Hola, espero haberlo hecho correctamente...Aqui va il log di au
HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\AppSetup
HKLM\Software\Policies\Microsoft\Windows\System\Scripts\Startup
HKCU\Software\Policies\Microsoft\Windows\System\Scripts\Logon
HKLM\Software\Policies\Microsoft\Windows\System\Scripts\Logon
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit
HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System\Shell
HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System\Shell
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Taskman
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Terminal Server\Install\Software\Microsoft\Windows\CurrentVersion\Runonce
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Terminal Server\Install\Software\Microsoft\Windows\CurrentVersion\RunonceEx
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Terminal Server\Install\Software\Microsoft\Windows\CurrentVersion\Run
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
+ ATIPTA ATI Desktop Control Panel (Not verified) ATI Technologies, Inc. c:\programmi\ati technologies\ati control panel\atiptaxx.exe
+ avast! avast! service GUI component (Verified) ALWIL Software c:\programmi\alwil software\avast4\ashdisp.exe
+ Controllo del Calendario di Ulead Photo Express Photo Express -- Calendar Checker (Not verified) Ulead Systems, Inc. c:\programmi\ulead systems\ulead photo express 5 se\calcheck.exe
+ EPSON Stylus C84 Series EPSON Status Monitor 3 (Not verified) SEIKO EPSON CORPORATION c:\windows\system32\spool\drivers\w32x86\3\e_s10ic2.exe
+ Google Desktop Search Google Desktop (Not verified) Google c:\programmi\google\google desktop search\googledesktop.exe
+ iTunesHelper iTunesHelper Module (Verified) Apple Inc. c:\programmi\itunes\ituneshelper.exe
+ MsgCenterExe RealNetworks Event Launcher (Not verified) RealNetworks, Inc. c:\programmi\file comuni\real\update_ob\realonemessagecenter.exe
+ NeroCheck NeroCheck (Not verified) Ahead Software Gmbh c:\windows\system32\nerocheck.exe
+ NeroFilterCheck NeroCheck (Not verified) Nero AG c:\programmi\file comuni\ahead\lib\nerocheck.exe
+ QuickTime Task QuickTime Task (Not verified) Apple Inc. c:\programmi\quicktime\qttask.exe
+ REGSHAVE Shaving Registry (Not verified) FUJI PHOTO FILM CO., LTD. c:\programmi\regshave\regshave.exe
+ SpeedTouch USB Diagnostics SpeedTouch Statistics (Not verified) THOMSON c:\programmi\thomson\speedtouch usb\dragdiag.exe
+ SunJavaUpdateSched Java(TM) Platform SE binary (Verified) Sun Microsystems, Inc. c:\programmi\java\jre1.6.0_03\bin\jusched.exe
+ TkBellExe RealNetworks Scheduler (Verified) RealNetworks, Inc. c:\programmi\file comuni\real\update_ob\realsched.exe
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
C:\Documents and Settings\All Users\Menu Avvio\Programmi\Esecuzione automatica
+ Adobe Gamma Loader.lnk Adobe Gamma Loader (Not verified) Adobe Systems, Inc. c:\programmi\file comuni\adobe\calibration\adobe gamma loader.exe
C:\Documents and Settings\griselda\Menu Avvio\Programmi\Esecuzione automatica
+ ERUNT AutoBackup.lnk c:\programmi\erunt\autoback.exe
HKCU\Software\Microsoft\Windows NT\CurrentVersion\Windows\Load
HKCU\Software\Microsoft\Windows NT\CurrentVersion\Windows\Run
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run
HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run
HKCU\Software\Microsoft\Windows\CurrentVersion\Run
+ eMuleAutoStart eMule (Not verified)
http://www.emule-project.net c:\programmi\emule\emule.exe
+ MessengerPlus3 Messenger Plus! (Verified) Patchou c:\programmi\messengerplus! 3\msgplus.exe
+ Yahoo! Pager Yahoo! Messenger (Verified) Yahoo! Inc. c:\programmi\yahoo!\messenger\yahoomessenger.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce
HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Terminal Server\Install\Software\Microsoft\Windows\CurrentVersion\Runonce
HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Terminal Server\Install\Software\Microsoft\Windows\CurrentVersion\RunonceEx
HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Terminal Server\Install\Software\Microsoft\Windows\CurrentVersion\Run
HKLM\SOFTWARE\Classes\Protocols\Filter
HKLM\SOFTWARE\Classes\Protocols\Handler
HKCU\SOFTWARE\Microsoft\Internet Explorer\Desktop\Components
+ 0 File not found: About:Home
HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components
HKCU\SOFTWARE\Microsoft\Active Setup\Installed Components
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks
HKCU\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
+ avast avast! Shell Extension (Verified) ALWIL Software c:\programmi\alwil software\avast4\ashshell.dll
+ Estensione panoramica video del Pannello di controllo File not found: deskpan.dll
+ iTunes iTunes Mini Player DLL (Verified) Apple Inc. c:\programmi\itunes\itunesminiplayer.dll
+ NeroDigitalIconHandler Nero Digital Shell Extension (Not verified) Nero AG c:\programmi\file comuni\ahead\lib\nerodigitalext.dll
+ NeroDigitalPropSheetHandler Nero Digital Shell Extension (Not verified) Nero AG c:\programmi\file comuni\ahead\lib\nerodigitalext.dll
+ OpenOffice.org Column Handler (Not verified) Sun Microsystems, Inc. c:\programmi\openoffice.org 2.0\program\shlxthdl.dll
+ OpenOffice.org Infotip Handler (Not verified) Sun Microsystems, Inc. c:\programmi\openoffice.org 2.0\program\shlxthdl.dll
+ OpenOffice.org Property Sheet Handler (Not verified) Sun Microsystems, Inc. c:\programmi\openoffice.org 2.0\program\shlxthdl.dll
+ OpenOffice.org Thumbnail Viewer (Not verified) Sun Microsystems, Inc. c:\programmi\openoffice.org 2.0\program\shlxthdl.dll
+ Shell Extensions for RealOne Player RealPlayer Shell Extensions (Verified) RealNetworks, Inc. c:\programmi\real\realplayer\rpshell.dll
+ WinRAR shell extension c:\programmi\winrar\rarext.dll
+ WinZip WinZip Shell Extension DLL (Not verified) WinZip Computing, Inc. c:\programmi\winzip\wzshlstb.dll
+ WinZip WinZip Shell Extension DLL (Not verified) WinZip Computing, Inc. c:\programmi\winzip\wzshlstb.dll
+ WinZip WinZip Shell Extension DLL (Not verified) WinZip Computing, Inc. c:\programmi\winzip\wzshlstb.dll
+ WinZip WinZip Shell Extension DLL (Not verified) WinZip Computing, Inc. c:\programmi\winzip\wzshlstb.dll
+ Yahoo! Mail YMMAPI Module (Verified) Yahoo! Inc. c:\programmi\yahoo!\common\ymmapi.dll
HKCU\Software\Classes\Folder\Shellex\ColumnHandlers
HKLM\Software\Classes\Folder\Shellex\ColumnHandlers
+ NeroDigitalColumnHandler Class Nero Digital Shell Extension (Not verified) Nero AG c:\programmi\file comuni\ahead\lib\nerodigitalext.dll
+ PDF Shell Extension PDF Shell Extension (Not verified) Adobe Systems, Inc. c:\programmi\adobe\acrobat 7.0\activex\pdfshell.dll
+ {C52AF81D-F7A0-4AAB-8E87-F80A60CCD396} (Not verified) Sun Microsystems, Inc. c:\programmi\openoffice.org 2.0\program\shlxthdl.dll
HKCU\Software\Microsoft\Ctf\LangBarAddin
HKLM\Software\Microsoft\Ctf\LangBarAddin
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects
+ Adobe PDF Reader Link Helper Adobe Acrobat IE Helper Version 7.0 for ActiveX (Verified) Adobe Systems, Incorporated c:\programmi\adobe\acrobat 7.0\activex\acroiehelper.dll
+ Google Toolbar Helper Google IE Client Toolbar (Verified) Google Inc c:\programmi\google\googletoolbar4.dll
+ SSVHelper Class Java(TM) Platform SE binary (Verified) Sun Microsystems, Inc. c:\programmi\java\jre1.6.0_03\bin\ssv.dll
+ Yahoo! Toolbar Helper Yahoo! Toolbar (Verified) Yahoo! Inc. c:\programmi\yahoo!\companion\installs\cpn0\yt.dll
HKCU\Software\Microsoft\Internet Explorer\UrlSearchHooks
+ yt.dll Yahoo! Toolbar (Verified) Yahoo! Inc. c:\programmi\yahoo!\companion\installs\cpn0\yt.dll
HKLM\Software\Microsoft\Internet Explorer\Toolbar
+ googletoolbar4.dll Google IE Client Toolbar (Verified) Google Inc c:\programmi\google\googletoolbar4.dll
+ yt.dll Yahoo! Toolbar (Verified) Yahoo! Inc. c:\programmi\yahoo!\companion\installs\cpn0\yt.dll
HKCU\Software\Microsoft\Internet Explorer\Explorer Bars
HKLM\Software\Microsoft\Internet Explorer\Explorer Bars
HKCU\Software\Microsoft\Internet Explorer\Extensions
HKLM\Software\Microsoft\Internet Explorer\Extensions
Task Scheduler
+ AFC908DA9192B9F6.job File not found: c:\docume~1\griselda\datiap~1\4sect~1\aimboneweb.exe
+ AppleSoftwareUpdate.job Apple Software Update (Verified) Apple Computer, Inc. c:\programmi\apple software update\softwareupdate.exe
+ RegClean Scheduled Scan.job File not found: C:\Programmi\RegClean\RegClean.exe
+ Verifica aggiornamenti per Windows Live Toolbar.job MSN Search Toolbar Scheduled Update Utility (Not verified) Microsoft Corporation c:\programmi\windows live toolbar\msntbup.exe
HKLM\System\CurrentControlSet\Services
+ Apple Mobile Device Fornisce l'interfaccia per i dispositivi mobili Apple. (Not verified) Apple, Inc. c:\programmi\file comuni\apple\mobile device support\bin\applemobiledeviceservice.exe
+ aswUpdSv Brinda actualizaciones automáticas para el antivirus avast!. (Verified) ALWIL Software c:\programmi\alwil software\avast4\aswupdsv.exe
+ ATI Smart ATI Smart c:\windows\system32\ati2sgag.exe
+ avast! Antivirus Administra e implementa los servicios de antivirus avast! para este ordenador/computador/PC. Esto incluye protección residente, el baúl de virus y el programador de tareas. (Verified) ALWIL Software c:\programmi\alwil software\avast4\ashserv.exe
+ AVG Anti-Spyware Guard AVG Anti-Spyware guard (Verified) GRISOFT LTD c:\programmi\grisoft\avg anti-spyware 7.5\guard.exe
+ LightScribeService Used by the LightScribe software components to support 3rd party disc labeling applications using the LightScribe COM Application Programming Interface (LSCAPI). This service needs to run for LightScribe direct disc labeling to work. (Not verified) Hewlett-Packard Company c:\programmi\file comuni\lightscribe\lssrvc.exe
HKLM\System\CurrentControlSet\Services
+ Aavmker4 avast! Base Kernel-Mode Device Driver for Windows NT/2000/XP (Verified) ALWIL Software c:\windows\system32\drivers\aavmker4.sys
+ aswMon2 avast! File System Filter Driver for Windows XP (Verified) ALWIL Software c:\windows\system32\drivers\aswmon2.sys
+ aswRdr avast! TDI RDR Driver (Verified) ALWIL Software c:\windows\system32\drivers\aswrdr.sys
+ aswTdi avast! TDI Filter Driver (Verified) ALWIL Software c:\windows\system32\drivers\aswtdi.sys
+ AvgAsCln AVG7 Clean Driver (Not verified) GRISOFT, s.r.o. c:\windows\system32\drivers\avgascln.sys
+ cdrbsvsd CD-ROM Filter Driver for Windows2000/xp (Not verified) B.H.A Corporation c:\windows\system32\drivers\cdrbsvsd.sys
+ Changer File not found: C:\WINDOWS\System32\Drivers\Changer.sys
+ GEARAspiWDM CD/DVD Class Filter Driver (Verified) GEAR Software Inc. c:\windows\system32\drivers\gearaspiwdm.sys
+ i2omgmt File not found: C:\WINDOWS\System32\Drivers\i2omgmt.sys
+ JL2005 Universal Serial Bus Camera Driver (Not verified) Windows (R) 2000 DDK provider c:\windows\system32\drivers\toywdm.sys
+ lbrtfdc File not found: C:\WINDOWS\System32\Drivers\lbrtfdc.sys
+ PCIDump File not found: C:\WINDOWS\System32\Drivers\PCIDump.sys
+ PDCOMP File not found: C:\WINDOWS\System32\Drivers\PDCOMP.sys
+ PDFRAME File not found: C:\WINDOWS\System32\Drivers\PDFRAME.sys
+ PDRELI File not found: C:\WINDOWS\System32\Drivers\PDRELI.sys
+ PDRFRAME File not found: C:\WINDOWS\System32\Drivers\PDRFRAME.sys
+ pfc Padus(R) ASPI Shell (Not verified) Padus, Inc. c:\windows\system32\drivers\pfc.sys
+ PxHelp20 Px Engine Device Driver for Windows 2000/XP (Not verified) Sonic Solutions c:\windows\system32\drivers\pxhelp20.sys
+ SetupNT c:\windows\system32\setupnt.sys
+ sonypvs1 Sony Digital Imaging (Not verified) Sony Corporation c:\windows\system32\drivers\sonypvs1.sys
+ tmcomm TrendMicro Common Module (Verified) Trend Micro, Inc. c:\windows\system32\drivers\tmcomm.sys
+ usbsermpt USB Modem Driver (Not verified) Microsoft Corporation c:\windows\system32\drivers\usbsermpt.sys
+ WDICA File not found: C:\WINDOWS\System32\Drivers\WDICA.sys
HKLM\System\CurrentControlSet\Control\Session Manager\BootExecute
+ autocheck autochk * Programma di utilità Auto Check (Not verified) Microsoft Corporation c:\windows\system32\autochk.exe
HKLM\System\CurrentControlSet\Control\Session Manager\SetupExecute
HKLM\System\CurrentControlSet\Control\Session Manager\Execute
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options
HKLM\Software\Microsoft\Command Processor\Autorun
HKCU\Software\Microsoft\Command Processor\Autorun
HKLM\SOFTWARE\Classes\Exefile\Shell\Open\Command\(Default)
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\Appinit_Dlls
+ C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL Google Desktop (Not verified) Google c:\programmi\google\google desktop search\googledesktopnetwork3.dll
HKLM\System\CurrentControlSet\Control\Session Manager\KnownDlls
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\System
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\UIHost
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GinaDLL
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Taskman
HKCU\Control Panel\Desktop\Scrnsave.exe
HKLM\System\CurrentControlSet\Control\BootVerificationProgram\ImageName
HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9
HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors
+ EPSON V6 2KMonitor EPSON Bi-directional Monitor (Not verified) SEIKO EPSON CORPORATION c:\windows\system32\ebpmon24.dll
HKLM\SYSTEM\CurrentControlSet\Control\SecurityProviders\SecurityProviders
HKLM\SYSTEM\CurrentControlSet\Control\Lsa\Authentication Packages
HKLM\SYSTEM\CurrentControlSet\Control\Lsa\Notification Packages
HKLM\SYSTEM\CurrentControlSet\Control\Lsa\Security Packages
HKLM\SYSTEM\CurrentControlSet\Control\NetworkProvider\Order
torruns