapiSrv
Display name: Telefonia
Description: Fornisce supporto API di telefonia (TAPI) per programmi che controllano periferiche di telefonia e connessioni vocali basate su IP sul computer locale e, tramite LAN, su server su cui è in esecuzione il servizio.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 3
Type: 32
Error Control: 1
Depends On services: PlugPlay,RpcSs

Service (registry key): Tcpip
Display name: Driver protocollo TCP/IP
Description: Driver protocollo TCP/IP
Image path: system32\DRIVERS\tcpip.sys
Image size: 359040
Image MD5: 9F4B36614A0FC234525BA224957DE55C
Start: 1
Type: 1
Error Control: 1
Depends On services: IPSec

Service (registry key): TDPIPE
Start: 3
Type: 1
Error Control: 0

Service (registry key): TDTCP
Start: 3
Type: 1
Error Control: 0

Service (registry key): TermDD
Display name: Driver della periferica terminale
Image path: system32\DRIVERS\termdd.sys
Image size: 40840
Image MD5: A540A99C281D933F3D69D55E48727F47
Start: 1
Type: 1
Error Control: 1

 

7° page:


Service (registry key): TermService
Display name: Servizi terminal
Description: Consente a più utenti di connettersi in modo interattivo a un computer e la visualizzazione di desktop e applicazioni a computer remoti. Complemento di Desktop remoto (incluso Desktop remoto per amministratori), Cambio rapido utente, Assistenza remota e Terminal Server.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost -k DComLaunch
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 3
Type: 32
Error Control: 1
Depends On services: RPCSS

Service (registry key): Themes
Display name: Temi
Description: Consente la gestione dei temi.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 2
Type: 32
Error Control: 1

Service (registry key): TlntSvr
Display name: Telnet
Description: Consente a un utente remoto di accedere a questo computer ed eseguire programmi, oltre a supportare vari client Telnet TCP/IP, inclusi i computer basati su UNIX e Windows. Se il servizio viene interrotto, l'accesso remoto dell'utente ai programmi potrebbe non essere disponibile. Se il servizio viene disattivato, non sarà possibile avviare alcun servizio che ne dipende in modo esplicito.
Object name: LocalSystem
Image path: C:\WINDOWS\system32\tlntsvr.exe
Image size: 74752
Image MD5: 2A9DAAEF2CC0333DB6F129F2F8B3D3FD
Start: 4
Type: 16
Error Control: 1
Depends On services: RPCSS,TCPIP,NTLMSSP

Service (registry key): TosIde
Start: 4
Type: 1
Error Control: 1

Service (registry key): TrkWks
Display name: Manutenzione collegamenti distribuiti client
Description: Gestisce collegamenti tra file NTFS in un computer o tra più computer in un dominio di rete.
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs

Service (registry key): TSDDD
Start: 0
Type: 0
Error Control: 0

Service (registry key): Udfs
Start: 4
Type: 2
Error Control: 1

Service (registry key): ultra
Start: 4
Type: 1
Error Control: 1

Service (registry key): Update
Display name: Driver aggiornamento microcodice
Image path: system32\DRIVERS\update.sys
Image size: 209408
Image MD5: AFF2E5045961BBC0A602BB6F95EB1345
Start: 3
Type: 1
Error Control: 1

Service (registry key): upnphost
Display name: Host di periferiche Plug and Play universali
Description: Fornisce supporto per ospitare periferiche Plug and Play universali.
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalService
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 3
Type: 32
Error Control: 1
Depends On services: SSDPSRV,HTTP

Service (registry key): UPS
Display name: Gruppo di continuità
Description: Gestisce un gruppo di continuità (UPS) connesso al computer.
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\ups.exe
Image size: 18432
Image MD5: E4896F38A3F8DACEA6EA8D7EC9889D91
Start: 3
Type: 16
Error Control: 1

Service (registry key): usbehci
Display name: Driver Miniport controller enhanced host USB 2.0 Microsoft
Image path: system32\DRIVERS\usbehci.sys
Image size: 26624
Image MD5: 15E993BA2F6946B2BFBBFCD30398621E
Start: 3
Type: 1
Error Control: 1

Service (registry key): usbhub
Display name: Hub abilitato USB2
Image path: system32\DRIVERS\usbhub.sys
Image size: 57600
Image MD5: C72F40947F92CEA56A8FB532EDF025F1
Start: 3
Type: 1
Error Control: 1

Service (registry key): usbstor
Display name: Driver archiviazione di massa USB
Image path: system32\DRIVERS\USBSTOR.SYS
Image size: 26496
Image MD5: 6CD7B22193718F1D17A47A1CD6D37E75
Start: 3
Type: 1
Error Control: 1

Service (registry key): usbuhci
Display name: Driver Miniport Controller Universal Host USB Microsoft
Image path: system32\DRIVERS\usbuhci.sys
Image size: 20480
Image MD5: F8FD1400092E23C8F2F31406EF06167B
Start: 3
Type: 1
Error Control: 1

Service (registry key): VgaSave
Image path: \SystemRoot\System32\drivers\vga.sys
Start: 1
Type: 1
Error Control: 0

Service (registry key): ViaIde
Image path: system32\DRIVERS\viaide.sys
Image size: 5376
Image MD5: 59CB1338AD3654417BEA49636457F65D
Start: 0
Type: 1
Error Control: 1

Service (registry key): VolSnap
Start: 0
Type: 1
Error Control: 1

Service (registry key): VSS
Display name: Copia replicata del volume
Description: Gestisce e implementa le copie replicate del volume utilizzate a scopo di backup e altro. Se il servizio è stato arrestato, le copie replicate non saranno disponibili per il backup e il backup potrebbe non riuscire. Se il servizio è disabilitato, i servizi da esso dipendenti non verranno avviati.
Object name: LocalSystem
Image path: %SystemRoot%\System32\vssvc.exe
Image size: 293888
Image MD5: 147C653AD61BD01556723B3C8C4FAFC8
Start: 3
Type: 16
Error Control: 1
Depends On services: RPCSS

Service (registry key): W32Time
Display name: Ora di Windows
Description: Assicura la sincronizzazione data e ora su tutti i client e i server della rete. Se il servizio viene interrotto, la sincronizzazione data e ora non sarà disponibile. Se questo servizio è disattivato, non potrà essere avviato alcun servizio che dipende direttamente da esso.

Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 2
Type: 32
Error Control: 1

Service (registry key): W3SVC
Start: 0
Type: 0
Error Control: 0

Service (registry key): Wanarp
Display name: Driver ARP IP di accesso remoto
Description: Driver ARP IP di accesso remoto
Image path: system32\DRIVERS\wanarp.sys
Image size: 34560
Image MD5: 984EF0B9788ABF89974CFED4BFBAACBC
Start: 3
Type: 1
Error Control: 1

Service (registry key): WDICA
Start: 3
Type: 1
Error Control: 0

Service (registry key): wdmaud
Display name: Driver di compatibilità audio Microsoft WINMM WDM
Image path: system32\drivers\wdmaud.sys
Image size: 82944
Image MD5: 2797F33EBF50466020C430EE4F037933
Start: 3
Type: 1
Error Control: 1

Service (registry key): WebClient
Display name: WebClient
Description: Abilita i programmi basati su Windows per creare, accedere e modificare i file basati su Internet. Se il servizio è stato arrestato, queste funzionalità non saranno disponibili. Se il servizio è disabilitato, i servizi da esso dipendenti non verranno avviati.
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalService
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 2
Type: 32
Error Control: 1
Depends On services: MRxDAV

Service (registry key): winmgmt
Display name: Strumentazione gestione Windows
Description: Fornisce un modello di interfacce e di oggetti comune per accedere alle informazioni di gestione sul sistema operativo, le periferiche, le applicazioni e i servizi. Se il servizio viene interrotto, la maggior parte del software basato su Windows non funzionerà in modo corretto. Se il servizio è disabilitato, i servizi da esso dipendenti non verranno avviati.
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 2
Type: 32
Error Control: 0
Depends On services: RPCSS

Service (registry key): Winsock
Start: 3
Type: 4
Error Control: 1

Service (registry key): WinSock2
Start: 0
Type: 0
Error Control: 0

Service (registry key): WinTrust
Start: 0
Type: 0
Error Control: 0

Service (registry key): WmdmPmSN
Display name: Servizio Numero di serie per dispositivi multimediali portatili
Description: Recupera il numero di serie per ogni lettore multimediale portatile collegato al computer. Se il servizio è interrotto, è possibile che il contenuto protetto non possa essere scaricato nel dispositivo.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 3
Type: 32
Error Control: 1

Service (registry key): Wmi
Display name: Estensioni driver di Strumentazione gestione Windows
Description: Contiene informazioni di gestione del sistema destinate a e provenienti dai driver.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 3
Type: 32
Error Control: 1

Service (registry key): WmiApRpl
Start: 0
Type: 0
Error Control: 0

Service (registry key): WmiApSrv
Display name: Scheda WMI Performance
Description: Fornisce informazioni relative alla libreria delle prestazioni dai provider WMI HiPerf.
Object name: LocalSystem
Image path: C:\WINDOWS\system32\wbem\wmiapsrv.exe
Image size: 126464
Image MD5: 0EE2A2754039B13A632489726689DAD0
Start: 3
Type: 16
Error Control: 1
Depends On services: RPCSS

Service (registry key): WS2IFSL
Start: 1
Type: 0
Error Control: 0

Service (registry key): wscsvc
Display name: Centro sicurezza PC
Description: Effettua il monitoraggio delle impostazioni e delle configurazioni di protezione del computer.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs,winmgmt

Service (registry key): wuauserv
Display name: Aggiornamenti automatici
Description: Consente il download e l'installazione di aggiornamenti da Windows Update. Se il servizio è disabilitato, il computer non sarà in grado di utilizzare la funzionalità Aggiornamenti automatici né il sito Web Windows Update.
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 2
Type: 32
Error Control: 1

Service (registry key): WZCSVC
Display name: Zero Configuration reti senza fili
Description: Fornisce la configurazione automatica per le schede 802.11
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs,Ndisuio

Service (registry key): xmlprov
Display name: Servizio Provisioning di rete
Description: Gestisce i file di configurazione XML per il dominio per il provisioning automatico della rete.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 73955B04F209D8A1C633867841267A96
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs

Service (registry key): {0215F9DC-1A45-47CC-9A03-9B252266C697}
Start: 0
Type: 0
Error Control: 0

 

You have the bagle trojan
http://www.sophos.com/virusinfo/analyses/trojbagledlk.html
O4 - HKLM\..\Run: [winshost.exe] C:\WINDOWS\system32\winshost.exe
O4 - HKCU\..\Run: [winshost.exe] C:\WINDOWS\system32\winshost.exe
Get the bagle/beagle removal tool at symantec
Follow their instructions for using it.


O4 - HKLM\..\Run: [Olympic] C:\Documents and Settings\franco\Dati applicazioni\sgrunt\IE4321.exe
Adult content premium rate dialer - also detected as Trojan.Win32.Small.CZ
Use task manager or the process viewer in code stuff starter
To kill the process [Olympic]
Run hijackthis with all other windows closed, choose scan only, put a check by the entry and choose fix.
Delete the folder
C:\Documents and Settings\franco\Dati applicazioni\sgrunt
Empty recycle bin.

You have http://securityresponse.symantec.com/avcenter/venc/data/w32.bizex.worm.html
O4 - HKLM\..\Run: [Systems] C:\WINDOWS\system32\sysmon.exe
Use taskmanager or starter process viewer to kill process
[Systems]
Run hijackthis and fix entry
Delete file
C:\WINDOWS\system32\sysmon.exe
How to show hidden files


O15 - Trusted Zone: www.archiviosex.net
O15 - Trusted Zone: www.linkautomatici.com
O15 - Trusted Zone: www.redfunny.com
O15 - Trusted Zone: www.sgrunt.biz
O15 - Trusted Zone: www.skymasters.biz

1, 3, and 5 are known nasties, 2, 4 are probably bad so
Go to tools/ internet options/ trusted zone/ sites and remove them from the list.
Then run hijackthis with all windows closed and choose scan only and put a check by these and choose fix if they remain.
O15 - Trusted Zone: www.archiviosex.net
O15 - Trusted Zone: www.linkautomatici.com
O15 - Trusted Zone: www.redfunny.com
O15 - Trusted Zone: www.sgrunt.biz
O15 - Trusted Zone: www.skymasters.biz

Run Hijackthis with all windows closed, scan only and choose fix

(This one if you do not recognize it)
O16 - DPF: {1F831FA9-42FC-11D4-95A6-0080AD30DCE1} (InstaFred) - file://C:\Programmi\AutoCAD 2002\InstFred.ocx
(This installed that trojan fix it for sure or it will be back0
O16 - DPF: {FFFF0003-0001-101A-A3C9-08002B2F49FB} - http://www.sgrunt.biz/closer/close.exe


Do you recognize this IP 151.99.125.2 151.99.125.3 ?
traces to 151.99.125.2 = [ dns.interbusiness.it ]
I bet it is that italian trojan you have
\(O4 - HKLM\..\Run: [Olympic] C:\Documents and Settings\franco\Dati applicazioni\sgrunt\IE4321.exe)
If not have hijackthis fix these too
O17 - HKLM\System\CCS\Services\Tcpip\..\{0215F9DC-1A45-47CC-9A03-9B252266C697}: NameServer = 151.99.125.2,151.99.125.3
O17 - HKLM\System\CS1\Services\Tcpip\..\{0215F9DC-1A45-47CC-9A03-9B252266C697}: NameServer = 151.99.125.2,151.99.125.3
O17 - HKLM\System\CS2\Services\Tcpip\..\{0215F9DC-1A45-47CC-9A03-9B252266C697}: NameServer = 151.99.125.2,151.99.125.3

 

THANKS A LOT MR. ANTIVIRUS!! THIS IS MY HJT REPORT, NOW: I HOPE IT'S ALL OK, IN YOUR OPINION?

THANK YOU & THANKS TO WINDOWSBBS...




Logfile of HijackThis v1.99.1
Scan saved at 9.47.00, on 17/09/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\cbpopw.exe
C:\Programmi\ClamWin\bin\ClamTray.exe
C:\Programmi\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
C:\Programmi\RVS\WCOM\SYSTEM\RVSINST.EXE
C:\Programmi\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\explorer.exe
C:\Documents and Settings\franco\Desktop\Programmi Sicurezza\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.it
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ssesso.it
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmi\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O4 - HKLM\..\Run: [CallBumping] cbpopw.exe
O4 - HKLM\..\Run: [ClamWin] "C:\Programmi\ClamWin\bin\ClamTray.exe" --logon
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Programmi\Spybot - Search & Destroy\TeaTimer.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Programmi\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Avvio veloce di Adobe Reader.lnk = C:\Programmi\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O12 - Plugin for .pdf: C:\Programmi\Internet Explorer\PLUGINS\nppdf32.dll
O16 - DPF: {1F831FA9-42FC-11D4-95A6-0080AD30DCE1} (InstaFred) - file://C:\Programmi\AutoCAD 2002\InstFred.ocx
O16 - DPF: {78AF2F24-A9C3-11D3-BF8C-0060B0FCC122} (Controllo AcDc oggi) - file://C:\Programmi\AutoCAD 2002\AcDcToday.ocx
O16 - DPF: {AE563729-B4F5-11D4-A415-00108302FDFD} (NOXLATE-BANR) - file://C:\Programmi\AutoCAD 2002\InstBanr.ocx
O16 - DPF: {F281A59C-7B65-11D3-8617-0010830243BD} (Controllo AcPreview) - file://C:\Programmi\AutoCAD 2002\AcPreview.ocx
O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
O23 - Service: RvscomSv - Living Byte Software GmbH, München - C:\Programmi\RVS\WCOM\SYSTEM\RVSCOMSV.EXE
O23 - Service: RVS Installer (RVSINST) - Living Byte Software GmbH, München - C:\Programmi\RVS\WCOM\SYSTEM\RVSINST.EXE

 

Well this entry is one no one seems to have much info on.
They won't say it is bad, they won't say it is safe
O4 - HKLM\..\Run: [CallBumping] cbpopw.exe
Do you know what this Call bumping is?
http://www.bleepingcomputer.com/startups/cbpopw.exe-706.html

Other than that, yes it looks clean.