Benvenuto Ospite Cerca | Topic Attivi | Utenti | | Log In | Registra

Aiutamici Forum » Computer & Internet » Problemi Informatici » Errore di exception all'avvio di XP (RISOLTO)

2 pages: [1] 2
Errore di exception all'avvio di XP (RISOLTO) Opzioni
Topic Precedente · Topic Sucessivo
beppe50
Inviato: Friday, November 25, 2011 3:29:03 PM

Rank: AiutAmico

Iscritto dal : 11/28/2009
Posts: 1,475
Ciao a tutti,
ancora una volta vi chiedo aiuto per una nuova segnalazione di errore all'avvio di XP.
La segnalazione è la seguente:

"Si è verificato l'errore di exception eccezione software sconosciuta (0x0eedfade) nell'applicazione alla posizione 0x7c812afb"

In attesa ringrazio e saluto
beppe50
L’allegria scalda il cuore e trasforma la tristezza in sorrisi autentici.
Torna in alto
 
Sponsor
Inviato: Friday, November 25, 2011 3:29:03 PM

 
Torna in alto
 
a.roselli
Inviato: Friday, November 25, 2011 8:54:44 PM

Rank: Admin

Iscritto dal : 10/4/2000
Posts: 19,054
Il computer si riavvia o compare sempre lo stesso errore?


alfonso_aiutamici@hotmail.it
Torna in alto
 
wolfestein
Inviato: Friday, November 25, 2011 10:43:44 PM

Rank: AiutAmico

Iscritto dal : 2/15/2009
Posts: 15,948
Può essere un anche un virus a causare questo errore.
Fai delle scansioni con Malwarebytes e Hijack e metti i log che rilasciano nella sezione Sicurezza virus specificando il sistema operativo che hai sul pc in questione.
P.S.Hai installato qualche nuova applicazxione ultimamente?
\
Torna in alto
 
beppe50
Inviato: Friday, November 25, 2011 11:14:02 PM

Rank: AiutAmico

Iscritto dal : 11/28/2009
Posts: 1,475
a.roselli ha scritto:
Il computer si riavvia o compare sempre lo stesso errore?


L'errore compare all'accensione quindi io non faccio altro che chiudere la finestra cliccando su "X" e poi proseguo tranquillamente a fare le mie cose senza, almeno così mi sembra, avere apparenti problemi.

Per quanto riguarda ultimi programmi installati ho installato K-Lite_Codec_Pack_760_Full ma l'ho già disinstallato con Revo Uninstaller.
L’allegria scalda il cuore e trasforma la tristezza in sorrisi autentici.
Torna in alto
 
beppe50
Inviato: Friday, November 25, 2011 11:40:27 PM

Rank: AiutAmico

Iscritto dal : 11/28/2009
Posts: 1,475
wolfestein, ti chiedo venia, ma non trovo nel forum la sezione sicurezza virus quindi ti posto qui il log ottenuto con Hijack e aspetto istruzioni, grazie.

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23.38.18, on 25/11/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Programmi\Sandboxie\SbieSvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Programmi\Nero\Nero 9\InCD\InCDSrv.exe
C:\Programmi\AVG\AVG9\avgchsvx.exe
C:\Programmi\AVG\AVG9\avgrsx.exe
C:\Programmi\AVG\AVG9\avgcsrvx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Programmi\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe
C:\PROGRA~1\AVG\AVG9\avgtray.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe
C:\Programmi\Unlocker\UnlockerAssistant.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Programmi\File comuni\Java\Java Update\jusched.exe
C:\Programmi\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programmi\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Programmi\AVG\AVG9\Identity Protection\agent\bin\avgidsmonitor.exe
C:\Programmi\Logitech\SetPoint\SetPoint.exe
C:\Programmi\File comuni\Logishrd\KHAL2\KHALMNPR.EXE
C:\Programmi\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
C:\Programmi\File comuni\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Programmi\ASUS\AsSysCtrlService\1.00.00\AsSysCtrlService.exe
C:\Programmi\AVG\AVG9\avgwdsvc.exe
C:\Programmi\AVG\AVG9\avgfws9.exe
C:\Programmi\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\crypserv.exe
C:\Programmi\File comuni\MAGIX Services\Database\bin\FABS.exe
C:\Programmi\AVG\AVG9\avgam.exe
C:\Programmi\AVG\AVG9\avgnsx.exe
C:\Programmi\Java\jre6\bin\jqs.exe
C:\Programmi\File comuni\LightScribe\LSSrvc.exe
C:\Program Files\Conversions Plus\FORMATM.EXE
C:\Programmi\File comuni\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Programmi\AVG\AVG9\avgcsrvx.exe
C:\Programmi\File comuni\Nero\Nero BackItUp 4\NBService.exe
C:\Programmi\Nero\Nero 9\InCD\NBHRegInCDSrv.exe
C:\Programmi\Nitro PDF\Reader\NitroPDFReaderDriverService.exe
C:\Programmi\Macrium\Reflect\ReflectService.exe
C:\Programmi\Photodex\ProShowProducer\ScsiAccess.exe
c:\Programmi\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\WINDOWS\system32\svchost.exe
C:\Programmi\UPHClean\uphclean.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Programmi\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Programmi\Sandboxie\SbieCtrl.exe
C:\Programmi\PC Connectivity Solution\ServiceLayer.exe
C:\Programmi\PC Connectivity Solution\Transports\NclUSBSrv.exe
C:\Programmi\PC Connectivity Solution\Transports\NclRSSrv.exe
C:\PROGRA~1\FILECO~1\Nokia\MPLATF~1\NOKIAM~1.EXE
C:\Programmi\Microsoft Office\Office12\OUTLOOK.EXE
C:\Programmi\Internet Explorer\IEXPLORE.EXE
C:\Programmi\Internet Explorer\IEXPLORE.EXE
C:\Programmi\Trend Micro\HiJackThis\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Dati applicazioni\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (file missing)
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Documents and Settings\Utente\Desktop\BitComet_1.30\tools\bitcometbho.dll (file missing)
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Programmi\AVG\AVG9\avgssie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Programmi\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Guida per l'accesso a Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programmi\File comuni\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Programmi\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programmi\Google\GoogleToolbarNotifier\5.7.7018.1622\swg.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Programmi\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programmi\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Programmi\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: (no name) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - (no file)
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Programmi\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Programmi\Unlocker\UnlockerAssistant.exe"
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programmi\File comuni\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Programmi\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programmi\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\programmi\real\realplayer\update\realsched.exe" -osboot
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] "C:\Programmi\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [AdobeUpdater] "C:\Programmi\File comuni\Adobe\Updater5\AdobeUpdater.exe"
O4 - HKCU\..\Run: [Device Detection] C:\Programmi\PhotoSi\MyComposer\dd.exe
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Programmi\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO DI RETE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Logitech SetPoint.lnk = C:\Programmi\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: Aggiungi a PDF esistente - res://C:\Programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Converti destinazione link in Adobe PDF - res://C:\Programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Converti destinazione link in file PDF esistente - res://C:\Programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Converti i link selezionati in Adobe PDF - res://C:\Programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Converti i link selezionati in file PDF esistente - res://C:\Programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Converti in Adobe PDF - res://C:\Programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Converti selezione in Adobe PDF - res://C:\Programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Converti selezione in file PDF esistente - res://C:\Programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Scarica con Free Download Manager - file://C:\Programmi\Free Download Manager\dllink.htm
O8 - Extra context menu item: Scarica i video con Free Download Manager - file://C:\Programmi\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Scarica selezionati con Free Download Manager - file://C:\Programmi\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Scarica tutto con Free Download Manager - file://C:\Programmi\Free Download Manager\dlall.htm
O8 - Extra context menu item: Scarica tutto usando BitComet - res://C:\Documents and Settings\Utente\Desktop\BitComet_1.30\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: Scarica usando &BitComet - res://C:\Documents and Settings\Utente\Desktop\BitComet_1.30\BitComet.exe/AddLink.htm
O9 - Extra button: Inserisci blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programmi\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: Inserisci &blog in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programmi\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Invia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: I&nvia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Run WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Programmi\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra 'Tools' menuitem: Launch WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Programmi\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra button: Ricerche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Documents and Settings\Utente\Desktop\BitComet_1.30\tools\bitcometbho.dll/206 (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: @C:\Programmi\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: @C:\Programmi\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
O16 - DPF: {3D3B42C2-11BF-4732-A304-A01384B70D68} (UploadListView Class) - http://picasaweb.google.it/s/v/60.07/uploader2.cab
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Programmi\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Programmi\AVG\AVG9\avgpp.dll
O20 - Winlogon Notify: avgrsstarter - avgrsstx.dll (file missing)
O22 - SharedTaskScheduler: Precaricatore Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Daemon di cache delle categorie di componenti - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: ANIWZCSd Service (ANIWZCSdService) - Wireless Service - C:\Programmi\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Programmi\File comuni\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - Unknown owner - C:\Programmi\ASUS\AsSysCtrlService\1.00.00\AsSysCtrlService.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Programmi\File comuni\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: AVG WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Programmi\AVG\AVG9\avgwdsvc.exe
O23 - Service: AVG Firewall (avgfws9) - AVG Technologies CZ, s.r.o. - C:\Programmi\AVG\AVG9\avgfws9.exe
O23 - Service: AVG9IDSAgent (AVGIDSAgent) - AVG Technologies CZ, s.r.o. - C:\Programmi\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe
O23 - Service: Servizio Bonjour (Bonjour Service) - Apple Inc. - C:\Programmi\Bonjour\mDNSResponder.exe
O23 - Service: Crypkey License - CrypKey (Canada) Ltd. - C:\WINDOWS\SYSTEM32\crypserv.exe
O23 - Service: FABS - Helping agent for MAGIX media database (Fabs) - MAGIX AG - C:\Programmi\File comuni\MAGIX Services\Database\bin\FABS.exe
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Programmi\File comuni\MAGIX Services\Database\bin\fbserver.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Programmi\File comuni\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Servizio di Google Update (gupdate) (gupdate) - Google Inc. - C:\Programmi\Google\Update\GoogleUpdate.exe
O23 - Service: Servizio Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Programmi\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Programmi\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programmi\File comuni\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: InCD Helper (InCDSrv) - Nero AG - C:\Programmi\Nero\Nero 9\InCD\InCDSrv.exe
O23 - Service: Servizio iPod (iPod Service) - Apple Inc. - C:\Programmi\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Programmi\Java\jre6\bin\jqs.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Programmi\File comuni\Logitech\Bluetooth\LBTServ.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Programmi\File comuni\LightScribe\LSSrvc.exe
O23 - Service: MacFormatService - DataViz Inc. - C:\Program Files\Conversions Plus\FORMATM.EXE
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Programmi\File comuni\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: Nero Registry InCD Service (NeroRegInCDSrv) - Nero AG - C:\Programmi\Nero\Nero 9\InCD\NBHRegInCDSrv.exe
O23 - Service: NitroPDFReaderDriverCreatorReadSpool (NitroReaderDriverReadSpool) - Nitro PDF Software - C:\Programmi\Nitro PDF\Reader\NitroPDFReaderDriverService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Macrium Reflect Image Mounting Service (ReflectService) - Unknown owner - C:\Programmi\Macrium\Reflect\ReflectService.exe
O23 - Service: Sandboxie Service (SbieSvc) - SANDBOXIE L.T.D - C:\Programmi\Sandboxie\SbieSvc.exe
O23 - Service: ScsiAccess - Unknown owner - C:\Programmi\Photodex\ProShowProducer\ScsiAccess.exe
O23 - Service: ServiceLayer - Nokia - C:\Programmi\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: UPnPService - Magix AG - C:\Programmi\File comuni\MAGIX Shared\UPnPService\UPnPService.exe

--
End of file - 16753 bytes

L’allegria scalda il cuore e trasforma la tristezza in sorrisi autentici.
Torna in alto
 
beppe50
Inviato: Saturday, November 26, 2011 1:01:43 PM

Rank: AiutAmico

Iscritto dal : 11/28/2009
Posts: 1,475
Oggi, all'accensione del PC e dopo aver chiuso il messaggio in questione mi è comparso questo nuovo messaggio:
"Execption Execption in module dd.exe at 00074D89.DM.C."
L’allegria scalda il cuore e trasforma la tristezza in sorrisi autentici.
Torna in alto
 
cbbusto
Inviato: Saturday, November 26, 2011 5:17:28 PM

Rank: AiutAmico

Iscritto dal : 11/8/2008
Posts: 13,964
Ciao beppe, hai troppi programmi installati e in avvio, alcuni di questi creano dei conflitti.
Da installazione Applicazioni rimuovi questi programmi, se qualcuno lo usi di frequente puoi lasciarlo:

C:\Programmi\File comuni\Java\Java Update\jusched.exe
C:\Programmi\iTunes\iTunesHelper.exe
C:\Programmi\Bonjour\mDNSResponder.exe
C:\Programmi\File comuni\MAGIX Services\Database\bin\FABS.exe
Chiudi tutti i programmi e disconnesso, apri HJT e clic sulla voce Do a System Scan Only
Metti la spunta alle seguenti voci poi clicca su Fix checked:

O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Dati applicazioni\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (file missing)

O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Documents and Settings\Utente\Desktop\BitComet_1.30\tools\bitcometbho.dll (file missing)

O3 - Toolbar: (no name) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - (no file)

O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll

O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Programmi\Unlocker\UnlockerAssistant.exe"

O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programmi\File comuni\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [iTunesHelper] "C:\Programmi\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [QuickTime Task] "C:\Programmi\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [TkBellExe] "C:\programmi\real\realplayer\update\realsched.exe" -osboot

O4 - HKCU\..\Run: [swg] "C:\Programmi\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

O4 - HKCU\..\Run: [AdobeUpdater] "C:\Programmi\File comuni\Adobe\Updater5\AdobeUpdater.exe"

O4 - HKCU\..\Run: [Device Detection] C:\Programmi\PhotoSi\MyComposer\dd.exe

O4 - HKCU\..\Run: [PC Suite Tray] "C:\Programmi\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray

O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Documents and Settings\Utente\Desktop\BitComet_1.30\tools\bitcometbho.dll/206 (file missing)

O23 - Service: Servizio Bonjour (Bonjour Service) - Apple Inc. - C:\Programmi\Bonjour\mDNSResponder.exe

Poi installa Malwarebytes QUI lo aggiorni e fai una scansione COMPLETA non veloce, elimina tutto quello che trova, posta il log.
Fai una pulizia con Ccleaner compreso il registro, per il Registro spunta tutte le voci.
Vai in C:\windows, cerca la cartella prefetch e la svuoti.
Fai sapere come va.

P.S. Se non hai nessun software della Magix, elimina anche queste voci:

O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Programmi\File comuni\MAGIX Services\Database\bin\fbserver.exe
O23 - Service: UPnPService - Magix AG - C:\Programmi\File comuni\MAGIX Shared\UPnPService\UPnPService.exe
Torna in alto
 
beppe50
Inviato: Saturday, November 26, 2011 9:46:57 PM

Rank: AiutAmico

Iscritto dal : 11/28/2009
Posts: 1,475
Ciao cbbusto,
ho fatto quanto mi hai suggerito ma i due avvisi continuano a comparire. Ti posto il log come da te richiesto però una domanda, c'è la possibilità di allegare i file anzichè postarne il contenuto?
Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Versione database: 8246

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

26/11/2011 20.46.01
mbam-log-2011-11-26 (20-46-01).txt

Tipo di scansione: Scansione completa (C:\|)
Elementi esaminati: 428267
Tempo impiegato: 1 ore, 27 minuti, 19 secondi

Processi infetti in memoria: 0
Moduli di memoria infetti: 0
Chiavi di registro infette: 118
Valori di registro infetti: 3
Voci infette nei dati di registro: 0
Cartelle infette: 6
File infetti: 95

Processi infetti in memoria:
(Non sono stati rilevati elementi nocivi)

Moduli di memoria infetti:
(Non sono stati rilevati elementi nocivi)

Chiavi di registro infette:
HKEY_CLASSES_ROOT\CLSID\{00A6FAF6-072E-44cf-8957-5838F569A31D} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{00A6FAF6-072E-44CF-8957-5838F569A31D} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{07B18EA9-A523-4961-B6BB-170DE4475CCA} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{07B18EA9-A523-4961-B6BB-170DE4475CCA} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EA9-A523-4961-B6BB-170DE4475CCA} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{07B18EAB-A523-4961-B6BB-170DE4475CCA} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{07B18EA0-A523-4961-B6BB-170DE4475CCA} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{07B18EAA-A523-4961-B6BB-170DE4475CCA} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\MyWebSearchToolBar.SettingsPlugin.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\MyWebSearchToolBar.SettingsPlugin (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EAB-A523-4961-B6BB-170DE4475CCA} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{07B18EAB-A523-4961-B6BB-170DE4475CCA} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{0F8ECF4F-3646-4C3A-8881-8E138FFCAF70} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{8CA01F0E-987C-49C3-B852-2F1AC4A7094C} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{1093995A-BA37-41D2-836E-091067C4AD17} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\FunWebProducts.IECookiesManager.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\FunWebProducts.IECookiesManager (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{147A976F-EEE1-4377-8EA7-4716E4CDD239} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{1E0DE227-5CE4-4ea3-AB0C-8B03E1AA76BC} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{25560540-9571-4D7B-9389-0F166788785A} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{C8CECDE3-1AE1-4C4A-AD82-6D5B00212144} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{17DE5E5E-BFE3-4E83-8E1F-8755795359EC} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\FunWebProducts.DataControl.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\FunWebProducts.DataControl (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{25560540-9571-4D7B-9389-0F166788785A} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\FunWebProducts.HTMLMenu.2 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\FunWebProducts.HTMLMenu (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3E720452-B472-4954-B7AA-33069EB53906} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{3E720450-B472-4954-B7AA-33069EB53906} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{3E720451-B472-4954-B7AA-33069EB53906} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\MyWebSearch.HTMLPanel.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\MyWebSearch.HTMLPanel (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3E720452-B472-4954-B7AA-33069EB53906} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{53CED2D0-5E9A-4761-9005-648404E6F7E5} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\MyWebSearchToolBar.ToolbarPlugin.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\MyWebSearchToolBar.ToolbarPlugin (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{63D0ED2C-B45B-4458-8B3B-60C69BBBD83C} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{8E6F1830-9607-4440-8530-13BE7C4B1D14} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{63D0ED2B-B45B-4458-8B3B-60C69BBBD83C} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\FunWebProducts.PopSwatterSettingsControl.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\FunWebProducts.PopSwatterSettingsControl (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{63D0ED2C-B45B-4458-8B3B-60C69BBBD83C} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7473D292-B7BB-4f24-AE82-7E2CE94BB6A9} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{7473D290-B7BB-4f24-AE82-7E2CE94BB6A9} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{7473D291-B7BB-4F24-AE82-7E2CE94BB6A9} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7473D294-B7BB-4f24-AE82-7E2CE94BB6A9} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\MyWebSearch.PseudoTransparentPlugin.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\MyWebSearch.PseudoTransparentPlugin (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7473D294-B7BB-4F24-AE82-7E2CE94BB6A9} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7473D296-B7BB-4f24-AE82-7E2CE94BB6A9} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{84DA4FDF-A1CF-4195-8688-3E961F505983} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{8E6F1832-9607-4440-8530-13BE7C4B1D14} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\FunWebProducts.PopSwatterBarButton.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\FunWebProducts.PopSwatterBarButton (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{938AA51A-996C-4884-98CE-80DD16A5C9DA} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{98D9753D-D73B-42D5-8C85-4469CDA897AB} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\FunWebProducts.HTMLMenu.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{98D9753D-D73B-42D5-8C85-4469CDA897AB} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{9FF05104-B030-46FC-94B8-81276E4E27DF} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{29D67D3C-509A-4544-903F-C8C1B8236554} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{2E3537FC-CF2F-4F56-AF54-5A6A3DD375CC} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ScreenSaverControl.ScreenSaverInstaller.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ScreenSaverControl.ScreenSaverInstaller (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{9FF05104-B030-46FC-94B8-81276E4E27DF} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{A4730EBE-43A6-443e-9776-36915D323AD3} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{A9571378-68A1-443d-B082-284F960C6D17} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ADB01E81-3C79-4272-A0F1-7B2BE7A782DC} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\MyWebSearch.OutlookAddin.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\MyWebSearch.OutlookAddin (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{B813095C-81C0-4E40-AA14-67520372B987} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\FunWebProducts.KillerObjManager.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\FunWebProducts.KillerObjManager (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{C9D7BE3E-141A-4C85-8CD6-32461F3DF2C7} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\FunWebProducts.HistoryKillerScheduler.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\FunWebProducts.HistoryKillerScheduler (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{CFF4CE82-3AA2-451F-9B77-7165605FB835} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\FunWebProducts.HistorySwatterControlBar.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\FunWebProducts.HistorySwatterControlBar (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{D9FFFB27-D62A-4D64-8CEC-1FF006528805} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{0D26BC71-A633-4E71-AD31-EADC3A1B6A3A} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{E342AF55-B78A-4CD0-A2BB-DA7F52D9D25E} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{E79DFBCA-5697-4fbd-94E5-5B2A9C7C1612} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{E79DFBC0-5697-4fbd-94E5-5B2A9C7C1612} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{72EE7F04-15BD-4845-A005-D6711144D86A} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\MyWebSearch.ChatSessionPlugin.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\MyWebSearch.ChatSessionPlugin (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{E79DFBCA-5697-4FBD-94E5-5B2A9C7C1612} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{D518921A-4A03-425E-9873-B9A71756821E} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{CF54BE1C-9359-4395-8533-1657CF209CFE} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{E47CAEE0-DEEA-464A-9326-3F2801535A4D} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{3E1656ED-F60E-4597-B6AA-B6A58E171495} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{F42228FB-E84E-479E-B922-FBBD096E792C} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{6E74766C-4D93-4CC0-96D1-47B8E07FF9CA} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{00A6FAF1-072E-44CF-8957-5838F569A31D} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{00A6FAF1-072E-44CF-8957-5838F569A31D} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{07B18EA1-A523-4961-B6BB-170DE4475CCA} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EA1-A523-4961-B6BB-170DE4475CCA} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\MyWebSearch.MultipleButton (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\MyWebSearch.MultipleButton.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\MyWebSearch.ThirdPartyInstaller (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\MyWebSearch.ThirdPartyInstaller.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\MyWebSearch.UrlAlertButton (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\MyWebSearch.UrlAlertButton.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\bisoft (Worm.Bagle) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\MyWebSearch (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\FocusInteractive (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Fun Web Products (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\MyWebSearch (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\Outlook\Addins\MyWebSearch.OutlookAddin (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\Word\Addins\MyWebSearch.OutlookAddin (Adware.MyWebSearch) -> Quarantined and deleted successfully.

Valori di registro infetti:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\ForceClassicControlPanel (Hijack.ControlPanelStyle) -> Value: ForceClassicControlPanel -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Media\WMSDK\Sources\f3PopularScreensavers (Adware.MyWebSearch) -> Value: f3PopularScreensavers -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform\FunWebProducts (Adware.MyWebSearch) -> Value: FunWebProducts -> Quarantined and deleted successfully.

Voci infette nei dati di registro:
(Non sono stati rilevati elementi nocivi)

Cartelle infette:
c:\documents and settings\Utente\dati applicazioni\drivers\downld (Worm.Bagle) -> Quarantined and deleted successfully.
c:\programmi\funwebproducts (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\programmi\funwebproducts\screensaver (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\programmi\funwebproducts\screensaver\Images (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\programmi\funwebproducts\Shared (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\programmi\funwebproducts\Shared\Cache (Adware.MyWebSearch) -> Quarantined and deleted successfully.

File infetti:
c:\documents and settings\Utente\impostazioni locali\Temp\Rar$EX00.266\keygen.exe (RiskWare.Tool.HCK) -> Quarantined and deleted successfully.
c:\documents and settings\Utente\impostazioni locali\Temp\wz69a8\key_generator.exe (Spyware.Password) -> Quarantined and deleted successfully.
c:\documents and settings\Utente\impostazioni locali\Temp\wzd3a8\keygen.exe (RiskWare.Tool.HCK) -> Quarantined and deleted successfully.
c:\RECYCLER\s-1-5-21-606747145-1592454029-839522115-1003\Dc13\CORE10k.EXE (Dont.Steal.Our.Software) -> Quarantined and deleted successfully.
c:\RECYCLER\s-1-5-21-606747145-1592454029-839522115-1003\Dc13\keygen.exe (RiskWare.Tool.HCK) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1020\A0211697.exe (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1020\A0211681.exe (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1020\A0211682.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1020\A0211683.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1020\A0211684.exe (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1020\A0211685.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1020\A0211686.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1020\A0211687.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1020\A0211688.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1020\A0211689.exe (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1020\A0211690.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1020\A0211691.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1020\A0211692.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1020\A0211693.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1020\A0211694.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1020\A0211695.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1020\A0211696.exe (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1020\A0211698.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1020\A0211699.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1020\A0211701.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1020\A0211722.dll (PUP.FunWebProducts) -> Not selected for removal.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1021\A0211831.exe (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1021\A0211833.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1021\A0211834.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1021\A0211835.exe (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1021\A0211836.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1021\A0211837.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1021\A0211838.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1021\A0211839.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1021\A0211840.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1021\A0211841.exe (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1021\A0211842.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1021\A0211843.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1021\A0211844.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1021\A0211845.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1021\A0211846.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1021\A0212064.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1021\A0212065.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1021\A0212067.dll (PUP.FunWebProducts) -> Not selected for removal.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1022\A0213256.exe (Adware.FunWeb) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1022\A0213257.exe (Adware.FunWeb) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1022\A0213258.exe (Adware.FunWeb) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1022\A0213259.exe (Adware.FunWeb) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1067\A0218306.exe (RiskWare.Tool.HCK) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1067\A0218307.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1075\A0219671.exe (RiskWare.Tool.HCK) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1076\A0219755.exe (Spyware.Password) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215697.DLL (PUP.FunWebProducts) -> Not selected for removal.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215714.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215693.DLL (PUP.FunWebProducts) -> Not selected for removal.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215694.DLL (PUP.FunWebProducts) -> Not selected for removal.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215695.DLL (PUP.FunWebProducts) -> Not selected for removal.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215696.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215698.DLL (PUP.FunWebProducts) -> Not selected for removal.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215699.DLL (PUP.FunWebProducts) -> Not selected for removal.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215700.DLL (PUP.FunWebProducts) -> Not selected for removal.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215701.SCR (PUP.FunWebProducts) -> Not selected for removal.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215702.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215703.DLL (PUP.FunWebProducts) -> Not selected for removal.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215704.DLL (PUP.FunWebProducts) -> Not selected for removal.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215705.EXE (PUP.FunWebProducts) -> Not selected for removal.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215706.DLL (PUP.FunWebProducts) -> Not selected for removal.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215707.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215708.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215709.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215710.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215711.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215712.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215713.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215715.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215716.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215717.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215718.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215719.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215720.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215721.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215723.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215724.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215725.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215726.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215727.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215728.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215729.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215730.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{b2e6694f-8b56-492a-98f3-5bcc0ccafc96}\RP1040\A0215731.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\f3PSSavr.scr (PUP.FunWebProducts) -> Not selected for removal.
c:\WINDOWS\Temp\821a3ad5-fdc8-41ed-a355-b463dc12ff3a.tmp (PUP.SmsPay.PGen) -> Not selected for removal.
c:\programmi\funwebproducts\Shared\Cache\cursormaniabtn.html (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\programmi\funwebproducts\Shared\Cache\smileycentralbtn.html (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\programmi\funwebproducts\Shared\Cache\webfettibtn.html (Adware.MyWebSearch) -> Quarantined and deleted successfully.

L’allegria scalda il cuore e trasforma la tristezza in sorrisi autentici.
Torna in alto
 
cbbusto
Inviato: Saturday, November 26, 2011 11:14:55 PM

Rank: AiutAmico

Iscritto dal : 11/8/2008
Posts: 13,964
E' meglio postare il log, Malwarebytes ha trovato parecchie infezioni.
Scarica combofix da questo link: http://download.bleepingcomputer.com/sUBs/ComboFix.exe
Salvalo obbligatoriamente sul desktop. Disconnettiti dalla rete.
Disabilita Antivirus e eventuali Antispyware e firewall. Chiudi tutti i programmi aperti.
Lancia Combofix, non installare la console di ripristino di emergenza e prosegui.
Durante l'operazione di scansione è importante non usare il PC (neanche il mouse) e attendi pazientemente la fine delle operazioni.
Al termine, verrà creato un file log in C:\ComboFix.txt.
Postalo qui.
Torna in alto
 
beppe50
Inviato: Sunday, November 27, 2011 11:53:19 AM

Rank: AiutAmico

Iscritto dal : 11/28/2009
Posts: 1,475
Ecco il file log di ComboFix. Attendo istruzioni.
Grazie, Beppe

Commenta:
ComboFix 11-11-26.04 - Utente 27/11/2011 10.24.47.1.8 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.39.1040.18.3063.2179 [GMT 1:00]
Eseguito da: c:\documents and settings\Utente\Desktop\ComboFix.exe
AV: AVG Internet Security *Disabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
FW: AVG Firewall *Disabled* {8decf618-9569-4340-b34a-d78d28969b66}
.
ATTENZIONE - QUESTO PC NON HA LA CONSOLE DI RIPRISTINO DI EMERGENZA INSTALLATA !!
.
.
((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\All Users\Dati applicazioni\mazuki.dll
c:\documents and settings\All Users\Dati applicazioni\page
c:\documents and settings\All Users\Dati applicazioni\page\page.ico
c:\documents and settings\All Users\Dati applicazioni\page\page.URL
c:\documents and settings\All Users\Dati applicazioni\TEMP
c:\documents and settings\All Users\Dati applicazioni\TorrentEasy\fdmbtsupp.dll
c:\documents and settings\Utente\Dati applicazioni\.#
c:\documents and settings\Utente\Dati applicazioni\.#\MBX@26BC@383FA0.###
c:\documents and settings\Utente\Dati applicazioni\.#\MBX@26BC@383FD0.###
c:\documents and settings\Utente\Dati applicazioni\facemoods.com
c:\documents and settings\Utente\Dati applicazioni\inst.exe
c:\documents and settings\Utente\Dati applicazioni\vso_ts_preview.xml
c:\documents and settings\Utente\WINDOWS
C:\install.exe
c:\programmi\Fast Browser Search
c:\programmi\Fast Browser Search\IE\about.html
c:\programmi\Fast Browser Search\IE\affid.dat
c:\programmi\Fast Browser Search\IE\basis.xml
c:\programmi\Fast Browser Search\IE\basis_br.xml
c:\programmi\Fast Browser Search\IE\basis_de.xml
c:\programmi\Fast Browser Search\IE\basis_en.xml
c:\programmi\Fast Browser Search\IE\basis_es.xml
c:\programmi\Fast Browser Search\IE\basis_fr.xml
c:\programmi\Fast Browser Search\IE\basis_it.xml
c:\programmi\Fast Browser Search\IE\basis_nr.xml
c:\programmi\Fast Browser Search\IE\basis_pt.xml
c:\programmi\Fast Browser Search\IE\basis_ru.xml
c:\programmi\Fast Browser Search\IE\basis_tr.xml
c:\programmi\Fast Browser Search\IE\error.html
c:\programmi\Fast Browser Search\IE\fbsProtection.xml
c:\programmi\Fast Browser Search\IE\FbsSearchProvider.xml
c:\programmi\Fast Browser Search\IE\FbsSearchProvider01.xml
c:\programmi\Fast Browser Search\IE\FbsSearchProvider05.xml
c:\programmi\Fast Browser Search\IE\FbsSearchProvider08.xml
c:\programmi\Fast Browser Search\IE\FbsSearchProvider14.xml
c:\programmi\Fast Browser Search\IE\fbstoolbar.jar
c:\programmi\Fast Browser Search\IE\icons.bmp
c:\programmi\Fast Browser Search\IE\info.txt
c:\programmi\Fast Browser Search\IE\local.xml
c:\programmi\Fast Browser Search\IE\logobg.bmp
c:\programmi\Fast Browser Search\IE\MTWBtoolbar.html
c:\programmi\Fast Browser Search\IE\Provider01.xml
c:\programmi\Fast Browser Search\IE\Provider05.xml
c:\programmi\Fast Browser Search\IE\Provider08.xml
c:\programmi\Fast Browser Search\IE\Provider14.xml
c:\programmi\Fast Browser Search\IE\search.bmp
c:\programmi\Fast Browser Search\IE\search_br.bmp
c:\programmi\Fast Browser Search\IE\search_de.bmp
c:\programmi\Fast Browser Search\IE\search_es.bmp
c:\programmi\Fast Browser Search\IE\search_fr.bmp
c:\programmi\Fast Browser Search\IE\search_it.bmp
c:\programmi\Fast Browser Search\IE\search_pt.bmp
c:\programmi\Fast Browser Search\IE\search_ru.bmp
c:\programmi\Fast Browser Search\IE\SearchProvider01.xml
c:\programmi\Fast Browser Search\IE\SearchProvider05.xml
c:\programmi\Fast Browser Search\IE\SearchProvider08.xml
c:\programmi\Fast Browser Search\IE\SearchProvider14.xml
c:\programmi\Fast Browser Search\IE\sgpUpdater.xml
c:\programmi\Fast Browser Search\IE\tbs_include_script_003175.js
c:\programmi\Fast Browser Search\IE\tbs_include_script_005064.js
c:\programmi\Fast Browser Search\IE\tbs_include_script_012817.js
c:\programmi\Fast Browser Search\IE\Toolbar Help.htm
c:\programmi\Fast Browser Search\IE\version.txt
c:\programmi\Internet Explorer\SET10.tmp
c:\programmi\Internet Explorer\SET11.tmp
c:\programmi\Internet Explorer\SET17.tmp
c:\programmi\Internet Explorer\SET19.tmp
c:\programmi\Internet Explorer\SET6.tmp
c:\programmi\Internet Explorer\SET7.tmp
c:\programmi\Internet Explorer\SET8.tmp
c:\programmi\Internet Explorer\SET9.tmp
c:\programmi\Internet Explorer\SETA.tmp
c:\programmi\Internet Explorer\SETA0.tmp
c:\programmi\Internet Explorer\SETA1.tmp
c:\programmi\Internet Explorer\SETA2.tmp
c:\programmi\Internet Explorer\SETB.tmp
c:\programmi\Internet Explorer\SETC.tmp
c:\programmi\Internet Explorer\SETD.tmp
c:\programmi\Internet Explorer\SETD9.tmp
c:\programmi\Internet Explorer\SETDA.tmp
c:\programmi\Internet Explorer\SETDB.tmp
c:\programmi\Internet Explorer\SETE.tmp
c:\programmi\Internet Explorer\SETF.tmp
c:\programmi\Search Guard Plus
c:\programmi\Search Guard Plus\fbsProtection.xml
c:\programmi\Search Guard Plus\fbsSearchProvider.xml
c:\programmi\Search Guard Plus\FbsSearchProvider01.xml
c:\programmi\Search Guard Plus\FbsSearchProvider05.xml
c:\programmi\Search Guard Plus\FbsSearchProvider08.xml
c:\programmi\Search Guard Plus\FbsSearchProvider14.xml
c:\programmi\Search Guard Plus\Provider01.xml
c:\programmi\Search Guard Plus\Provider05.xml
c:\programmi\Search Guard Plus\Provider08.xml
c:\programmi\Search Guard Plus\Provider14.xml
c:\programmi\Search Guard Plus\SearchProvider01.xml
c:\programmi\Search Guard Plus\SearchProvider05.xml
c:\programmi\Search Guard Plus\SearchProvider08.xml
c:\programmi\Search Guard Plus\SearchProvider14.xml
c:\programmi\Search Guard PlusU
c:\programmi\Search Guard PlusU\sgpUpdater.xml
c:\programmi\Windows Searchqu Toolbar
c:\windows\CSC\d6
c:\windows\IsUn0410.exe
c:\windows\system32\_000125_.tmp.dll
c:\windows\system32\AF15BDAEX.dll
c:\windows\system32\f3PSSavr.scr
c:\windows\system32\system
c:\windows\system32\systeminfo.dll
.
.
((((((((((((((((((((((((((((((((((((((( Driver/Servizi )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_MYWEBSEARCHSERVICE
.
.
((((((((((((((((((((((((( Files Creati Da 2011-10-27 al 2011-11-27 )))))))))))))))))))))))))))))))))))
.
.
2011-11-26 17:07 . 2011-11-26 19:46 -------- d--h--w- c:\documents and settings\Utente\Dati applicazioni\drivers
2011-11-26 13:00 . 2011-11-26 13:00 -------- d-----w- c:\documents and settings\Utente\Dati applicazioni\Malwarebytes
2011-11-26 13:00 . 2011-11-26 13:00 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Malwarebytes
2011-11-26 13:00 . 2011-11-26 13:00 -------- d-----w- c:\programmi\Malwarebytes' Anti-Malware
2011-11-26 13:00 . 2011-08-31 16:00 22216 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-11-20 20:40 . 2011-11-20 20:40 -------- d-----w- c:\documents and settings\Utente\Impostazioni locali\Dati applicazioni\JockerSoft
2011-11-20 20:39 . 2011-11-20 20:39 -------- d-----w- c:\programmi\JockerSoft
2011-11-20 20:36 . 2011-11-20 20:36 -------- d-----w- c:\programmi\AVIcodec
2011-11-20 18:22 . 2011-11-20 18:22 -------- d-----w- c:\documents and settings\Utente\Dati applicazioni\NeroDigital(TM)
2011-11-16 20:45 . 2011-11-16 20:45 -------- d-----w- c:\programmi\iPod
2011-11-14 09:15 . 2011-11-14 22:52 -------- d-----w- c:\documents and settings\Utente\Dati applicazioni\BitComet
2011-11-11 19:26 . 2011-11-11 19:26 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\PhotoSi
2011-11-11 16:08 . 2007-03-12 15:42 3495784 ----a-w- c:\windows\system32\d3dx9_33.dll
2011-11-09 14:01 . 2011-11-09 14:01 -------- d-----w- c:\programmi\ImageShack Uploader
2011-11-08 23:09 . 2011-11-08 23:09 -------- d-----w- c:\documents and settings\Utente\Dati applicazioni\IObit
2011-11-08 22:29 . 2011-11-08 22:29 388096 ----a-r- c:\documents and settings\Utente\Dati applicazioni\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2011-11-08 22:29 . 2011-11-08 22:29 -------- d-----w- c:\programmi\Trend Micro
2011-11-08 20:19 . 2011-11-05 07:25 134104 ----a-w- c:\programmi\Mozilla Firefox\components\browsercomps.dll
2011-11-08 20:19 . 2011-11-05 07:25 89048 ----a-w- c:\programmi\Mozilla Firefox\libEGL.dll
2011-11-08 20:19 . 2011-11-05 07:25 801752 ----a-w- c:\programmi\Mozilla Firefox\mozsqlite3.dll
2011-11-08 20:19 . 2011-11-05 07:25 478168 ----a-w- c:\programmi\Mozilla Firefox\libGLESv2.dll
2011-11-08 20:19 . 2011-11-05 07:25 1989592 ----a-w- c:\programmi\Mozilla Firefox\mozjs.dll
2011-11-08 20:19 . 2011-11-05 07:25 15832 ----a-w- c:\programmi\Mozilla Firefox\mozalloc.dll
2011-11-08 20:19 . 2011-11-05 03:20 2106216 ----a-w- c:\programmi\Mozilla Firefox\D3DCompiler_43.dll
2011-11-08 20:19 . 2011-11-05 03:20 1998168 ----a-w- c:\programmi\Mozilla Firefox\d3dx9_43.dll
2011-11-02 21:52 . 2011-11-02 21:52 -------- d-----w- c:\documents and settings\LocalService\Dati applicazioni\Apple Computer
2011-11-01 18:27 . 2011-11-01 18:28 -------- d-----w- c:\documents and settings\Utente\Dati applicazioni\Download Manager
2011-11-01 18:12 . 2011-11-01 18:12 -------- d-----w- c:\documents and settings\Utente\Impostazioni locali\Dati applicazioni\PhotoSi
2011-10-31 18:14 . 2011-10-31 18:14 -------- d-----w- c:\documents and settings\All Users\Dassault Systemes
2011-10-31 18:14 . 2011-10-31 18:14 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Dassault Systemes
2011-10-31 18:14 . 2011-10-31 18:14 -------- d-----w- c:\programmi\Dassault Systemes
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-17 09:21 . 2011-06-04 17:58 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-11-10 22:28 . 2009-10-11 15:30 284340 ----a-w- c:\documents and settings\Utente\Dati applicazioni\mdbu.bin
2011-10-25 14:33 . 2003-10-17 11:44 348160 ----a-w- c:\windows\system32\msvcr71.dll
2011-10-24 13:29 . 2011-10-24 13:29 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2011-10-24 13:29 . 2011-10-24 13:29 69632 ----a-w- c:\windows\system32\QuickTime.qts
2011-10-12 12:10 . 2011-10-12 12:10 483200 ----a-w- c:\windows\system32\drivers\AF15BDA.SYS
2011-10-10 14:22 . 2009-10-09 15:57 692736 ----a-w- c:\windows\system32\inetcomm.dll
2011-10-03 03:06 . 2010-07-24 18:56 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-10-03 00:37 . 2009-10-10 07:55 73728 ----a-w- c:\windows\system32\javacpl.cpl
2011-09-28 07:06 . 2004-08-19 13:39 603136 ----a-w- c:\windows\system32\crypt32.dll
2011-09-26 09:41 . 2008-07-29 17:59 613888 ----a-w- c:\windows\system32\uiautomationcore.dll
2011-09-26 09:41 . 2001-08-31 10:00 23040 ----a-w- c:\windows\system32\oleaccrc.dll
2011-09-26 09:41 . 2001-08-31 10:00 220160 ----a-w- c:\windows\system32\oleacc.dll
2011-09-13 13:34 . 2009-10-16 12:52 29712 ----a-w- c:\windows\system32\drivers\avgmfx86.sys
2011-09-11 16:54 . 2011-09-09 14:35 551424 ----a-w- c:\documents and settings\All Users\Dati applicazioni\Microsoft\VWDExpress\10.0\1040\ResourceCache.dll
2011-09-06 14:10 . 2004-08-19 13:31 1858944 ----a-w- c:\windows\system32\win32k.sys
2010-10-16 23:50 . 2011-01-26 12:46 3056008 ----a-w- c:\programmi\File comuni\AskToolbarInstaller.exe
2010-01-26 22:11 . 2011-01-26 12:46 444283 ----a-w- c:\programmi\File comuni\WinPcapNmap.exe
2011-11-05 07:25 . 2011-11-08 20:19 134104 ----a-w- c:\programmi\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\NBHShellExt]
@="{8D2223A2-B3C6-4e32-B096-CDD11F628C60}"
[HKEY_CLASSES_ROOT\CLSID\{8D2223A2-B3C6-4e32-B096-CDD11F628C60}]
2009-05-08 15:14 97816 ----a-w- c:\programmi\Nero\Nero 9\InCD\NBHshx.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AdobeUpdater"="c:\programmi\File comuni\Adobe\Updater5\AdobeUpdater.exe" [2011-05-13 2356088]
"Device Detection"="c:\programmi\PhotoSi\MyComposer\dd.exe" [2011-10-13 787128]
"PC Suite Tray"="c:\programmi\Nokia\Nokia PC Suite 7\PCSuite.exe" [2010-12-21 1483264]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AVG9_TRAY"="c:\progra~1\AVG\AVG9\avgtray.exe" [2011-10-25 2078048]
"HPDJ Taskbar Utility"="c:\windows\system32\spool\drivers\w32x86\3\hpztsb04.exe" [2001-12-12 196608]
"UnlockerAssistant"="c:\programmi\Unlocker\UnlockerAssistant.exe" [2006-09-07 15872]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2010-10-16 110696]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2010-10-16 13851752]
"SunJavaUpdateSched"="c:\programmi\File comuni\Java\Java Update\jusched.exe" [2011-06-09 254696]
"iTunesHelper"="c:\programmi\iTunes\iTunesHelper.exe" [2011-11-12 421736]
"QuickTime Task"="c:\programmi\QuickTime\qttask.exe" [2011-10-24 421888]
"TkBellExe"="c:\programmi\real\realplayer\update\realsched.exe" [2011-10-25 273528]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-13 15360]
.
c:\documents and settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\
Logitech SetPoint.lnk - c:\programmi\Logitech\SetPoint\SetPoint.exe [2009-10-20 813584]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoSMConfigurePrograms"= 1 (0x1)
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\programmi\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-24 304128]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avgrsstarter]
2010-06-22 10:50 12536 ----a-w- c:\windows\system32\avgrsstx.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
2009-07-20 11:28 72208 ----a-w- c:\programmi\File comuni\Logitech\Bluetooth\LBTWLgn.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
@="Service"
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Avvio^Programmi^Esecuzione automatica^Windows Search.lnk]
path=c:\documents and settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\Windows Search.lnk
backup=c:\windows\pss\Windows Search.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^Utente^Menu Avvio^Programmi^Esecuzione automatica^Ritaglio schermata e avvio di OneNote 2007.lnk]
path=c:\documents and settings\Utente\Menu Avvio\Programmi\Esecuzione automatica\Ritaglio schermata e avvio di OneNote 2007.lnk
backup=c:\windows\pss\Ritaglio schermata e avvio di OneNote 2007.lnkStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaMServer]
c:\programmi\File comuni\Nokia\MPlatform\NokiaMServer [X]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
2011-06-07 09:23 136176 ----atw- c:\documents and settings\Utente\Impostazioni locali\Dati applicazioni\Google\Update\GoogleUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
2008-10-25 10:44 31072 ----a-w- c:\programmi\Microsoft Office\Office12\GrooveMonitor.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
2010-06-09 18:55 49208 ----a-w- c:\programmi\HP\HP Software Update\hpwuschd2.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InCD]
2009-05-08 15:14 1116696 ----a-w- c:\programmi\Nero\Nero 9\InCD\InCD.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2011-11-12 23:24 421736 ----a-w- c:\programmi\iTunes\iTunesHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBHGui]
2009-05-08 15:14 1593880 ----a-w- c:\programmi\Nero\Nero 9\InCD\NBHGui.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
2010-12-21 09:53 1483264 ----a-w- c:\programmi\Nokia\Nokia PC Suite 7\PCSuite.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2011-10-24 13:28 421888 ----a-w- c:\programmi\QuickTime\QTTask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SMASH]
2009-10-30 10:00 229411 ----a-w- c:\programmi\Ashampoo\Ashampoo Office 2010\Smash.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Programmi\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Programmi\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Programmi\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Programmi\\DNA\\btdna.exe"=
"c:\\Programmi\\AVG\\AVG9\\avgam.exe"=
"c:\\Programmi\\AVG\\AVG9\\avgdiagex.exe"=
"c:\\Programmi\\AVG\\AVG9\\avgupd.exe"=
"c:\\Programmi\\AVG\\AVG9\\avgnsx.exe"=
"c:\\Programmi\\uTorrent\\uTorrent.exe"=
"c:\\Programmi\\Windows Live\\Sync\\WindowsLiveSync.exe"=
"c:\\Programmi\\Philips\\Wi-Fi MediaConnect\\Wi-Fi MediaConnect.exe"=
"c:\\Programmi\\Skype\\Phone\\Skype.exe"=
"c:\\Programmi\\File comuni\\Apple\\Apple Application Support\\WebKit2WebProcess.exe"=
"c:\\Programmi\\iTunes\\iTunes.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"22071:TCP"= 22071:TCP:BitComet 22071 TCP
"22071:UDP"= 22071:UDP:BitComet 22071 UDP
.
R0 AVGIDSErHrxpx;AVG9IDSErHr;c:\windows\system32\drivers\AVGIDSxx.sys [16/10/2009 13.52.00 25168]
R0 AvgRkx86;avgrkx86.sys;c:\windows\system32\drivers\avgrkx86.sys [16/10/2009 13.51.58 52872]
R0 MacOpen;MacOpen;c:\windows\system32\drivers\MacOpen.sys [27/10/2011 17.49.40 176709]
R0 pssnap;Paramount Software Snapshot Filter;c:\windows\system32\drivers\pssnap.sys [20/05/2008 8.32.40 15328]
R1 AvgLdx86;AVG AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [16/10/2009 13.52.13 216400]
R1 AvgTdiX;AVG Network Redirector;c:\windows\system32\drivers\avgtdix.sys [16/10/2009 13.51.56 243152]
R2 AsSysCtrlService;ASUS System Control Service;c:\programmi\ASUS\AsSysCtrlService\1.00.00\AsSysCtrlService.exe [10/10/2009 7.42.57 86016]
R2 avg9wd;AVG WatchDog;c:\programmi\AVG\AVG9\avgwdsvc.exe [22/06/2010 11.50.41 308136]
R2 avgfws9;AVG Firewall;c:\programmi\AVG\AVG9\avgfws9.exe [22/06/2010 11.50.36 2331544]
R2 AVGIDSAgent;AVG9IDSAgent;c:\programmi\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe [22/06/2010 11.50.37 5897808]
R2 NeroRegInCDSrv;Nero Registry InCD Service;c:\programmi\Nero\Nero 9\InCD\NBHRegInCDSrv.exe [08/05/2009 16.14.28 109080]
R2 NitroReaderDriverReadSpool;NitroPDFReaderDriverCreatorReadSpool;c:\programmi\Nitro PDF\Reader\NitroPDFReaderDriverService.exe [03/12/2010 11.44.50 196912]
R2 npf;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [27/01/2010 3.09.02 50704]
R2 ReflectService;Macrium Reflect Image Mounting Service;c:\programmi\Macrium\Reflect\ReflectService.exe [25/08/2009 11.16.36 220128]
R3 Avgfwdx;Avgfwdx;c:\windows\system32\drivers\avgfwdx.sys [16/10/2009 13.51.42 30104]
R3 AVGIDSDriverxpx;AVG9IDSDriver;c:\programmi\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSDriver.sys [16/10/2009 13.51.55 122448]
R3 AVGIDSFilterxpx;AVG9IDSFilter;c:\programmi\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSFilter.sys [16/10/2009 13.51.55 30288]
R3 AVGIDSShimxpx;AVG9IDSShim;c:\programmi\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSShim.sys [16/10/2009 13.51.53 26192]
R3 pcouffin;VSO Software pcouffin;c:\windows\system32\drivers\pcouffin.sys [11/10/2009 17.16.21 47360]
R3 WFMC_VAD;WFMC Virtual Audio Device (WDM);c:\windows\system32\drivers\wfmcvad.sys [11/02/2011 20.52.27 19328]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [18/03/2010 12.16.28 130384]
S2 gupdate;Servizio di Google Update (gupdate);c:\programmi\Google\Update\GoogleUpdate.exe [25/01/2010 16.58.17 135664]
S2 WinDefend;Windows Defender;c:\programmi\Windows Defender\MsMpEng.exe [03/11/2006 18.19.58 13592]
S3 ALSysIO;ALSysIO;\??\c:\docume~1\Utente\IMPOST~1\Temp\ALSysIO.sys --> c:\docume~1\Utente\IMPOST~1\Temp\ALSysIO.sys [?]
S3 Avgfwfd;AVG network filter service;c:\windows\system32\drivers\avgfwdx.sys [16/10/2009 13.51.42 30104]
S3 cpuz135;cpuz135;\??\c:\docume~1\Utente\IMPOST~1\Temp\cpuz135\cpuz135_x32.sys --> c:\docume~1\Utente\IMPOST~1\Temp\cpuz135\cpuz135_x32.sys [?]
S3 gupdatem;Servizio Google Update (gupdatem);c:\programmi\Google\Update\GoogleUpdate.exe [25/01/2010 16.58.17 135664]
S3 MBAMSwissArmy;MBAMSwissArmy;\??\c:\windows\system32\drivers\mbamswissarmy.sys --> c:\windows\system32\drivers\mbamswissarmy.sys [?]
S3 PSMounter;Macrium Reflect Image Explorer Service;c:\windows\system32\drivers\psmounter.sys [25/08/2009 11.16.16 32224]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [18/03/2010 12.16.28 753504]
S4 AVG Security Toolbar Service;AVG Security Toolbar Service;c:\programmi\AVG\AVG9\Toolbar\ToolbarBroker.exe --> c:\programmi\AVG\AVG9\Toolbar\ToolbarBroker.exe [?]
S4 MSSQLServerADHelper100;Servizio SQL Server Active Directory Helper;c:\programmi\Microsoft SQL Server\100\Shared\sqladhlp.exe [03/04/2010 19.56.08 44896]
S4 RsFx0150;RsFx0150 Driver;c:\windows\system32\drivers\RsFx0150.sys [03/04/2010 10.02.54 240608]
S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS);c:\programmi\Microsoft SQL Server\MSSQL10_50.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [03/04/2010 19.56.08 367456]
S4 UPnPService;UPnPService;c:\programmi\File comuni\MAGIX Shared\UPnPService\UPnPService.exe [15/09/2010 23.12.00 548864]
.
--- Altri Servizi/Drivers In Memoria ---
.
*Deregistered* - uphcleanhlp
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2009-04-13 13:08 451872 ----a-w- c:\programmi\File comuni\LightScribe\LSRunOnce.exe
.
Contenuto della cartella 'Scheduled Tasks'
.
2011-11-16 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\programmi\Apple Software Update\SoftwareUpdate.exe [2011-06-01 15:57]
.
2011-11-27 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\programmi\Google\Update\GoogleUpdate.exe [2010-01-25 15:58]
.
2011-11-26 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\programmi\Google\Update\GoogleUpdate.exe [2010-01-25 15:58]
.
2011-11-26 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-606747145-1592454029-839522115-1003Core.job
- c:\documents and settings\Utente\Impostazioni locali\Dati applicazioni\Google\Update\GoogleUpdate.exe [2011-07-05 09:23]
.
2011-11-26 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-606747145-1592454029-839522115-1003UA.job
- c:\documents and settings\Utente\Impostazioni locali\Dati applicazioni\Google\Update\GoogleUpdate.exe [2011-07-05 09:23]
.
2009-10-22 c:\windows\Tasks\MP Scheduled Scan.job
- c:\programmi\Windows Defender\MpCmdRun.exe [2006-11-03 17:20]
.
2011-11-27 c:\windows\Tasks\OGALogon.job
- c:\windows\system32\OGAEXEC.exe [2009-08-03 14:07]
.
2011-11-27 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-606747145-1592454029-839522115-1003.job
- c:\programmi\Real\RealUpgrade\realupgrade.exe [2011-09-27 11:40]
.
2011-11-20 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-606747145-1592454029-839522115-1003.job
- c:\programmi\Real\RealUpgrade\realupgrade.exe [2011-09-27 11:40]
.
2011-11-27 c:\windows\Tasks\User_Feed_Synchronization-{5F65A2C9-5399-48D8-927E-6E637A1FAF9C}.job
- c:\windows\system32\msfeedssync.exe [2007-08-13 02:31]
.
.
------- Scansione supplementare -------
.
uStart Page = hxxp://www.google.it/
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Aggiungi a PDF esistente - c:\programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Append Link Target to Existing PDF - c:\programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Converti destinazione link in Adobe PDF - c:\programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Converti destinazione link in file PDF esistente - c:\programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Converti i link selezionati in Adobe PDF - c:\programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Converti i link selezionati in file PDF esistente - c:\programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Converti in Adobe PDF - c:\programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Converti selezione in Adobe PDF - c:\programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Converti selezione in file PDF esistente - c:\programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: E&sporta in Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Scarica con Free Download Manager - file://c:\programmi\Free Download Manager\dllink.htm
IE: Scarica i video con Free Download Manager - file://c:\programmi\Free Download Manager\dlfvideo.htm
IE: Scarica selezionati con Free Download Manager - file://c:\programmi\Free Download Manager\dlselected.htm
IE: Scarica tutto con Free Download Manager - file://c:\programmi\Free Download Manager\dlall.htm
IE: Scarica tutto usando BitComet - c:\documents and settings\Utente\Desktop\BitComet_1.30\BitComet.exe/AddAllLink.htm
IE: Scarica usando &BitComet - c:\documents and settings\Utente\Desktop\BitComet_1.30\BitComet.exe/AddLink.htm
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\documents and settings\Utente\Dati applicazioni\Mozilla\Firefox\Profiles\7iby2j0y.default\
FF - prefs.js: browser.search.selectedEngine -
FF - prefs.js: keyword.URL - hxxp://www.searchqu.com/web?src=ffb&appid=242&systemid=101&sr=0&q=
FF - prefs.js: network.proxy.type - 0
.
.
------- Associazioni dei file -------
.
.scr=AutoCADScriptFile
.
- - - - CHIAVI ORFANE RIMOSSE - - - -
.
Toolbar-10 - (no file)
WebBrowser-{3041D03E-FD4B-44E0-B742-2D9B88305F98} - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
SafeBoot-WudfPf
SafeBoot-WudfRd
MSConfigStartUp-Acrobat Assistant 8 - c:\programmi\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe
MSConfigStartUp-Adobe Acrobat Speed Launcher - c:\programmi\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe
MSConfigStartUp-swg - c:\programmi\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
MSConfigStartUp-TurboV - c:\program files\ASUS\TurboV\TurboV.exe
AddRemove-PhotoRecord - c:\windows\IsUn0410.exe
AddRemove-{09FF4DB8-7DE9-4D47-B7DB-915DB7D9A8CA} - c:\documents and settings\All Users\Dati applicazioni\{3C0AACBF-B491-4BE5-BAF9-AA46E0629E42}\bm_installer.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-27 10:38
Windows 5.1.2600 Service Pack 3 NTFS
.
scansione processi nascosti ...
.
scansione entrate autostart nascoste ...
.
Scansione files nascosti ...
.
Scansione completata con successo
Files nascosti: 0
.
**************************************************************************
.
--------------------- CHIAVI DI REGISTRO BLOCCATE ---------------------
.
[HKEY_LOCAL_MACHINE\software\Microsoft\DbgagD\1*]
"value"="?\08\02\10\0c\07\14?"
.
[HKEY_LOCAL_MACHINE\software\Microsoft\Environment*]
"Licence0"="04F0D21-79D8-7A25-D702-433F"
.
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\€–€|ÿÿÿÿÀ•€|ù•9~*]
"0140710900063D11C8EF10054038389C"="C?\\WINDOWS\\system32\\FM20ENU.DLL"
.
--------------------- Dlls caricate dai processi in esecuzione ---------------------
.
- - - - - - - > 'winlogon.exe'(1160)
c:\programmi\file comuni\logitech\bluetooth\LBTWlgn.dll
c:\programmi\file comuni\logitech\bluetooth\LBTServ.dll
.
- - - - - - - > 'explorer.exe'(4468)
c:\windows\system32\WININET.dll
c:\programmi\Unlocker\UnlockerHook.dll
c:\programmi\Logitech\SetPoint\lgscroll.dll
c:\programmi\Nero\Nero 9\InCD\NBHshx.dll
c:\progra~1\WINDOW~2\wmpband.dll
c:\programmi\Windows Desktop Search\deskbar.dll
c:\programmi\Windows Desktop Search\it-it\dbres.dll.mui
c:\programmi\Windows Desktop Search\dbres.dll
c:\programmi\Windows Desktop Search\wordwheel.dll
c:\programmi\Windows Desktop Search\it-it\msnlExtRes.dll.mui
c:\programmi\Windows Desktop Search\msnlExtRes.dll
c:\windows\system32\msi.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\programmi\Nokia\Nokia PC Suite 7\PhoneBrowser.dll
c:\programmi\Nokia\Nokia PC Suite 7\NGSCM.DLL
c:\programmi\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_ita.nlr
c:\programmi\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Altri processi in esecuzione ------------------------
.
c:\windows\system32\nvsvc32.exe
c:\programmi\Sandboxie\SbieSvc.exe
c:\programmi\Nero\Nero 9\InCD\InCDSrv.exe
c:\programmi\AVG\AVG9\avgchsvx.exe
c:\programmi\AVG\AVG9\avgrsx.exe
c:\programmi\AVG\AVG9\avgcsrvx.exe
c:\windows\system32\RUNDLL32.EXE
c:\programmi\AVG\AVG9\Identity Protection\agent\bin\avgidsmonitor.exe
c:\programmi\File comuni\Logishrd\KHAL2\KHALMNPR.EXE
c:\programmi\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
c:\programmi\File comuni\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\windows\system32\crypserv.exe
c:\programmi\Java\jre6\bin\jqs.exe
c:\programmi\File comuni\LightScribe\LSSrvc.exe
c:\programmi\AVG\AVG9\avgam.exe
c:\programmi\AVG\AVG9\avgnsx.exe
c:\program files\Conversions Plus\FORMATM.EXE
c:\programmi\File comuni\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\programmi\Microsoft SQL Server\MSSQL10_50.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
c:\programmi\File comuni\Nero\Nero BackItUp 4\NBService.exe
c:\programmi\Photodex\ProShowProducer\ScsiAccess.exe
c:\programmi\Microsoft SQL Server\90\Shared\sqlwriter.exe
c:\programmi\UPHClean\uphclean.exe
c:\windows\system32\SearchIndexer.exe
c:\windows\system32\wscntfy.exe
c:\programmi\iPod\bin\iPodService.exe
c:\programmi\PC Connectivity Solution\ServiceLayer.exe
c:\programmi\PC Connectivity Solution\Transports\NclUSBSrv.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\programmi\PC Connectivity Solution\Transports\NclRSSrv.exe
.
**************************************************************************
.
Ora fine scansione: 2011-11-27 10:43:35 - Il pc è stato riavviato
ComboFix-quarantined-files.txt 2011-11-27 09:43
.
Pre-Run: 942.739.316.736 byte disponibili
Post-Run: 944.759.721.984 byte disponibili
.
- - End Of File - - BBE55499128855866E930D3BD871C735

L’allegria scalda il cuore e trasforma la tristezza in sorrisi autentici.
Torna in alto
 
cbbusto
Inviato: Sunday, November 27, 2011 2:30:32 PM

Rank: AiutAmico

Iscritto dal : 11/8/2008
Posts: 13,964
Il pc dovrebbe essere pulito, ora rimuovi combofix con OTC by OldTimer QUIscaricalo sul desktop, eseguilo, Clicca su CleanUp.
Alla richiesta di riavvio clicca SI
Poi vai in C ed elimina la cartella qoobox.
Dimmi come va, ci risentiamo domani mattina.
Torna in alto
 
beppe50
Inviato: Sunday, November 27, 2011 6:21:05 PM

Rank: AiutAmico

Iscritto dal : 11/28/2009
Posts: 1,475
Punto della situazione:
-Dopo la grande e necessaria pulizia che mi hai fatto fare e della quale ne sono ben contento, ho riavviato il PC ma il solito avviso è ricomparso.
-A questo punto, ormai di avvilimento, mi è venuto in mente che il programma MyComposer che utilizzo per inviare in stampa le foto, già altre volte mi aveva creato problemi quindi, l'ho disinstallato e ora sembra che tutto vada bene, speriamo continui.

A questo punto ti chiedo se vale la pena fare una copia con Macrium Reflect e se ogni tanto vale la pena eseguire una scansione del PC, chiaramente non complessa come quella appena fatta perchè non ne sarei in grado ma, con semplici programmi che ti chiederei di suggerirmi.

Di nuovo grazie, Beppe
L’allegria scalda il cuore e trasforma la tristezza in sorrisi autentici.
Torna in alto
 
cbbusto
Inviato: Sunday, November 27, 2011 11:47:25 PM

Rank: AiutAmico

Iscritto dal : 11/8/2008
Posts: 13,964
Ciao, allora vediamo di finire bene il lavoro, di porcherie ne avevi parecchie, Mycomposer ti volevo già chiedere a
cosa ti serve, fai stampare molte foto?, non hai una stampante per stamparle da solo, magari ritoccate bene e
poi stampare solo quelle migliori, hai fatto bene ad eliminarlo.
Come ti avevo già detto hai un sacco di programmi installati, alcuni mai sentiti, ma dove li vai a pescare, dimmi
se conosci questi e se li usi:

crypserv.exe un software della CrypKey, il sw è commerciale probabile che hai una demo.

FABS.exe un programma della Magix, ti avevo già chiesto se hai software della magix.

Conversions Plus\FORMATM.EXE- un programma per fare diverse conversioni fra le varie lingue riguardo a misure lineari, pesi, liquidi ecc.

Photodex\ProShowProducer, un sw per realizzare Slide Show, proiezioni di diapositive, sw non gratuito.

Dammi tutte le risposte così facciamo una pulizia completa, poi ti consiglio di fare l'immagine del sistema con
Macrium Reflect, così in caso di problemi fai il ripristino e in pochi minuti tutto torna a posto.
Per le pulizie, prima di tutto non scaricare tutto quello che trovi a meno che si tratta di un programma che ti serve veramente, prima cercalo fra i sw su aiutamici che sono tutti testati e sicuri con tutte le schede esplicative.
Quindi usa di frequente Ccleaner, dove puoi pulire anche il Registro, puoi controllare i programmi in avvio.
Poi fai una scansione ogni tanto con Malwarebytes, non serve altro perchè il tuo antivirus ha anche una protezione contro spyware.
Tieni deframmentato il disco, ti consiglio un ottimo programma QUESTO.
Postami un nuovo log di HJT aggiornato così vedo cos'è rimasto da eliminare.
Torna in alto
 
beppe50
Inviato: Monday, November 28, 2011 2:51:54 PM

Rank: AiutAmico

Iscritto dal : 11/28/2009
Posts: 1,475
Bene, ti rispondo a tutto.

1) MyComposer lo utilizzo per inviare le foto per la stampa a PhotoPrink. Il motivo dell'utilizzo di questo servizio è che mi capita di stampare grandi quantità di fotografie (ad oggi, in due anni, ne ho mandate in stampa più di 3000) costa poco, il formato 10x15 costa €0.09 senza limiti di quantità, è di buona qiualità e il ritiro mi risulta comodo. Capisci che con la stampante di casa diventa un lavoraccio e sicuramente molto più costoso. Non sono un fotofrafo professionista ma amatoriale e quando vado in giro mi piace fare foto. Comunque, ho inviato la segnalazione di errore al loro centro servizi tecnici, vediamo cosa mi rispondono.
2) CrypKey non lo trovo, forse l'ho già eliminato; Magix l'ho già cancellato tutto come anche Conversions Plus; ProShowProducer lo utilizzo per creare dei FotoVideo personali.

Ora due domande:
1) Dove mi conviene salvare l'immagine di Macrium Reflect visto e considerato che sarà di alcune decine di giga? Inoltre, se decido di utilizzarlo, una volta fatto pertire ci pensa lui a resettare e reinstallare?
2) Puoi consigliarmi un buon video editing tra quelli indicati in aiutamici?

Di seguito il log che mi hai richiesto e le scuse per il tanto che ho scritto.


Commenta:
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14.34.16, on 28/11/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Programmi\Sandboxie\SbieSvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Programmi\Nero\Nero 9\InCD\InCDSrv.exe
C:\Programmi\AVG\AVG9\avgchsvx.exe
C:\Programmi\AVG\AVG9\avgrsx.exe
C:\Programmi\AVG\AVG9\avgcsrvx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programmi\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\AVG\AVG9\avgtray.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe
C:\Programmi\Unlocker\UnlockerAssistant.exe
C:\Programmi\AVG\AVG9\Identity Protection\agent\bin\avgidsmonitor.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Programmi\File comuni\Java\Java Update\jusched.exe
C:\Programmi\iTunes\iTunesHelper.exe
C:\Programmi\Nokia\Nokia PC Suite 7\PCSuite.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programmi\Logitech\SetPoint\SetPoint.exe
C:\Programmi\File comuni\Logishrd\KHAL2\KHALMNPR.EXE
C:\Programmi\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
C:\Programmi\File comuni\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Programmi\ASUS\AsSysCtrlService\1.00.00\AsSysCtrlService.exe
C:\Programmi\AVG\AVG9\avgwdsvc.exe
C:\Programmi\AVG\AVG9\avgfws9.exe
C:\WINDOWS\system32\crypserv.exe
C:\Programmi\Java\jre6\bin\jqs.exe
C:\Programmi\AVG\AVG9\avgam.exe
C:\Programmi\AVG\AVG9\avgnsx.exe
C:\Programmi\File comuni\LightScribe\LSSrvc.exe
C:\Programmi\File comuni\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Programmi\File comuni\Nero\Nero BackItUp 4\NBService.exe
C:\Programmi\Nero\Nero 9\InCD\NBHRegInCDSrv.exe
C:\Programmi\Nitro PDF\Reader\NitroPDFReaderDriverService.exe
C:\Programmi\Macrium\Reflect\ReflectService.exe
C:\Programmi\Photodex\ProShowProducer\ScsiAccess.exe
c:\Programmi\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\WINDOWS\system32\svchost.exe
C:\Programmi\UPHClean\uphclean.exe
C:\Programmi\AVG\AVG9\avgcsrvx.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Programmi\iPod\bin\iPodService.exe
C:\Programmi\PC Connectivity Solution\ServiceLayer.exe
C:\Programmi\PC Connectivity Solution\Transports\NclUSBSrv.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Programmi\PC Connectivity Solution\Transports\NclRSSrv.exe
C:\Programmi\AVG\AVG9\avgscanx.exe
C:\Programmi\AVG\AVG9\avgcsrvx.exe
C:\Programmi\Trend Micro\HiJackThis\HiJackThis.exe
C:\WINDOWS\system32\SearchProtocolHost.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Programmi\AVG\AVG9\avgssie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Programmi\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Guida per l'accesso a Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programmi\File comuni\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Programmi\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programmi\Google\GoogleToolbarNotifier\5.7.7018.1622\swg.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Programmi\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programmi\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Programmi\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Programmi\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Programmi\Unlocker\UnlockerAssistant.exe"
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programmi\File comuni\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Programmi\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programmi\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Programmi\real\realplayer\update\realsched.exe" -osboot
O4 - HKCU\..\Run: [AdobeUpdater] "C:\Programmi\File comuni\Adobe\Updater5\AdobeUpdater.exe"
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Programmi\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Logitech SetPoint.lnk = C:\Programmi\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: Aggiungi a PDF esistente - res://C:\Programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Converti destinazione link in Adobe PDF - res://C:\Programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Converti destinazione link in file PDF esistente - res://C:\Programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Converti i link selezionati in Adobe PDF - res://C:\Programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Converti i link selezionati in file PDF esistente - res://C:\Programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Converti in Adobe PDF - res://C:\Programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Converti selezione in Adobe PDF - res://C:\Programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Converti selezione in file PDF esistente - res://C:\Programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Scarica con Free Download Manager - file://C:\Programmi\Free Download Manager\dllink.htm
O8 - Extra context menu item: Scarica i video con Free Download Manager - file://C:\Programmi\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Scarica selezionati con Free Download Manager - file://C:\Programmi\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Scarica tutto con Free Download Manager - file://C:\Programmi\Free Download Manager\dlall.htm
O8 - Extra context menu item: Scarica tutto usando BitComet - res://C:\Documents and Settings\Utente\Desktop\BitComet_1.30\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: Scarica usando &BitComet - res://C:\Documents and Settings\Utente\Desktop\BitComet_1.30\BitComet.exe/AddLink.htm
O9 - Extra button: Inserisci blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programmi\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: Inserisci &blog in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programmi\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Invia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: I&nvia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Run WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Programmi\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra 'Tools' menuitem: Launch WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Programmi\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra button: Ricerche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: @C:\Programmi\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: @C:\Programmi\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
O16 - DPF: {3D3B42C2-11BF-4732-A304-A01384B70D68} (UploadListView Class) - http://picasaweb.google.it/s/v/60.07/uploader2.cab
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Programmi\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Programmi\AVG\AVG9\avgpp.dll
O20 - Winlogon Notify: avgrsstarter - avgrsstx.dll (file missing)
O22 - SharedTaskScheduler: Precaricatore Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Daemon di cache delle categorie di componenti - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: ANIWZCSd Service (ANIWZCSdService) - Wireless Service - C:\Programmi\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Programmi\File comuni\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - Unknown owner - C:\Programmi\ASUS\AsSysCtrlService\1.00.00\AsSysCtrlService.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Programmi\File comuni\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: AVG WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Programmi\AVG\AVG9\avgwdsvc.exe
O23 - Service: AVG Firewall (avgfws9) - AVG Technologies CZ, s.r.o. - C:\Programmi\AVG\AVG9\avgfws9.exe
O23 - Service: AVG9IDSAgent (AVGIDSAgent) - AVG Technologies CZ, s.r.o. - C:\Programmi\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe
O23 - Service: Crypkey License - CrypKey (Canada) Ltd. - C:\WINDOWS\SYSTEM32\crypserv.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Programmi\File comuni\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Servizio di Google Update (gupdate) (gupdate) - Google Inc. - C:\Programmi\Google\Update\GoogleUpdate.exe
O23 - Service: Servizio Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Programmi\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Programmi\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programmi\File comuni\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: InCD Helper (InCDSrv) - Nero AG - C:\Programmi\Nero\Nero 9\InCD\InCDSrv.exe
O23 - Service: Servizio iPod (iPod Service) - Apple Inc. - C:\Programmi\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Programmi\Java\jre6\bin\jqs.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Programmi\File comuni\Logitech\Bluetooth\LBTServ.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Programmi\File comuni\LightScribe\LSSrvc.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Programmi\File comuni\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: Nero Registry InCD Service (NeroRegInCDSrv) - Nero AG - C:\Programmi\Nero\Nero 9\InCD\NBHRegInCDSrv.exe
O23 - Service: NitroPDFReaderDriverCreatorReadSpool (NitroReaderDriverReadSpool) - Nitro PDF Software - C:\Programmi\Nitro PDF\Reader\NitroPDFReaderDriverService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Macrium Reflect Image Mounting Service (ReflectService) - Unknown owner - C:\Programmi\Macrium\Reflect\ReflectService.exe
O23 - Service: Sandboxie Service (SbieSvc) - SANDBOXIE L.T.D - C:\Programmi\Sandboxie\SbieSvc.exe
O23 - Service: ScsiAccess - Unknown owner - C:\Programmi\Photodex\ProShowProducer\ScsiAccess.exe
O23 - Service: ServiceLayer - Nokia - C:\Programmi\PC Connectivity Solution\ServiceLayer.exe

--
End of file - 14731 bytes

L’allegria scalda il cuore e trasforma la tristezza in sorrisi autentici.
Torna in alto
 
francescoamato
Inviato: Monday, November 28, 2011 3:04:22 PM
Rank: AiutAmico

Iscritto dal : 11/19/2011
Posts: 78
Ciao. AVG è vecchio di due anni.
Fai cosi.
Disinstalla AVG:
● clicca su Start - Pannello di Controllo - Installazione Applicazioni e disinstalla AVG

Scarica AVG Remover:
http://techdows.com/2010/10/download-avg-2011-removal-tool.html
● scegli la versione compatibile con il tuo Sistema Operativo
● posiziona il file sul Desktop
● doppio click sul tool per eseguirlo
● segui le istruzioni che verranno rilasciate dal programma per rimuovere correttamente l'antivirus in questione
riavvia il sistema

In seguito:
Avvia hijackthis, metti la spunta alle voci che andrò ad elencarti e con tutte le applicazioni chiuse e disconnesso da Internet,premi su "fix checked ":
Commenta:
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Programmi\Unlocker\UnlockerAssistant.exe"
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programmi\File comuni\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Programmi\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programmi\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Programmi\real\realplayer\update\realsched.exe" -osboot
O4 - HKCU\..\Run: [AdobeUpdater] "C:\Programmi\File comuni\Adobe\Updater5\AdobeUpdater.exe"
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Programmi\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Logitech SetPoint.lnk = C:\Programmi\Logitech\SetPoint\SetPoint.exe


Infine: installa avira, vedi qui se ti è d'aiuto:
http://forum.zeusnews.com/viewtopic.php?t=42228
Torna in alto
 
cbbusto
Inviato: Monday, November 28, 2011 7:25:31 PM

Rank: AiutAmico

Iscritto dal : 11/8/2008
Posts: 13,964
Scusa francescoamato, come vedi sto gestendo il topic da giorni non ho capito questa intromissione, ho
chiesto alcuni particolari e poi avrei detto il da farsi, poi non ho capito perchè deve eliminare tutti i programmi
in avvio, non ha nessun rallentamento, probabile che alcuni vengano usati tutti i giorni, es, Set Point della Logitech
sw che uso anch'io tutti i giorni, collegato a tastiera e mouse, non crea nessun problema, anche per AVG lo avrei detto alla fine, meglio non creare confusioni.
Ciao

beppe50, ti rispondo più tardi.
Torna in alto
 
beppe50
Inviato: Monday, November 28, 2011 11:20:19 PM

Rank: AiutAmico

Iscritto dal : 11/28/2009
Posts: 1,475
Senza voler essere scortese verso francescoamato, che comunque ringrazio, stavo aspettando la risposta da cbbusto in quanto, come lui stesso dice, stà gestendo questo topic da giorni quindi, penso e credo, segue una sua logica di lavoro che magari ad altri può sfuggire e cambiarla potrebbe non essere una mossa felice.
In ogni caso, rimanendo in attesa di una risposta da cbbusto, nuovamente grazie ad entrambi.
Beppe

L’allegria scalda il cuore e trasforma la tristezza in sorrisi autentici.
Torna in alto
 
cbbusto
Inviato: Tuesday, November 29, 2011 12:10:27 AM

Rank: AiutAmico

Iscritto dal : 11/8/2008
Posts: 13,964
Adesso fai in questo modo, My Composer lo puoi installare ma controlla che non si avvii in automatico col S.O.
per controllare è più semplice con Ccleaner, vai in Strumenti/Avvio se è attivato lo selezioni e poi a destra clic
su disattiva e all'inizio della riga a sinistra appare NO.
Poi apri HJT chiudi tutti i programmi e disconnesso, fixa queste voci: ( comunque il log è pulito)

C:\WINDOWS\system32\crypserv.exe

O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll

O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Programmi\Unlocker\UnlockerAssistant.exe"

O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programmi\File comuni\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [iTunesHelper] "C:\Programmi\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [QuickTime Task] "C:\Programmi\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [TkBellExe] "C:\Programmi\real\realplayer\update\realsched.exe" -osboot

O4 - HKCU\..\Run: [AdobeUpdater] "C:\Programmi\File comuni\Adobe\Updater5\AdobeUpdater.exe"

Poi fai una pulizia con Ccleaner compreso il registro.
Disattiva il ripristino configurazione del sistema, start/Pannello di controllo/Sistema/Ripristino configurazione di sistema, metti la spunta su Disattiva ri pristino configurazione su tutte le unità, applica OK, riavvia il PC e poi sempre nello stesso percorso togli la spunta che hai messo prima e riattiva il ripristino, crea un nuovo punto di ripristino dandogli un nome che vuoi.
Per l'antivirus, se vuoi proseguire ad usare AVG allora aggiornalo all'ultima vs la Free Edition 2012 che lo trovi
QUI, una volta scaricato chiudi la connessione, disinstalla la vs che hai e poi installa la nuova, leggi la scheda di alfonso.
Fatto tutto puoi fare l'immagine del Sistema con Macrium, è consigliabile salvarla su un disco esterno che rimane più sicuro, io non uso Macrium comunque leggi bene la scheda ci sono tutte le guide, devi prima creare il Disco di Boot, che ti serve in caso windows dovesse bloccarsi. Per chiarimenti chiedi ad alfonso nella sezione Domande al Webmaster e ti darà tutte le spiegazioni.
Per quanto riguarda il Videoediting, non so cosa tu intenda fare, io per videoediting intendo creare un filmato completo, da vedere eventualmene anche sulla TV di casa, un montaggio con dei video da te girati oppure altri scaricati, con titoli, dissolvenze, effetti speciali ed eventualmente anche musica, allora l'unico sw gratuito è
Movie Maker che già hai in XP, tutti gli altri programmi non fanno un filmato completo ma possono servire per unire o tagliare dei video, oppure fare delle conversioni ed evntualmente creare dei DVD, insomma una cosa diversa, Movie Maker non è un programma professionale ma puoi creare dei filmati molto belli, altrimenti devi acquistare un programma commerciale, io uso Pinnacle oppure un altro programma valido è Magix Video Deluxe.
Credo di averti detto tutto comunque se hai altre domande scrivi pure. Ciao
Torna in alto
 
beppe50
Inviato: Tuesday, November 29, 2011 12:48:56 AM

Rank: AiutAmico

Iscritto dal : 11/28/2009
Posts: 1,475
Velocemente:
1) ti chiedo se cancellare le righe che mi hai detto vuol dire eliminare i programmi citati o se è solo una pulizia di refusi. Ti chiedo questo perchè, per esempio, Unlocker è un programma che utilizzo in quanto molto comodo per sbloccare i file.
2) Spiego a cosa mi serve i video editing, mia figlia è stata a Boston ed ha registrato un filmato lunghissimo che vorrebbe accorciare togliendo alcune parti che magari risultano rindondanti e noiose per ottenere alla fine qualche cosa di più snello.
3) AVG, ogni volta che lo attivo, aggiorna sia il data base dei virus che il programma stesso quindi non capisco perchè lo devo cancellare. Scusa ma la cosa mi lascia perplesso e se vuoi spegarmela meglio te ne sarei grato.
Ciao
L’allegria scalda il cuore e trasforma la tristezza in sorrisi autentici.
Torna in alto
 
Utenti presenti in questo topic
Guest

2 pages: [1] 2

Aiutamici Forum » Computer & Internet » Problemi Informatici » Errore di exception all'avvio di XP (RISOLTO)


Salta al Forum
Aggiunta nuovi Topic disabilitata in questo forum.
Risposte disabilitate in questo forum.
Eliminazione tuoi Post disabilitata in questo forum.
Modifica dei tuoi post disabilitata in questo forum.
Creazione Sondaggi disabilitata in questo forum.
Voto ai sondaggi disabilitato in questo forum.

Main Forum RSS : RSS

Aiutamici Theme
Powered by Yet Another Forum.net versione 1.9.1.8 (NET v2.0) - 3/29/2008
Copyright © 2003-2008 Yet Another Forum.net. All rights reserved.