Ecco il file log di Combix
Grazie per il controllo
ComboFix 10-04-10.02 - Utente 11/04/2010 18.31.19.2.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.39.1040.18.1023.415 [GMT 2:00]
Eseguito da: c:\documents and settings\Utente\Documenti\Download\ComboFix.exe
AV: avast! antivirus 4.8.1368 [VPS 100411-0] *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: PC Tools Firewall Plus *disabled* {ABBD5028-5A95-4B6D-996E-98D64AE88D52}
.
((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\documents and settings\Administrator\Dati applicazioni\020000003c84f05b705C.manifest
c:\documents and settings\Administrator\Dati applicazioni\020000003c84f05b705O.manifest
c:\documents and settings\Administrator\Dati applicazioni\020000003c84f05b705P.manifest
c:\documents and settings\Administrator\Dati applicazioni\020000003c84f05b705S.manifest
c:\documents and settings\Utente\Dati applicazioni\020000003c84f05b705C.manifest
c:\documents and settings\Utente\Dati applicazioni\020000003c84f05b705O.manifest
c:\documents and settings\Utente\Dati applicazioni\020000003c84f05b705P.manifest
c:\documents and settings\Utente\Dati applicazioni\020000003c84f05b705S.manifest
c:\documents and settings\Utente\Dati applicazioni\020000003c84f05b871C.manifest
c:\documents and settings\Utente\Dati applicazioni\020000003c84f05b871O.manifest
c:\documents and settings\Utente\Dati applicazioni\020000003c84f05b871P.manifest
c:\documents and settings\Utente\Dati applicazioni\020000003c84f05b871S.manifest
c:\documents and settings\Utente\Dati applicazioni\SystemProc
c:\programmi\Mozilla Firefox\extensions\{9CE11043-9A15-4207-A565-0C94C42D590D}
c:\programmi\Mozilla Firefox\extensions\{9CE11043-9A15-4207-A565-0C94C42D590D}\chrome.manifest
c:\programmi\Mozilla Firefox\extensions\{9CE11043-9A15-4207-A565-0C94C42D590D}\chrome\content\timer.xul
c:\programmi\Mozilla Firefox\extensions\{9CE11043-9A15-4207-A565-0C94C42D590D}\install.rdf
c:\windows\system32\1107835820
c:\windows\system32\SysWoW32
c:\windows\system32\SysWoW32\@u710936209v0
c:\windows\system32\SysWoW32\@u710936209v1
c:\windows\system32\SysWoW32\@u710936209v2
c:\windows\system32\SysWoW32\@u710936209v3
c:\windows\system32\SysWoW32\@u710936209v5
c:\windows\system32\SysWoW32\_u710936209v0
c:\windows\system32\SysWoW32\_u710936209v1
c:\windows\system32\SysWoW32\_u710936209v2
c:\windows\system32\SysWoW32\_u710936209v3
c:\windows\system32\SysWoW32\_u710936209v5
c:\windows\system32\SysWoW32\mu710936209v4
c:\windows\system32\SysWoW32\mu710936209v4.kwd
c:\windows\system32\SysWoW32\mu710936209v5
c:\windows\system32\SysWoW32\mu710936209v5.kwd
c:\windows\system32\SysWoW32\mu710936209v6
c:\windows\system32\SysWoW32\mu710936209v6.kwd
c:\windows\system32\SysWoW32\mu710936209v7
c:\windows\system32\SysWoW32\mu710936209v7.kwd
c:\windows\system32\SysWoW32\wu710936209v0
c:\windows\system32\SysWoW32\wu710936209v0.kwd
c:\windows\system32\SysWoW32\wu710936209v1
c:\windows\system32\SysWoW32\wu710936209v1.kwd
c:\windows\system32\SysWoW32\wu710936209v2
c:\windows\system32\SysWoW32\wu710936209v2.kwd
c:\windows\system32\SysWoW32\wu710936209v3
c:\windows\system32\SysWoW32\wu710936209v3.kwd
c:\windows\system32\unrar.exe
c:\windows\TEMP\logishrd\LVPrcInj01.dll
.
((((((((((((((((((((((((( Files Creati Da 2010-03-11 al 2010-04-11 )))))))))))))))))))))))))))))))))))
.
2010-03-26 17:29 . 2010-03-26 17:29 21276144 ----a-w- c:\documents and settings\Utente\Dati applicazioni\Real\Update\setup3.10\rp\RealPlayerSPGold_it.exe
2010-03-26 17:29 . 2010-03-26 17:29 8405312 ----a-w- c:\documents and settings\Utente\Dati applicazioni\Real\Update\setup3.10\gtb\GOOGLE_TOOLBAR\GoogleToolbarInstaller.exe
2010-03-26 17:28 . 2010-03-26 17:28 149000 ----a-w- c:\documents and settings\Utente\Dati applicazioni\Real\Update\setup3.10\chr_helper\LaunchHelper.exe
2010-03-26 17:28 . 2010-03-26 17:28 10309448 ----a-w- c:\documents and settings\Utente\Dati applicazioni\Real\Update\setup3.10\chr\ChromeInstaller.exe
2010-03-26 17:28 . 2010-03-26 17:28 79368 ----a-w- c:\documents and settings\Utente\Dati applicazioni\Real\Update\setup3.10\RUP\vista.exe
2010-03-26 17:28 . 2010-03-26 17:28 52288 ----a-w- c:\documents and settings\Utente\Dati applicazioni\Real\Update\setup3.10\RUP\inst_config\gtapi.dll
2010-03-26 17:28 . 2010-03-26 17:28 64000 ----a-w- c:\documents and settings\Utente\Dati applicazioni\Real\Update\setup3.10\RUP\inst_config\gcapi_dll.dll
2010-03-26 17:28 . 2010-03-26 17:28 50688 ----a-w- c:\documents and settings\Utente\Dati applicazioni\Real\Update\setup3.10\RUP\inst_config\fftbapi.dll
2010-03-26 17:28 . 2010-03-26 17:28 49152 ----a-w- c:\documents and settings\Utente\Dati applicazioni\Real\Update\setup3.10\RUP\inst_config\CarboniteCompatibility.dll
2010-03-26 17:28 . 2010-03-26 17:28 118784 ----a-w- c:\documents and settings\Utente\Dati applicazioni\Real\Update\setup3.10\RUP\inst_config\compat.dll
2010-03-19 16:57 . 2010-02-12 10:03 293376 ------w- c:\windows\system32\browserchoice.exe
2010-03-17 16:55 . 2010-03-17 16:55 443912 ----a-w- c:\documents and settings\Utente\Dati applicazioni\Real\Update\setup3.10\setup.exe
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-04-11 16:46 . 2010-01-17 19:44 -------- d-----w- c:\documents and settings\Utente\Dati applicazioni\Skype
2010-04-11 16:43 . 2010-01-31 09:57 -------- d-----w- c:\programmi\DNA
2010-04-11 16:43 . 2010-01-31 09:57 -------- d-----w- c:\documents and settings\Utente\Dati applicazioni\DNA
2010-04-11 16:43 . 2007-11-11 18:10 -------- d---a-w- c:\documents and settings\All Users\Dati applicazioni\TEMP
2010-04-11 16:25 . 2010-02-15 06:53 -------- d-----w- c:\programmi\Crawler
2010-04-11 16:15 . 2009-08-12 14:07 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Spyware Terminator
2010-04-11 15:02 . 2009-08-12 14:07 -------- d-----w- c:\programmi\Spyware Terminator
2010-04-11 15:00 . 2009-08-12 14:07 -------- d-----w- c:\documents and settings\Utente\Dati applicazioni\Spyware Terminator
2010-04-11 14:08 . 2008-04-27 13:55 -------- d-----w- c:\documents and settings\Utente\Dati applicazioni\skypePM
2010-04-09 17:18 . 2007-11-11 20:49 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Spybot - Search & Destroy
2010-04-07 19:13 . 2009-07-17 15:33 -------- d-----w- c:\documents and settings\Utente\Dati applicazioni\FrostWire
2010-04-07 18:55 . 2007-04-09 08:28 76984 ----a-w- c:\documents and settings\Utente\Impostazioni locali\Dati applicazioni\GDIPFONTCACHEV1.DAT
2010-04-07 11:07 . 2006-03-02 12:00 93140 ----a-w- c:\windows\system32\perfc010.dat
2010-04-07 11:07 . 2006-03-02 12:00 506842 ----a-w- c:\windows\system32\perfh010.dat
2010-03-22 17:28 . 2010-03-01 20:18 664 ----a-w- c:\windows\system32\d3d9caps.dat
2010-03-17 17:04 . 2007-11-15 20:42 -------- d-----w- c:\programmi\Mozilla Thunderbird
2010-03-11 12:30 . 2006-03-02 12:00 832512 ----a-w- c:\windows\system32\wininet.dll
2010-03-11 12:30 . 2006-03-02 12:00 78336 ----a-w- c:\windows\system32\ieencode.dll
2010-03-11 12:30 . 2006-03-02 12:00 17408 ------w- c:\windows\system32\corpol.dll
2010-03-01 18:32 . 2010-03-01 18:32 86400 ----a-w- c:\windows\~GLC0000.TMP
2010-02-28 11:40 . 2010-02-28 11:40 0 ----a-w- c:\documents and settings\Utente\Dati applicazioni\FrostWire\.NetworkShare\Incomplete\T-4506256-LimeWireWin4.16.6.exe
2010-02-14 14:19 . 2010-02-14 14:19 2131336 ----a-w- c:\documents and settings\Utente\Dati applicazioni\Mozilla\Firefox\Profiles\0qss05dk.default\extensions\toolbar@ask.com\chrome\temp\askToolbar.exe
2010-02-12 08:28 . 2007-08-12 14:10 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Messenger Plus!
2010-02-12 06:55 . 2010-02-12 06:55 -------- d-----w- c:\programmi\Ask Search Assistant
2010-02-12 06:55 . 2007-08-12 11:18 -------- d-----w- c:\programmi\Messenger Plus! Live
2010-01-31 10:00 . 2010-01-31 09:57 76350411 ----a-w- c:\documents and settings\Utente\AD1988AB_Audio_V6585_XpVistaWin7.zip
2010-01-17 19:46 . 2010-01-17 19:46 56 ---ha-w- c:\windows\system32\ezsidmv.dat
2010-01-17 17:32 . 2010-01-17 14:29 230432 ----a-w- C:\PA207.DAT
2007-11-04 15:58 . 2007-04-09 15:55 450114 ----a-w- c:\programmi\RegSeeker.zip
2007-04-09 20:18 . 2007-04-09 20:18 2558732 ----a-w- c:\programmi\MV790_MV800_Series_CUG_IT.pdf
2006-01-11 11:30 . 2006-01-11 11:30 19968 ----a-w- c:\programmi\Gif98.oca
1998-04-14 06:41 . 1998-04-14 06:41 18700 ----a-w- c:\programmi\B_los.gif
1998-03-16 21:49 . 1998-03-16 21:49 1971 ----a-w- c:\programmi\Alert.gif
.
((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MsnMsgr"="c:\programmi\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856]
"swg"="c:\programmi\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-08-02 68856]
"Nokia.PCSync"="c:\programmi\Nokia\Nokia PC Suite 6\PCSync2.exe" [2008-03-26 1232896]
"PC Suite Tray"="c:\programmi\Nokia\Nokia PC Suite 6\PCSuite.exe" [2008-03-28 1079296]
"SpywareTerminatorUpdate"="c:\programmi\Spyware Terminator\SpywareTerminatorUpdate.exe" [2009-08-12 3055616]
"GBMLite8AgentLaCie"="c:\programmi\LaCie\Genie Backup Assistant\GBMAgent.exe" [2008-09-18 189056]
"Messenger (Yahoo!)"="c:\progra~1\Yahoo!\Messenger\YahooMessenger.exe" [2009-11-10 5244216]
"Logitech Vid"="c:\programmi\Logitech\Logitech Vid\vid.exe" [2009-07-16 5458704]
"Skype"="c:\programmi\Skype\Phone\Skype.exe" [2009-10-09 25623336]
"BitTorrent DNA"="c:\programmi\DNA\btdna.exe" [2010-01-31 323392]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-08-11 7630848]
"nwiz"="nwiz.exe" [2006-08-11 1519616]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2006-08-11 86016]
"JMB36X Configure"="c:\windows\system32\JMRaidTool.exe" [2006-06-02 385024]
"OlStatusMon"="c:\programmi\Olivetti\ANY_WAY\olDvcStatus.exe" [2005-08-05 90112]
"Cobian Backup 8 interface"="c:\programmi\Cobian Backup 8\cbInterface.exe" [2007-03-20 2424320]
"TkBellExe"="c:\programmi\File comuni\Real\Update_OB\realsched.exe" [2007-04-30 185896]
"00PCTFW"="c:\programmi\PC Tools Firewall Plus\FirewallGUI.exe" [2008-12-11 2652056]
"Adobe Reader Speed Launcher"="c:\programmi\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696]
"SpywareTerminator"="c:\progra~1\SPYWAR~2\SpywareTerminatorShield.exe" [2009-08-12 2171904]
"SunJavaUpdateSched"="c:\programmi\Java\jre6\bin\jusched.exe" [2010-01-05 149280]
"QuickTime Task"="c:\programmi\QuickTime\qttask.exe" [2009-11-10 417792]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-11-24 81000]
"ISUSPM Startup"="c:\progra~1\FILECO~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2004-06-14 221184]
"ISUSScheduler"="c:\programmi\File comuni\InstallShield\UpdateService\issch.exe" [2004-06-16 81920]
"GBMLite8AgentLaCie"="c:\programmi\LaCie\Genie Backup Assistant\GBMAgent.exe" [2008-09-18 189056]
"PAC207_Monitor"="c:\windows\PixArt\PAC207\Monitor.exe" [2007-12-10 323584]
"LogitechQuickCamRibbon"="c:\programmi\Logitech\Logitech WebCam Software\LWS.exe" [2009-10-14 2793304]
"IMJPMIG8.1"="c:\windows\IME\imjp8_1\IMJPMIG.EXE" [2006-03-02 208952]
"IMEKRMIG6.1"="c:\windows\ime\imkr6_1\IMEKRMIG.EXE" [2006-03-02 44032]
"MSPY2002"="c:\windows\system32\IME\PINTLGNT\ImScInst.exe" [2006-03-02 59392]
"PHIME2002ASync"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2006-03-02 455168]
"PHIME2002A"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2006-03-02 455168]
"SoundMAXPnP"="c:\programmi\Analog Devices\Core\smax4pnp.exe" [2007-10-09 1036288]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
c:\documents and settings\Utente\Menu Avvio\Programmi\Esecuzione automatica\
Utilit… controllo supporti di Picture Motion Browser.lnk - c:\programmi\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe [2008-7-5 376832]
Watch.lnk - c:\windows\twain_32\A4CIS600\WATCH.exe [2007-4-15 372736]
c:\documents and settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\
Adobe Reader Synchronizer.lnk - c:\programmi\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe [2007-5-11 738968]
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Programmi\\Messenger\\msmsgs.exe"=
"c:\\Programmi\\IVT Corporation\\BlueSoleil\\BlueSoleil.exe"=
"c:\\Programmi\\LimeWire\\LimeWire.exe"=
"c:\\Programmi\\Yahoo!\\Messenger\\YahooMessenger.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Programmi\\iTunes\\iTunes.exe"=
"c:\\Programmi\\Bonjour\\mDNSResponder.exe"=
"c:\\Programmi\\FrostWire\\FrostWire.exe"=
"c:\\Programmi\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Programmi\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Programmi\\Windows Live\\Sync\\WindowsLiveSync.exe"=
"c:\\Programmi\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Programmi\\DNA\\btdna.exe"=
"c:\\Programmi\\Logitech\\Logitech Vid\\Vid.exe"=
"c:\\Programmi\\Skype\\Phone\\Skype.exe"=
R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [15/12/2009 13.48.34 114768]
R1 pctgntdi;pctgntdi;c:\windows\system32\drivers\pctgntdi.sys [13/12/2009 15.32.53 159600]
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [12/08/2009 16.07.19 142592]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [15/12/2009 13.48.34 20560]
R2 Network WanMiniport First Position;Network WanMiniport First Position;c:\programmi\Telecom Italia\WanMiniport1st\srvany.exe [22/11/2008 9.29.38 8192]
R2 olMntrService;olMntrService;c:\programmi\Olivetti\ANY_WAY\olMntrService.exe [05/08/2005 13.21.26 69632]
R2 PCTAppEvent;PCTAppEvent Driver;c:\windows\system32\drivers\PCTAppEvent.sys [13/12/2009 15.33.00 73840]
R3 pctplfw;pctplfw;c:\windows\system32\drivers\pctplfw.sys [13/12/2009 15.32.03 95640]
R3 SFC4;SFC4;c:\windows\system32\drivers\SFC4.SYS [30/12/2007 10.12.34 41472]
S3 Dual Mode;Dual Mode Video Capture;c:\windows\system32\drivers\CoachVc.sys [15/04/2007 18.13.14 44928]
S3 PAC207;Trust 100K Series Webcam;c:\windows\system32\drivers\PFC027.SYS [17/01/2010 16.00.56 618112]
.
Contenuto della cartella 'Scheduled Tasks'
2010-03-20 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\programmi\Apple Software Update\SoftwareUpdate.exe [2008-04-11 11:34]
.
.
------- Scansione supplementare -------
.
uStart Page = hxxp://www.google.it/
uSearchMigratedDefaultURL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
uDefault_Search_URL = hxxp://www.google.com/ie
uInternet Settings,ProxyOverride = *.local
uSearchURL,(Default) = hxxp://it.rd.yahoo.com/customize/ie/defaults/su/msgr9/*http://it.search.yahoo.com
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Crawler Search - tbr:iemenu
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000
TCP: {A81CD129-8E43-4312-BEE6-B9031E3C4A30} = 212.216.112.222,212.216.172.162
Handler: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - c:\programmi\Crawler\ctbr.dll
FF - ProfilePath - c:\documents and settings\Utente\Dati applicazioni\Mozilla\Firefox\Profiles\0qss05dk.default\
FF - prefs.js: browser.search.selectedEngine -
FF - prefs.js: browser.startup.homepage - hxxp://www.google.it/
FF - prefs.js: keyword.URL - hxxp://www.crawler.com/search/dispatcher.aspx?tp=aus&tbid=60446&qkw=
FF - component: c:\programmi\Crawler\firefox\components\xcomm.dll
FF - component: c:\programmi\Crawler\firefox\components\xshared.dll
FF - component: c:\programmi\Crawler\firefox\components\xsupport.dll
FF - component: c:\programmi\Crawler\firefox\components\xwsg.dll
FF - plugin: c:\programmi\Google\Picasa3\npPicasa3.dll
FF - plugin: c:\programmi\Windows Live\Photo Gallery\NPWLPG.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
---- FIREFOX POLICIES ----
pref(dom.disable_open_during_load, true);FF - user.js: yahoo.ytff.general.dontshowhpoffer - truec:\programmi\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\programmi\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\programmi\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\programmi\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
.
- - - - CHIAVI ORFANE RIMOSSE - - - -
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
AddRemove-uTorrent - c:\programmi\uTorrent\uTorrent.exe
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.netRootkit scan 2010-04-11 18:42
Windows 5.1.2600 Service Pack 3 NTFS
scansione processi nascosti ...
scansione entrate autostart nascoste ...
Scansione files nascosti ...
Scansione completata con successo
Files nascosti: 0
**************************************************************************
.
--------------------- Dlls caricate dai processi in esecuzione ---------------------
- - - - - - - > 'explorer.exe'(8084)
c:\windows\system32\WININET.dll
c:\windows\TEMP\logishrd\LVPrcInj01.dll
c:\windows\system32\WPDShServiceObj.dll
c:\programmi\Nokia\Nokia PC Suite 6\phonebrowser.dll
c:\programmi\Nokia\Nokia PC Suite 6\NGSCM.DLL
c:\programmi\Nokia\Nokia PC Suite 6\Lang\PhoneBrowser_ita.nlr
c:\programmi\Nokia\Nokia PC Suite 6\Resource\PhoneBrowser_Nokia.ngr
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Altri processi in esecuzione ------------------------
.
c:\programmi\PC Tools Firewall Plus\FWService.exe
c:\programmi\Alwil Software\Avast4\aswUpdSv.exe
c:\programmi\Alwil Software\Avast4\ashServ.exe
c:\programmi\File comuni\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\programmi\IVT Corporation\BlueSoleil\BTNtService.exe
c:\programmi\Bonjour\mDNSResponder.exe
c:\programmi\Cobian Backup 8\cbService.exe
c:\programmi\Java\jre6\bin\jqs.exe
c:\programmi\File comuni\LogiShrd\LVMVFM\LVPrcSrv.exe
c:\programmi\CDBurnerXP\NMSAccessU.exe
c:\programmi\Telecom Italia\WanMiniport1st\WanMiniport1st_srv.exe
c:\windows\system32\nvsvc32.exe
c:\programmi\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\programmi\Spyware Terminator\sp_rsser.exe
c:\programmi\File comuni\Ulead Systems\DVD\ULCDRSvr.exe
c:\programmi\Yahoo!\SoftwareUpdate\YahooAUService.exe
c:\programmi\Alwil Software\Avast4\ashMaiSv.exe
c:\programmi\Alwil Software\Avast4\ashWebSv.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\windows\system32\wscntfy.exe
c:\programmi\File comuni\Logishrd\LQCVFX\COCIManager.exe
c:\programmi\PC Connectivity Solution\ServiceLayer.exe
c:\programmi\PC Connectivity Solution\Transports\NclUSBSrv.exe
c:\programmi\PC Connectivity Solution\Transports\NclRSSrv.exe
c:\programmi\File comuni\Nokia\MPAPI\MPAPI3s.exe
c:\programmi\Skype\Plugin Manager\skypePM.exe
c:\programmi\Java\jre6\bin\jucheck.exe
.
**************************************************************************
.
Ora fine scansione: 2010-04-11 18:48:32 - Il pc è stato riavviato
ComboFix-quarantined-files.txt 2010-04-11 16:48
ComboFix2.txt 2009-12-22 20:36
Pre-Run: 2.433.953.792 byte disponibili
Post-Run: 3.890.991.104 byte disponibili
- - End Of File - - 64EF9B31C61AFC919FA9C9034B38E017